Skip to content
Import my old vlogger code from 2003
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
doc
tool
AUTHORS
COPYING
ChangeLog
INSTALL
Makefile
NOTICE
README
TODO
configure
make.conf.gen
vlogconfig.gen
vlogctrl.gen
vlogger.c
vlogger.h
vlogsrv.c

README

			***********************************
			***** THC PUBLIC RELEASE/2003 *****
			***********************************

				thc-vlogger 2.2
			Advanced Linux Kernel Keylogger

|=------------------------=[ (C) by RD <rd@thc.org> ]=-----------------------=|
|=--------------------------=[ The Hacker's Choice ]=-------------------------|
		 		http://www.thc.org



FEATURE

o Supported kernel

	Support 2.4.x and 2.6.x kernel (x86 arch)
	
	** I need some non-x86 Linux boxes (ex sparc, ppc, ..) for testing 
	and ongoing developing vlogger. If you can donate some root access (no 
	illegal pls) or hardware, please drop a line to me at rd@thc.org **


o Log keystrokes of all user sessions

	Console, serial console 
	Remote sessions (telnet, ssh, etc)


o Stealth mechanism

	No syscall modifying

	Local user (including root) could not see keylog packets via network sniffers
		Sniffers such as tcpdump inside the box can not see the traffics
		Effective bypassing network filtering/firewall rules as well

	Module hiding (tool/modclean.c)
		Remove vlogger module from the module list
		KSTAT can not detect the removed module
		
	Module injection (tool/modinject)
		Inject vlogger module into another kernel module


o Multiple logging modes and methods

	Support three logging modes
		Switch between logging modes by specific keys sequence
		Default toggle character is CTRL-]

	Dumb mode
		Logs all keystrokes

	Smart mode
		Ability to detect password prompt automatically to log only 
		sensitive data such as user/password (ssh, telnet, su, sudo, 
		ftp, ...)

	Normal mode 
		Stop logging mode


o Log methods

	Log to files
	
	Remote log over network
		Transmits log data to a specified machine


o Log data

	Separated logging for each tty/session
		Each tty has their own log buffer
		Easier to track sessions

	Timestamps logging

	Nearly support all special chars
		Arrow keys (left, right, up, down), Home, Page Up, Page Down
		F1 to F12, Shift+F1 to Shift+F12
		ALT- and CTRL- combinations 
		Tab, Insert, Delete, End, Backspace, ...

	Support line editing keys included CTRL-U and Backspace


CONFIGURING & COMPILING

	Please read INSTALL for more details


DOCUMENTATION

	See doc/vlogger.txt (old doc but still usefull)


BUGS REPORT

	Send you bug report to rd@thc.org
	

GREETS
	Special thanks to wilkins for SMP test
	thc, teso, segfault.net, monkey.org, phenoelit, hert, 
	vnsecurity and all other friends.
You can’t perform that action at this time.