Print PDF
Favorite
Email
Cause I've searched a lot for a project like this, and I haven't find anything around the Web, I would share my experience of my personal USB Keylogger.
It's not really a pure "USB" Keylogger (cause USB HID protocol is much more difficult than PS/2 protocol), but it adapt an USB Keyboard to PS/2 port, while (of course) recording the keys pressed.
In this way, even if it's discovered by anybody, it should be confused with a normal PS/2 Adapter.
That's the final result:
It need just a few component (SOIC PIC and EEPROM can be freely ordered as a sample from http://www.microchip.com/samples/ ):
-PIC 12F1822 (SOIC Version)
-EEPROM 24XX1025 (Any 1Mb version will be ok) (SOIC Version)
-2 * 4k7 Resistor 1/8 W (Or any resistor of the same value as small as you can solder in the adaptor)
-Pickit 2 / 3 (For programming the pic and reading the eeprom)
-An USB to PS/2 Adapter that can be opened.
And, very important:
-A GOOD solder and VERY GOOD soldering abilities.
Let's Start.
EDIT (in reply to comments):
Some weeks ago, a friend of mine asked me to help him, cause his computer seamed blocked, indeed, he couldn't either type his password to login with his account..
I know that he is almost a novice and couldn't just change the keyboard instead of asking me help, anyway, i changed his keyboard, but I wanted to know why it wasn't working, I tried it on another computer without any result, except that the keyboard's leds blinked, so, I wanted to go deeper; I take a Logic Analyzer and i have analyzed the PS/2 protocol, I have discovered that the keyboard was switching off whenever the PC sends 0xFF (Reset) command.. I then solved it simply replacing a capacitor that has blown up.
This is WHY I build it (for any similar case), I'm NOT responsible of ANY aim you use this Keylogger.
Illegal is the WAY you use a Keylogger, not the Keylogger by itself.
I didn't want to make anything "immoral" or "illegal"
Regards,
Jamby
It's not really a pure "USB" Keylogger (cause USB HID protocol is much more difficult than PS/2 protocol), but it adapt an USB Keyboard to PS/2 port, while (of course) recording the keys pressed.
In this way, even if it's discovered by anybody, it should be confused with a normal PS/2 Adapter.
That's the final result:
It need just a few component (SOIC PIC and EEPROM can be freely ordered as a sample from http://www.microchip.com/samples/ ):
-PIC 12F1822 (SOIC Version)
-EEPROM 24XX1025 (Any 1Mb version will be ok) (SOIC Version)
-2 * 4k7 Resistor 1/8 W (Or any resistor of the same value as small as you can solder in the adaptor)
-Pickit 2 / 3 (For programming the pic and reading the eeprom)
-An USB to PS/2 Adapter that can be opened.
And, very important:
-A GOOD solder and VERY GOOD soldering abilities.
Let's Start.
EDIT (in reply to comments):
Some weeks ago, a friend of mine asked me to help him, cause his computer seamed blocked, indeed, he couldn't either type his password to login with his account..
I know that he is almost a novice and couldn't just change the keyboard instead of asking me help, anyway, i changed his keyboard, but I wanted to know why it wasn't working, I tried it on another computer without any result, except that the keyboard's leds blinked, so, I wanted to go deeper; I take a Logic Analyzer and i have analyzed the PS/2 protocol, I have discovered that the keyboard was switching off whenever the PC sends 0xFF (Reset) command.. I then solved it simply replacing a capacitor that has blown up.
This is WHY I build it (for any similar case), I'm NOT responsible of ANY aim you use this Keylogger.
Illegal is the WAY you use a Keylogger, not the Keylogger by itself.
I didn't want to make anything "immoral" or "illegal"
Regards,
Jamby
Remove these ads by
Signing UpStep 1Circuit
This is the complete circuit of the Keylogger, it can seems complex, but in real, it isn't.. we'll see why..
It is divided into two "zones":
One is the Adapter, which connect GND and VCC pin of PS/2 connector with their respective pins on the USB Connector and CLK and DAT pin to, respectively, D+ and D- pins.
The other zone is composed by the PIC and the EEPROM (and the I2C required pull-up resistors). The PIC take care of detecting incoming Data from PS/2, decode, and then writing it to the EEPROM.
It is divided into two "zones":
One is the Adapter, which connect GND and VCC pin of PS/2 connector with their respective pins on the USB Connector and CLK and DAT pin to, respectively, D+ and D- pins.
The other zone is composed by the PIC and the EEPROM (and the I2C required pull-up resistors). The PIC take care of detecting incoming Data from PS/2, decode, and then writing it to the EEPROM.
| « Previous Step | Download PDFView All Steps | Next Step » |
I know that he is almost a novice and couldn't just change the keyboard instead of asking me help, anyway, i changed his keyboard, but I wanted to know why it wasn't working, I tried it on another computer without any result, except that the keyboard's leds blinked, so, I wanted to go deeper; I take a Logic Analyzer and i have analyzed the PS/2 protocol, I have discovered that the keyboard was switching off whenever the PC sends 0xFF (Reset) command.. I then solved it simply replacing a capacitor that has blown up.
This is WHY I build it (for any similar case), I'm NOT responsible of ANY aim you use this Keylogger.
Illegal is the WAY you use a Keylogger, not the Keylogger by itself.
I didn't want to make anything "immoral" or "illegal"
Regards,
Jamby
I'm not a paranoid crazy who wants to ban kitchen knives and prescription drugs. I'm even fine with jump ropes and aspirin.
I realize there are legitimate uses for such technology, but some (employee/child monitoring, etc.) do not require any covert operation, and therefore can simply be done using software... and others (police use, etc.) would have their official ways of doing such things, and wouldn't be looking around the internet for a solution to their problem.
I'm not entirely sure why people are giving reasons for legitimacy including things like "making sure my children's internet browsing is safe", or "emergency back up of your work in case of hardware failure". These things can be done very easily with numerous software suites out there. A keylogger is to log a computer's activity, and not much else. Software on the other hand, can backup files, stop a user browsing unwanted sites, and all number of things - none of which require any secrecy or underhandedness in any way.
And the "it's only illegal if you don't ask the victim's permission" makes no sense. The whole point of making this kind of hardware is to log secretly, with the victim being any the wiser.
I think we all know this kind of tech is used for illegal acts far more often than legal ones. Whilst the people commenting on this item may not be interested in it for hacking/cracking purposes, there's a lot of people out there who would use it that way.
Which brings me onto "freedom of speech". People have commented that it's like going onto a gun forum and telling the people on there to not post stuff on guns, which is an interesting point. However, if someone posted a "how-to" on building your own bomb, how would you react? Whilst bombs may be used to stop terrorism, or save lives in some way, there are lots of people out there wanting to just make bombs. And kill people. Innocent people. If someone has a legitimate use for a bomb, then they would presumably be in the army, etc., and so have authorization to use such things. People looking on the internet for ways to make bombs aren't going to be making them for the army. They're going to be making it for themselves - to use it for their ends, which is usually not a good thing.
Now a keylogger isn't a bomb. I am aware of this. But I hope you can see the parellels. People looking online for how to make a keylogger aren't usually going to be the kind-hearted concerned about a friend type. They're the hackers and crackers who want to steal your information, passwords, etc., or to hack into your system.
Let's go back to the guns analogy for a moment. Gun sales and distribution is heavily regulated and monitored. Anyone who wants to carry a gun must be certified and each gun they purchase must be registered to the owner. If someone put up a "how to make your own 9mm hand gun" on instructables, then this system would be completely disrupted. Anyone could make their own gun, and therefore, anyone, no matter how trustworthy or mature, would be able to fire a weapon at whatever the like, whenever they like. "But it's freedom of speech. It's the usage of it that's illegal." I'm fairly sure the police would disagree.
For these reasons, it's not a good idea to post things of this nature on the internet. If you have a case for legitimately monitoring a PC's activity, then look into the wide array of other, less dubious options, or if it's serious, talk to the police or someone of authority abot it. I'm sure you can find another option.
Example A: A parent wanting to know what their children are doing online and don't want their child to discover said keylogger....
Example B: That pesky room mate always on your computer? Yeah well now you know what they are doing on your stuff...
Example C: A cheating spouse????
I can do this all day, and with an equal number of illegal reasons on might need such a keylogger.....
The point is, Not everything is or should be illegal.. There are many instances where ownership of an item is NOT illegal...
Example A: It is COMPLETELY LEGAL, to make and own your own gun, (called garage guns), yep legal.....
Example B: Did you know you can buy a grenade launcher? http://www.autoweapons.com/products/destructivedevices.html, yep legal..
There are numerous items that CAN do serious damage to anyone with the right person using them... And are completely legal to get or make yourself....
That being said, this small keylogger, yeah it could be used to steal your personal information in the right hands, and it could also be used to protect yourself from that pesky room mate using your computer to find kiddy porn....
And on that Note, Jamby I give you props for this awesome idea...
And all the critical people bashing on this cause it conceals itself, get with the times, this is the last thing I am worried about in my life.... Try worrying more about your neighbor and his grenade launcher.........
just a comment on the gun thing, i can buy a gun via a classified without showing id. i can buy from a gun store with just a driver license, no waiting period. i would need a course to carry concealed but i have a gun rack in the truck, not concealed, but loaded. an armed community is not only safe, but tends to be polite. it seems that if the bad guys know who's armed, they tend to pick on someone else..
A kitchen knife can cut the bread but can also stab a man with it
Used responsibly and it shouldn't be illegal.
owning something isn't a crime. a criminal act with the item is.
But accusing someone of the capability to do something is ridiculous. It would be like Orwell's "Thought Police"
More so, it IS like some non-fictitious historical groups that were unjust.
for example, the Gestapo*, the Red guards, and the Soviet Era internal KGB.
these were not the nicest people to be around. Okay?
*Nazi secret police, often mistaken as gazpacho, a tomato soup.
I agree that accusing someone of the capability to do something does sound rather ridiculous but capability of commiting a crime will be a key portion of evidence if someone is being investigated or tried for the comission of a crime.
The problem I see in this instructable is that it is designed to pass for something other than what it is. The true nature of the device is disguised, intentionally disguised. If it was for one's own use there would be no need to disguise its true function. For one's use the device enclosed in a black box would serve the same purposes of backup or testing the system.
Use of this device on computers other than on one's own may be legal or not depending on the circumstance but I think in most cases use of this device without the knowledge of the computer user on whose computer it is installed is dishonest.
Your points are well stated and well received.
My point of view, however, is something different.
To block discussion of nefarious tools we would do a disservice to two important groups of people.
1) There are plenty of people who wish to learn and hack and use this knowledge for themselves. Turns out, these people come up with plenty of legit uses for nefarious devices all the time.
2) The people who need to protect themselves from people who would make such a device. Where would you send these 'white hats' - to the hacker underground with the black hats?
Another way to state that - If we close our ears to this topic, it does not make the topic go away, it simply makes us dumb about this topic.
You can say freedom of speech, blah, etc (which is all very true and very important) - but there's something more important, which is the freedom of information (not price). Stop people from knowing how to build a bomb, a keyboard logger, or anything else, and suddenly we have a black list of "things [someone] says you can't know how to do" -- thought crimes are currently not crimes and I'd prefer to keep it that way. Knowledge is always power and restricting knowledge is always evil.
Let it be
OMG, I made one, had fun with it and sent it to a kid I know for Christmas years ago. Possession and responsible use of a device shouldn't be prohibited. Now, if he uses it to steal your credit card codes or shoots your momma with his potato gun, we have Illegal Behavior and let's call the law.
Lighten up
The item isn't illegal, neither are the components. So, as with everything else on this site, it is up to the end user to decide whether it will be used legally or not.
The reference that just jumps out of my mouth is..
Do people go to gun stores demanding they stop selling ammunition because it 'facilitates illegal activity'?
Just my honest opinion.
Should we demand they stop selling reciprocating saws because I might use it to cut someone up after taking the recip saw to them?
Should we demand they stop selling wood-chippers because I'm ultimately going to feed the body bits into the chipper after bopping them with a hammer and sawz-alling them up?
Should we demand they stop selling welding rod because I'm going to build a carbon arc furnace to dispose of the evidence?
What about that titanium spork that ThinkGeek sells? That looks like an Assault Spork to me. Go into Target and demand they stop selling cheap dinnerware, 'cause someone might stab someone in the throat with that $0.49 fork.
Oh, and 2x4's. Sure, they're critical building material. But people have been bashed in the head with a 2x4.
And then encased in concrete. Ban that too.
We could go on forever, because a nannystate knows no boundaries and knows no end.
Can we just ban banning stuff? I'm all for that. ;)
Seriously, though: It's illegal to use a hammer in the commission of a crime. It becomes a weapon. It's illegal to use lock-picks in the commission of a crime; they become "burglary tools" at that juncture. And it's illegal to use a keylogger in the commission of a crime.
But it's not illegal to own a hammer, a spork, or a keylogger. The kids here that need their hands held so they're not exposed to anything potentially objectionable to their tiny little world-views should probably delete their accounts post-haste.
lolocaust =P
eric, you are not a very good instructable member
That said, you used to be able to buy one that doesn't change from PS/2 to USB on ThinkGeek. There are still a log of places you can get them.