tag:blogger.com,1999:blog-8453453300736107961.post2467998155974078637..comments2024-02-21T03:31:19.668-05:00Comments on obscuresec: Logging Keys with PowerShell: Get-KeystrokeChrishttp://www.blogger.com/profile/10815120708533310068noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-8453453300736107961.post-12957861405932954292014-02-10T10:04:34.070-05:002014-02-10T10:04:34.070-05:00What methods did you try? As with most keyloggers,...What methods did you try? As with most keyloggers, any method of persistence requires that the code be ran in the user's context. This could be accomplished with a registry key entry. Chrishttps://www.blogger.com/profile/10815120708533310068noreply@blogger.comtag:blogger.com,1999:blog-8453453300736107961.post-8411928849292807622013-12-28T04:51:41.019-05:002013-12-28T04:51:41.019-05:00The Script Works fine while initiate directly by t...The Script Works fine while initiate directly by the logged-on user.<br />But I tried it with several methods of self-persistance that will re-start automatically after the original process termination and it wint work...Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8453453300736107961.post-63344557641711454832013-07-10T00:00:58.308-04:002013-07-10T00:00:58.308-04:00Thanks for the tip! Certainly honored to have you ...Thanks for the tip! Certainly honored to have you checking out the PowerSploit project and the blog.Chrishttps://www.blogger.com/profile/10815120708533310068noreply@blogger.comtag:blogger.com,1999:blog-8453453300736107961.post-58460965222101433892013-07-06T14:01:29.884-04:002013-07-06T14:01:29.884-04:00FYI - you can simplify your code by using strings ...FYI - you can simplify your code by using strings instead of enums - PowerShell will do the work for you. e.g.<br /><br />$importDLL::GetAsyncKeyState("LShiftKey")<br /><br />Jeffrey Snover[MSFT]<br />Distinguished Engineer and Lead Architect for Windows Server and System Center Datacenter<br />jsnoverhttps://www.blogger.com/profile/14175711871133375697noreply@blogger.com