GitHub is where people build software. More than 100 million people use GitHub to discover, fork, and contribute to over 420 million projects.
GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.
Linux KeyLogger 拿到Linux服务器的权限后,我们可以在机器上运行一个记录键盘的小工具,来记录管理员平时输入的一些密码。
Jellyfish is a Linux based userland gpu rootkit proof of concept project utilizing the LD_PRELOAD technique from Jynx (CPU), as well as the OpenCL API developed by Khronos group (GPU). Code currently supports AMD and NVIDIA graphics cards. However, the AMDAPPSDK does support Intel as well....
键盘记录器用的是开源库jnativehook,开源地址:https://github.com/kwhat/jnativehook (jnativehook库简介) (键盘记录器回调函数) b类的main函数中同样会解密“res”得到配置项,接着会开启一个线程,线程函数为“run”。 (解密”res”,开启线程) Run函数中会根据“setup”配置项决定使用哪种收信方式,本次分析...
Java程序的另一个特性是跨平台运行,即同一jar包在windows、linux、mac等系统上都能运行。此外,该木马能够收集计算名、用户名、cpu、网络、国家、操作系统等信息,具有键盘记录器、截屏上传和盗取Firefox、Chrome浏览器密码等功能。 0x2 木马行为分析 1. 恶意word文档行为分析 该恶意word文件中除了一个“链接对象”外,...
Java程序的另一个特性是跨平台运行,即同一jar包在windows、linux、mac等系统上都能运行。此外,该木马能够收集计算名、用户名、cpu、网络、国家、操作系统等信息,具有键盘记录器、截屏上传和盗取Firefox、Chrome浏览器密码等功能。 0x2 木马行为分析 1. 恶意word文档行为分析 该恶意word文件中除了一个“链接对象”外,...
键盘记录器用的是开源库jnativehook,开源地址:https://github.com/kwhat/jnativehook (jnativehook库简介) (键盘记录器回调函数) b类的main函数中同样会解密“res”得到配置项,接着会开启一个线程,线程函数为“run”。 (解密”res”,开启线程) Run函数中会根据“setup”配置项决定使用哪种收信方式,本次分析...
Jellyfish Rootkitfor Linux operating system Demon Keylogger The source code of both the Jellyfish Rootkit and the Demon keylogger, which are described as proof-of-concepts malware, have been published on Github. Until now, security researchers have discovered nasty malware running on the CPU and ...