module

Windows Capture Winlogon Lockout Credential Keylogger

Disclosed
N/A
Created
May 30, 2018

Description

This module migrates and logs Microsoft Windows user's passwords via
Winlogon.exe using idle time and natural system changes to give a
false sense of security to the user.

Authors

mubix mubix@hak5.org
cg

Platform

Windows

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


msf > use post/windows/capture/lockout_keylogger
msf post(lockout_keylogger) > show actions
...actions...
msf post(lockout_keylogger) > set ACTION < action-name >
msf post(lockout_keylogger) > show options
...show and set options...
msf post(lockout_keylogger) > run

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.