Keylogging Question

Xombie · Post by **Xombie** » Mon May 15, 2006 10:08 pm

At which point does a typical keylogging program hook into the keyboard input? Say some evil person was able to get a hidden keylogger past my hopefully secure defenses. Now I pull up plain old notepad and hit 'a'. What happens, programmatically? Does the keylogger intercept the WM_KEYDOWN event before notepad or after or simultaneously?

Could someone give me a basic step-by-step process? It certainly does not need to be detailed as I have no intentions of writing one. I just want to know how a system-wide keyboard hooking program works.

Thanks

lexvictory · Post by **lexvictory** » Tue May 16, 2006 4:57 am

well, the one i made intercepts a #wm_char message.......
(and dont worry, i havent used/released my keylogger - just did it for the exercise)

Xombie · Post by **Xombie** » Tue May 16, 2006 5:19 am

Thanks - I got some information from someone earlier online so now I'm just going to see if there's a way of scrambling them so they don't work. Or at least so they don't get anything useful

Maybe a useless exercise but I"ve always been curious if there was a decent way to do it.

Trond · Post by **Trond** » Tue May 16, 2006 11:59 am

The best is to use a keyboard hook. http://www.wizardsolutionsusa.com/forum ... .php?t=483