Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



WebApp Sec: Re: keyloggers?

Re: keyloggers?

From: Augusto Paes de Barros <apbarros_at_gmail.com>
Date: Wed, 6 Apr 2005 17:58:19 -0300

Some trojans/backdoors do not capture key strokes but form field
contents. In these cases I believe that Roboform won't help to avoid
the password to be stealed.

Regards,

Augusto.

On Apr 5, 2005 7:14 PM, Louis Baumann <louis_at_baumanns.net> wrote:
> You can use a program like Roboform portable on a usb drive that fills in
> passwords with a few clicks of the mouse. That way there's no keys to
> capture. ;)
>
> - louis
>
>
> ----- Original Message -----
> From: "SB" <vidyabalaji_at_gmail.com>
> To: <webappsec_at_securityfocus.com>
> Sent: Friday, April 01, 2005 12:48 PM
> Subject: keyloggers?
>
> > Hi!
> >
> > Any recommendations of Best Practices when accessing your Online
> > Banking account from an Internet Cafe? Assuming your bank does not
> > provide two factor authentication, are there any specific checks you
> > can do, tools you can run on a machine to ensure it is not Logging
> > keystrokes, caching UID/pwds etc
> >
> > Any suggestions or advice in this area is greatly appreciated
> >
> > Thanks
> >
> > SB
> >
>
> 

-- 
Augusto Paes de Barros, CISSP
http://www.paesdebarros.com.br
Received on Apr 06 2005
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]