Page 1 of 3 123 LastLast
Results 1 to 10 of 21

Thread: Need a corporate Keylogger!!!

  1. #1
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052

    Need a corporate Keylogger!!!

    Okay my friends company wants to monitor all the things EVERYONE does and people are not just on the lan there are a lot of onsite people. Does anyone know of a keylogger that can send the data securely via anything secure such as ssl, https, or sftp? Oh yeah they want a solution for monday lol...

  2. #2
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    and people are not just on the lan there are a lot of onsite people.
    Don't you mean "offsite"?

    I don't like the basic keylogger solution for a corporate environment of any size. What you find is that you generate far too much data to analyse.

    I personally favour using network, internet and application monitoring & analysis tools (they tend to have better analysis options and reporting tools) and manage by exception.

    Identify potential problem areas and then consider deploying a keylogger on the much more manageable volumes of data, if needs be.

  3. #3
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Ive been talking to him and they want A LOT of stuff. Not only do they insist on a keylogger that can take screen shots and all the extra stuff but they do want it to send securely back to their server no matter where they are...

  4. #4
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    Assuming that the remote PCs are connected to the LAN on a regular basis this might be a solution:

    http://www.spectorcne.com/

    Otherwise they will probably have to use two applications.

    As far as security is concerned, most of these things work by encrypting and password protecting the log files. I don't know of any that actually look for a secure link.

  5. #5
    Just Another Geek
    Join Date
    Jul 2002
    Location
    Rotterdam, Netherlands
    Posts
    3,401
    IMO keyloggers are never a good idea. Better talk them out of it. As nihil says use the network. Setup proxy servers, IDS and a good firewall policy. Turn up auditing on windows clients. If done properly you can pretty much see everything without the need for something as "invasive" as a keylogger.

    Don't loose sight of the privacy laws too. Some of this may even be against the law.
    Oliver's Law:
    Experience is something you don't get until just after you need it.

  6. #6
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    The reason that doesnt work nihil is because they have some laptops that never or rarely end up on their lan.

    and ya...they insist on what they insist on I cant really convince them otherwise. I told them also if they setup a proxy to monitor all web traffic it would be more then enough. If there is suspcious activity then you can confront them but I personally think they are going to far.

    Unless anyone knows of such an application I will assume one does not exist. Thanks for the input guys!!!

  7. #7
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,325
    If the company I worked for did something like this... I'd turn in my resignation and leak it to the local newspaper so all my coworkers would know. I'm sure a lot of them would also not want to work for a company that has such practices.

    Just to be clear, I'm talking about me as an end user. I can understand monitoring web usage for policy violations or to increase productivity. I can understand journaling emails. However, to intercept every keystroke of every employee seems absurd to me on so many levels. If there was an employee who they could not trust, then fire them. Or, gather enough evidence that they can't be trusted via keyloggers, etc. then fire them or prosecute them if they're breaking the law. It just seems like a HUGE ABUSE of "power".

    I wonder if this policy would apply to even top level execs or if the board of directors/shareholders would support it if they knew about it.
    Last edited by phishphreek; June 21st, 2007 at 12:12 PM.
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  8. #8
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    The reason that doesnt work nihil is because they have some laptops that never or rarely end up on their lan.
    In which case they cannot be mission critical and can safely be ignored. If they were in any way significant they would have to connect to the corporate mail server for e-mails and for a regular health check to ensure that the OS, applications and anti-malware were up to date and functioning, unless..............

    What kind of industry is this? ....................................

  9. #9
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    I know my friend is a system admin and I know he works in the warehouse but I dont know what kind of place it is.

    And phish I couldnt agree with you more.

  10. #10
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    Hmmmm, I wonder about the significance of these "stand alone" laptops?

    Your normal security model would suggest that you protect your LAN and the clients that attach to it. This secures your business against attack rather than just indicating where staff are doing improper things.

    A valid solution does not have to be 100% so long as it covers the core business?

    A keylogger is an overhead and generally a waste of resources if deployed as suggested. You waste far too much on monitoring people doing their normal jobs, which is of no interest whatsoever.

    The whole idea is totally uneconomical. 1000 seats = $50,000 + $10,000 support contract costs = $60,000.

    Doing it properly would only take $600, because if they haven't got the hint after you have shot the first 10, you have a serious HR problem

    I am not surprised that the kind of software they envisage is not available........... there is no market to support it?

Similar Threads

  1. KeyLoggers
    By earthbound4u in forum Network Security Discussions
    Replies: 18
    Last Post: December 5th, 2006, 10:43 PM
  2. Network Security made easy?
    By Tiger Shark in forum Microsoft Security Discussions
    Replies: 5
    Last Post: January 14th, 2005, 08:47 PM
  3. Perfect Keylogger
    By eaz135 in forum AntiOnline's General Chit Chat
    Replies: 1
    Last Post: April 13th, 2003, 04:04 AM
  4. Sad news for the XP warez world
    By khakisrule in forum Microsoft Security Discussions
    Replies: 15
    Last Post: July 26th, 2002, 12:43 AM
  5. Replies: 11
    Last Post: June 23rd, 2002, 04:24 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •