Hacker News new | ask | show | jobs
by malfist 895 days ago
Do hardware keyloggers trigger endpoint security?
4 comments
Sohcahtoa82 895 days ago
A hardware keylogger has to sit as a MitM between the keyboard and the USB port.

Sufficiently paranoid endpoint security could trip when the keyboard is unplugged and then plugged back in.

link
dannyw 894 days ago
That must have a lot of false positives for all but the most paranoid environments.
link
RedTeamPT 895 days ago
No, but hardware keylogger require physical access.
link
malfist 895 days ago
What is the difference between "physical access" and "powerful position with local access"
link
Robin_Message 894 days ago
It's the difference between the evil maid attack (someone sneaks a keylogger into your turned-off machine whilst cleaning your room) vs local privilege escalation (the sysadmin installs a game and now your entire network is owned).
link
sumedh 894 days ago
I asked ChatGpt "where can I buy hardware keyloggers"

It just shut me down "I can't assist with that request."

link
ametrau 894 days ago
This company makes nice ones:

https://shop.hak5.org/blogs/payloads/duckylogger

link
eddythompson80 895 days ago
They do not
link