You Can Type, But You Can't Hide: A Stealthy GPU-Based Keylogger

Download Now
Provided by: Columbia University
Topic: Security
Format: PDF
Keyloggers are a prominent class of malware that harvests sensitive data by recording any typed in information. Keylogger implementations strive to hide their presence using rootkit-like techniques to evade detection by antivirus and other system protections. In this paper, the authors present a new approach for implementing a stealthy keylogger: they explore the possibility of leveraging the graphics card as an alternative environment for hosting the operation of a keylogger. The key idea behind their approach is to monitor the system's keyboard buffer directly from the GPU via DMA, without any hooks or modifications in the kernel's code and data structures besides the page table.
Download Now

Find By Topic