Defeat Keylogger

A Pragmatic Solution to Subvert Keyloggers

A  pragmatic solution is illustrated below amongst the many solutions to counter keyloggers, whilst not fool-proof it becomes difficult for the hacker to work out the credentials.

The solution involves injecting false character(s) before, in-between and after your password.  For example, if you have a password "Ilovetotest", then inject false characters into the password sequence to end up with something like this : "Iuplothveastotite0[st" . 

The bold characters above have been highlighted to visualise the correct password amongst the injected false characters.  So how do we go about typing these characters into your password box and still manage to log in?

 The trick is to type correct characters from your password into the password box and type the false characters after clicking outside of the password box.  Using this mechanism the Keylogger will capture this particular order of sequence i.e.  "Wa I up lo th ve as to ti te 0[ st Qb".  You will notice a space inserted (in the sequence) by the Keylogger each time you clicked in (to type the valid characters) and out (to type the invalid characters) of the password box. In order to eliminate the space so that your password is not so easily decipherable, click IN and OUT (for invalid characters) or OUT and IN (for Valid characters) of the password box for EVERY key pressed. 

Here is an example of this method, using the password above, each invalid character will require clicking IN to the password field and then OUT and then typing the invalid password character.  For each valid key-press requires clicking OUT of the password field and then back IN before typing the valid password character:

 

1)      Click inside the password box, then click outside of the password box then type "W"

2)      Click inside the password box, then click outside of the password box, then type "a"

3)      Click inside the password box then type "I" (no need to click OUT as the cursor is already outside the password box)

4)      Click outside of the password box then type "u"  (no need to click IN as the cursor is already inside the password box)

5)      Click inside the password box, then click outside of the password box, then type "p"

6)      Click inside the password box then type "l" (no need to click OUT as the cursor is already outside the password box)

7)      Click outside of the password box, then click inside the password box, then type "o",  and so on and so forth until your password is complete.

 
The Keylogger will record your password and the false characters in the sequence as follows: 

"W a I u p l o t h v e a s t o t i t e 0 [ s t Q b".  You will now notice a space inserted between each character typed (the characters in bold are just to show you the password).  This makes it more difficult for the hacker to decipher your password.  A video is included here that illustrates this method.

This technique although appearing cumbersome, with practice will become second nature and offer you some protection when you have to use public untrusted internet facilities