menu_book Tactic

Keylogger

Also known as: Keystroke logger, Keylogging

A keylogger is malware or hardware that records a user's keystrokes to capture passwords, messages, and other sensitive input. Many infostealers bundle keylogging to grab credentials as they are typed, even for sites where they are not saved in the browser.

What is a keylogger?

A keylogger captures the keys a victim presses, allowing attackers to reconstruct passwords, private messages, and other typed data. Keyloggers can be software (the common form) or, less often, physical hardware attached to a device.

Keyloggers and infostealers

Several infostealer families (Agent Tesla, Snake Keylogger, FormBook) include keylogging so they can capture credentials at the moment of entry — covering accounts that the browser never stored.

How VantaPrism Tracks Keylogger

VantaPrism focuses on the data that keylogger-stealers exfiltrate, surfacing exposed credentials once they reach monitored distribution channels.

Check Your Exposure arrow_forward

Frequently Asked Questions

Can keyloggers capture passwords not saved in the browser?

expand_more

Yes — keyloggers record keystrokes as they are typed, so they can capture credentials even for sites where the password was never saved.

Related Terms

Agent Tesla arrow_outward

Agent Tesla is a long-established .NET-based infostealer and remote access tool that logs keystrokes, captures screen…

Snake Keylogger arrow_outward

Snake Keylogger is a .NET-based credential stealer and keylogger that records keystrokes, captures screenshots and cl…

Infostealer Malware arrow_outward

Infostealer malware is a category of malicious software designed to silently harvest sensitive data — passwords, sess…

Credential Theft arrow_outward

Credential theft is the act of stealing authentication data — usernames, passwords, tokens, and session cookies — so…

← All Glossary Terms Last reviewed: June 2026