The app can log text input fields, capture button clicks, and scrape text dynamically as it appears across all other applications, effectively acting as a highly efficient keylogger without needing root access. Custom Virtual Keyboards
The installation of a keylogger can have severe consequences:
We queried GitHub using the following search terms (January 2024 – June 2025): Keylogger Github Android
emulator -avd Pixel_6_API_33 -netdelay none -netspeed full -no-snapshot
Several GitHub projects combine Accessibility Service (for text) with overlay windows (for intercepting taps). One notable PoC ( GhostTouch ) overlays an invisible view to capture touches even on secure screens. The app can log text input fields, capture
If using a project for testing, never hardcode your real email password; use an App Password to isolate access. How Keyloggers Work and How To Defeat Them - PMC
: Allow the researcher to choose which apps to monitor (e.g., only social media or banking apps) to limit data collection to relevant test cases. Anti-Debugging Studies If using a project for testing, never hardcode
Another common method demonstrated in open-source repositories is the creation of a custom Input Method Editor (IME).
When these educational concepts are weaponized, they become potent tools for cybercriminals.
Protecting a phone requires vigilance and a proactive approach. The following list outlines steps to detect and remove a potential keylogger.