provocativo_
back to the arsenal
// arsenal·WirelessIntermediateFOSS

Reaver

WPS PIN brute-forcer — recovers WPA/WPA2 PSK via the WPS protocol weakness.

Wireless

$ reaver --help

Reaver

// what it is

Description

Original WPS attack tool (Stefan Viehböck, 2011). Brute-forces the 8-digit WPS PIN; once recovered, the AP gives up the WPA PSK in plaintext.

// use cases

What people use it for

  • WPS attack against routers with WPS still enabled

// commands

The commands you'll type

Attack a target BSSID

$ reaver -i wlan0mon -b <BSSID> -vv

// facts

category
Wireless
platforms
LIN
license
FOSS
difficulty
Intermediate

// links

// related in Wireless

WirelessIntermediate

Aircrack-ng

The classic Wi-Fi security testing suite — `airmon-ng`, `airodump-ng`, `aireplay-ng`, `aircrack-ng`.

FOSS
LIN·WIN·MAC
open entry →
WirelessBeginner

Airgeddon

Wi-Fi audit menu-driven multi-tool — wraps aircrack, hostapd, etc.

FOSS
LIN
open entry →
WirelessBeginner

Wifite

Automated Wi-Fi auditing — just point it at an interface and it does the rest.

FOSS
LIN
open entry →