WPA/WPA2 Wi-Fi Security Testing Tool
Overview
An open-source, educational Wi-Fi security testing tool that demonstrates weaknesses in WPA/WPA2 networks by performing a full handshake-capture-to-passphrase-recovery workflow. Built for security research and authorised testing only.
Why It Exists
WPA/WPA2 networks with weak passphrases remain a real-world risk. WiFiCrackPy makes that risk concrete and reproducible for educational purposes, illustrating, end to end, how a captured handshake can be turned into a recovered key, so the importance of strong credentials is tangible.
What We Built
A Python CLI (WiFiCrackPy.py) that orchestrates a pipeline of established security tools: it captures the necessary WPA(2) handshake packets with zizzania, converts them to a hashcat-ready format with hcxpcapngtool (from hcxtools), and runs hashcat to recover the hashed passkey. The tool wraps these steps in a friendly interface using PrettyTable/tabulate for output and pyfiglet for presentation, with pyobjc for macOS integration and libpcap for capture. The README is explicit that it is for educational use and must not be misused.
Technologies & Approach
Python as the orchestration layer over best-in-class native security tools (zizzania, hcxtools, hashcat, libpcap). Rather than reimplementing cryptographic attacks, the tool composes proven utilities into a clean, repeatable workflow, the practical way real security testing is done.
Outcome / Impact
A long-lived (2020–2024) open-source security tool that demonstrates the studio’s comfort with offensive-security tooling, low-level packet capture and the WPA/WPA2 threat model, framed strictly as security R&D and education.
Capabilities Demonstrated
- Wi-Fi (WPA/WPA2) security assessment workflows
- Handshake capture, format conversion and hash recovery
- Orchestrating low-level security tools (zizzania, hcxtools, hashcat)
- Responsible, education-focused security R&D