WIFI-WPA2-PSKCredential Access

WPA2-PSK Handshake Capture + Crack

Deauth a connected client to force re-handshake, capture 4-way handshake, crack offline with hashcat -m 22000.

§ Where this technique fits

WIFI-WPA2-PSK is catalogued under the Credential Access tactic of the offensive-security kill-chain. It appears in 1 approved dossier in the registry, typically at step 3 on average.

§ Dossiers chaining this technique

WPA2-PSK handshake capture + crack → LAN access
Deauth a connected client to force re-association, capture the 4-way handshake with airodump-ng, crack the PSK offline with hashcat.
step 3 / 6

§ What commonly comes next

01
Brute Force
T1110 · Credential Access
seen 1×

§ Where this technique fits

§ Dossiers chaining this technique

WPA2-PSK handshake capture + crack → LAN access

§ What commonly comes next