Skills

offensive-wpa2-psk

Installation
SKILL.md

WPA/WPA2-PSK Attacks

The default mode for almost every consumer and SMB Wi-Fi network. The four-way handshake's PMKID and EAPOL frames give you everything you need to crack offline — no online attempts, no lockout, no detection signal beyond the deauth (which you can avoid with PMKID).

Quick Workflow

  1. Identify the target BSSID, channel, and encryption (see offensive-wifi-recon)
  2. Try PMKID first (fast, no client interaction)
  3. Fall back to four-way handshake capture if PMKID isn't yielded
  4. Convert capture to hashcat-compatible format
  5. Crack offline with appropriate wordlist + rules + masks

PMKID Attack (Preferred When Possible)

The PMKID is included in the first message of the four-way handshake. Many APs leak it in response to a single association request — no real client needed.

Installs
29
Repository
snailsploit/claude-red
GitHub Stars
2.3K
First Seen
May 8, 2026
Security Audits
Gen Agent Trust HubPass
SocketWarn
SnykFail
offensive-wpa2-psk — snailsploit/claude-red