EN
ENNA

Pixiewps

๐Ÿ“ก Wireless ยท C

Pixiewps is a tool used to brute force offline the WPS PIN exploiting the low or non-existing entropy of some software implementations. This is known as the Pixie Dust attack, which exploits weak random number generation in the WPS protocol implementation of many routers. While Reaver performs online brute force (trying PINs against the router one by one), Pixiewps works offline - it captures the WPS exchange data and computes the PIN locally, typically recovering it in seconds rather than hours. The attack works because many router manufacturers use predictable values (like the router's own BSSID or timestamp) to seed the random number generator used in the WPS Diffie-Hellman key exchange. Pixiewps is typically used in conjunction with Reaver or Bully, which handle the network interaction while Pixiewps performs the offline computation.

1.7kstars
320forks
11issues
Updated 2y ago
View on GitHub

Installation

apt (Debian/Ubuntu)

$ sudo apt install pixiewps

from source

$ git clone https://github.com/wiire-a/pixiewps && cd pixiewps && make && sudo make install

Use Cases

  • Recovering WPS PINs in seconds using the Pixie Dust offline attack
  • Testing router WPS implementations for weak random number generation
  • Combining with Reaver or Bully for automated WPS PIN recovery
  • Auditing wireless networks for vulnerable WPS configurations

Tags

wpspixie-dustoffline-attackwifibrute-forcehacking-toolwifi-security

Details

Category
๐Ÿ“ก Wireless
Language
C
Platforms
๐Ÿงlinux

Links

GitHub Repository

github.com/wiire-a/pixiewps

Releases

github.com/wiire-a/pixiewps/releases

Issues

github.com/wiire-a/pixiewps/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Alternatives & Comparisons

Aircrack-ng

C

Complete suite for WiFi network security assessment. Monitoring, attacking, testing, and cracking.

Compare Pixiewps vs Aircrack-ng

Wifite2

Python

Automated wireless attack tool. Wraps aircrack-ng, reaver, and hashcat for streamlined WiFi auditing.

Compare Pixiewps vs Wifite2

Reaver

C

WPS brute force attack tool. Exploits Wi-Fi Protected Setup to recover WPA/WPA2 passphrases from WPS-enabled routers.

Compare Pixiewps vs Reaver

mdk4

C

802.11 protocol exploitation toolkit. Authentication floods, beacon floods, deauth attacks, and SSID fuzzing for wireless testing.

Compare Pixiewps vs mdk4

hostapd-mana

C

Rogue access point and evil twin toolkit. Modified hostapd for wireless credential capture and MitM attacks.

Compare Pixiewps vs hostapd-mana

WiFi-Pumpkin3

Python

Rogue access point framework. GUI-driven evil twin with captive portal, credential harvesting, and transparent proxy support.

Compare Pixiewps vs WiFi-Pumpkin3

More in Wireless

Aircrack-ng

C

Complete suite for WiFi network security assessment. Monitoring, attacking, testing, and cracking.

wifiwpapacket-capture

Bettercap

Go

Swiss army knife for WiFi, Bluetooth, and ethernet network recon and MITM. Scriptable with JS.

mitmwifibluetooth

Wifite2

Python

Automated wireless attack tool. Wraps aircrack-ng, reaver, and hashcat for streamlined WiFi auditing.

wifiautomatedwpa

Kismet

C++

Wireless network detector, sniffer, wardriving tool, and IDS. WiFi, Bluetooth, Zigbee, and more.

wardrivingidsbluetooth

Flipper Zero Firmware

C

Custom firmware for Flipper Zero. Sub-GHz, RFID, NFC, infrared, and GPIO hacking multi-tool.

flipperrfidnfc

Fluxion

Shell

WPA security auditing tool that uses social engineering for handshake capture via evil twin attacks.

wpaevil-twinsocial-engineering