THIS IS FOR EDUCATIONAL PURPOSES ONLY. Though the tool can actually häçk routers WiFi password, I DO NOT RECOMMEND DOING SO SINCE ITS îllégâl. USE AT YOUR OWN RISK mga ka PH.

YOU ALSO NEED A ROOTED ANDROID PHONE
To root pls refer to my other post: https://phcorner.org/t/2-x-5-x-root-any-android-phone.100442/#post-764235
Reaver implements a brute force attack against Wifi Protected Setup (WPS) registrar PINs in order to recover WPA/WPA2 passphrases.
Reaver has been designed to be a robust and practical attack against WPS, and has been tested against a wide variety of access points and WPS implementations.
On average Reaver will recover the target AP's plain text WPA/WPA2 passphrase in 4-10 hours, depending on the AP. In practice, it will generally take half this time to guess the correct WPS pin and recover the passphrase.
FAQ:
What is this awesome app actually usefull for?
Well, RfA is able to unveil the actual WPA(2)-Key of many routers within 2 - 10 hours.
WHAT?! I though WPA(2) is safe?
It used to be, but then many router models got WiFi Protected Setup, short WPS, implemeted, which is pretty vulnerable. (Details)
Basically it's a Brute-Force attack with Reaver against a 8 digit pin with 10^4 + 10^3 possibilities.
What is Reaver?
Reaver-WPS is a pentesting tool developed by Tactical Network Solutions.
It attacks WPS-enabled routers and after the WPS-Pin is cracked, it retrieves the actual WPA-key.
Reaver provides only a terminal interface, which is ok for notebooks etc., however it's a pain on Android devices.
Because of this I developed RfA.
Doesn't Reaver requires monitor-mode and so can't work on Android?
Yes, Reaver needs monitor-mode, but thanks to bcmon (or external wifi cards) some Android devices are now monitor-mode capable.
bcmon compatibilityDeveloped and tested on: Nexus 7 2012 (Stock 4.3)
RfA *should* work on all devices with bcmon support (Broadcom bcm4329/bcm4330 chipsets)
Simply try by installing bcmon. Don't worry, if something goes wrong a simple reboot should fix everything.
For external wifi cards please see second post.
Tested & works on:
Nexus 7 2012 (Stock 4.3, Cyanogen 9)
Huawei Honour (Cyanogen Mod based ROM)
bcmon does NOT work on:
Samsung Galaxy S3/4/5
HTC One
LG G2
Nexus 4/5
Nexus 7 (2013)
Credits & used tools:
Monitor-Mode over bcmon.apk:
Omri Ildis, Ruby Feinstein & Yuval Ofir
See: You do not have permission to view the full content of this post. Log in or register now.
Reaver-WPS:
Tactical Network Solutions
See: You do not have permission to view the full content of this post. Log in or register now.
You do not have permission to view the full content of this post. Log in or register now., Senior Member XDA

YOU ALSO NEED A ROOTED ANDROID PHONE
To root pls refer to my other post: https://phcorner.org/t/2-x-5-x-root-any-android-phone.100442/#post-764235
Reaver implements a brute force attack against Wifi Protected Setup (WPS) registrar PINs in order to recover WPA/WPA2 passphrases.
Reaver has been designed to be a robust and practical attack against WPS, and has been tested against a wide variety of access points and WPS implementations.
On average Reaver will recover the target AP's plain text WPA/WPA2 passphrase in 4-10 hours, depending on the AP. In practice, it will generally take half this time to guess the correct WPS pin and recover the passphrase.
- Detects automatically WPS-enabled routers.
- All Reaver-Settings are accessible from a simple-to-use GUI.
- Activates and deactivates Monitor-Mode automatically when needed.
- Provides a simple way to connect when Reaver finds the WPA-Key.
- External script support
- Download/install bcmon.apk from You do not have permission to view the full content of this post.
Log in or register now. and RfA.apk from You do not have permission to view the full content of this post.
Log in or register now.. RfA may also download bcmon automatically.
Update for the RFA link:
You do not have permission to view the full content of this post. Log in or register now. - Run bcmon, if it crashes try a second time.
- If all runs fine, start RfA. If not, your device may be not bcmon compatible.
- After selecting an WPS-enabled router, click on "Test Monitor-Mode".
- Now you can use RfA
, don't uninstall bcmon.
FAQ:
What is this awesome app actually usefull for?
Well, RfA is able to unveil the actual WPA(2)-Key of many routers within 2 - 10 hours.
WHAT?! I though WPA(2) is safe?
It used to be, but then many router models got WiFi Protected Setup, short WPS, implemeted, which is pretty vulnerable. (Details)
Basically it's a Brute-Force attack with Reaver against a 8 digit pin with 10^4 + 10^3 possibilities.
What is Reaver?
Reaver-WPS is a pentesting tool developed by Tactical Network Solutions.
It attacks WPS-enabled routers and after the WPS-Pin is cracked, it retrieves the actual WPA-key.
Reaver provides only a terminal interface, which is ok for notebooks etc., however it's a pain on Android devices.
Because of this I developed RfA.
Doesn't Reaver requires monitor-mode and so can't work on Android?
Yes, Reaver needs monitor-mode, but thanks to bcmon (or external wifi cards) some Android devices are now monitor-mode capable.
bcmon compatibilityDeveloped and tested on: Nexus 7 2012 (Stock 4.3)
RfA *should* work on all devices with bcmon support (Broadcom bcm4329/bcm4330 chipsets)
Simply try by installing bcmon. Don't worry, if something goes wrong a simple reboot should fix everything.
For external wifi cards please see second post.
Tested & works on:
Nexus 7 2012 (Stock 4.3, Cyanogen 9)
Huawei Honour (Cyanogen Mod based ROM)
bcmon does NOT work on:
Samsung Galaxy S3/4/5
HTC One
LG G2
Nexus 4/5
Nexus 7 (2013)
Credits & used tools:
Monitor-Mode over bcmon.apk:
Omri Ildis, Ruby Feinstein & Yuval Ofir
See: You do not have permission to view the full content of this post. Log in or register now.
Reaver-WPS:
Tactical Network Solutions
See: You do not have permission to view the full content of this post. Log in or register now.
You do not have permission to view the full content of this post. Log in or register now., Senior Member XDA