Pixiewps is a tool written in C used to bruteforce offline the WPS pin exploiting the low or non-existing entropy of some APs (pixie dust attack). It is meant for educational purposes only. All credits for the research go to Dominique Bongard.
- Checksum optimization: it’ll try first for valid PINs (11’000);
- Reduced entropy of the seed from 32 to 25 bits for the C LCG pseudo-random function;
- Small Diffie-Hellman keys: don’t need to specify the Public Registrar Key if the same option is used with Reaver.
The program will also try first with E-S0 = E-S1 = 0, then it’ll try to bruteforce the seed of the PRNG if the –e-nonce option is specified.
Download Link:- https://gitlab.com/kalilinux/packages/pixiewps