Luego te digo, pero no es más fácil hacerte pasar por la Red y que se conecten directamente y te la dan.
Por fuerza bruta es casi imposible 🙅. Depende de la longitud del Password y de la complejidad de la misma.
Sigue estas indicaciones. Te recomiendo kali. Aquí lo hacen con fluxion.
Mejor explicado imposible.
Fluxion is a remake of linset by vk439 with fixed bugs and added features. It's compatible with the latest release of Kali (Rolling)
How it works
•Scan the networks.
•Capture handshake (can't be used without a valid handshake, it's necessary to verify the password)
•Use WEB Interface
•Launches a FakeAP instance imitating the original access point
•Spawns a MDK3 processs, which deauthentificates all of the users connected to the target network, so they can be lured to connect to FakeAP network and enter the WPA password.
•A DHCP server is lainched in FakeAP network
•A fake DNS server is launched in order to capture all of the DNS requests and redirect them to the host running the script
•A captive portal is launched in order to serve a page, which prompts the user to enter their WPA password
•Each submitted password is verified against the handshake captured earlier
•The attack will automatically terminate once correct password is submitted
https://github.com/deltaxflux/fluxion.gitYa me cuentas si lo has conseguido.
Una vez dentro puedes utilizar Armitage.
✌