(09-30-2018, 05:09 PM)ZerBea Wrote: @Superninja
It is not a good idea to copy hcxtools source and hcxdumptool source into the same directory.
Also it is not a good idea to use this directory as your working directory.
If you are a beginner, you should use file extensions (pcapng for a captured file, hash.16800 for a PMKID hashfile, hash.hccapx for an EAPOL hashfile). That will make life a little easier for you.

(10-01-2018, 08:09 AM)ZerBea Wrote: The Wiki is a good place to get some answers:
https://hashcat.net/wiki/doku.php?id=mask_attack

But keep in mind that this (PBKDF2) is a slow process. A mask only make sense if you know a part of the password or you expect a simple password (for example 8 digits) or you expect a password with a limited key space.

(10-01-2018, 01:12 PM)ZerBea Wrote: No need to run rockyou against your hash. This list is included in the dictionaries of: https://wpa-sec.stanev.org/?dicts
You can upload your cap (using wlancap2wpasec or web interface). If the password is found, you will find it in cracked.txt. In this case you doesn't waste time testing common wordlists, because wpa-sec will do this for you. Now you can try other wordlists:
https://github.com/zecopro/wpa-passwords
https://hashes.org/left.php
http://wordbook.xyz/download/wifi/3wifi-wordlist.rar
read more about this wordlist here:
https://forum.antichat.ru/threads/281655/page-104

You can try wlanhcx2psk and/or hcxpsktool (will give you some weak password candidates).
You can get VENDOR information from mac_ap (using whoismac) and/or ISP (from default ESSID) and search for default key space.

(10-02-2018, 11:59 AM)ZerBea Wrote: > wanted try, but wpasec accept only cap format.
No! wpa-sec running hcxtools in background.
Accepted formats are: cap, pcap, pcapng and gzip compressed cap, pcap and pcapng.
Just upload your captured file via web interface or
$ wlancap2wpasec yourcapfile.pcapng