Add "directly" specifier

[sundhaug92]

While an attacker doesn't get access to the passphrase directly, they could get access to it indirectly by gaining access to the network

[kristate]

Sorry, do you have a reference for this? Thanks!

[sundhaug92]

No specific one, however:
1. If the victim is browsing a router web-UI exposing the password, an attacker who can decrypt packets can also see the password
2. If the attacker can inject packets (which is possible with WPA-TKIP), the attacker can inject an iframe which accesses such a page
3. An attacker could attempt to phish the password from the victim

Is this likely? No. Is it possible? Sure. I think it's wrong to state it can't be done with the access.

[kristate]

How about something like:
"Adversary can not recover WPA password from the handshake."

Trying to keep it simple for simple people. What do you think?

[OskoMan54]

i need script version english 👍

[walkeashwin]

I need this .py hope i can contribute

[sundhaug92]

@kristate It could work. Updated the previous comment since the victim is disconnected from the true AP and thus would not be able to be used as a proxy to the router.