Prefer Hashcat over Aircrack-ng for WPA handshake cracking (GPU acceleration)

[zozidalom]

Feature Request: Prefer Hashcat over Aircrack-ng for WPA Cracking

Summary

Aircrack-ng is currently used to crack WPA handshakes in Wifite, but it's CPU-only and much slower than Hashcat, which supports GPU acceleration. This feature request proposes prioritizing Hashcat for WPA handshake cracking when available.

---

Motivation

Hashcat provides significantly faster WPA cracking on systems with supported GPUs. Since Hashcat supports .hccapx/.22000 format WPA handshakes, Wifite could leverage it for cracking, while still verifying cracked passwords with Aircrack-ng (which handles MIC verification).

---

Suggested Behavior

• Use Hashcat as the primary cracking engine if installed.
• Convert .cap to .hccapx using hcxpcapngtool.
• Verify any cracked password using Aircrack-ng.
• If verification fails, continue cracking with Hashcat from where it left off (using --restore).

---

Basic Outline

1. Detect if hashcat is installed.
2. Convert .cap to .hccapx or .22000 using hcxpcapngtool.
3. Run Hashcat with:

   hashcat -m 22000 -a 0 handshake.22000 wordlist.txt --status --status-timer=2 --restore

4. If a password is found, validate it using:

   aircrack-ng -w <(echo 'cracked_psk') -b BSSID capture.cap

5. If validation fails, resume Hashcat (--restore auto-saves state every few seconds).

---

Benefits

• GPU acceleration via Hashcat = faster cracking
• Still accurate thanks to Aircrack-ng verification
• No wasted results due to false positives