After a few seconds of reconnection attempts, he stopped the capture ( Ctrl+C ). He copied the .cap file and ran:
Leo smiled. “I audited our own router. That’s the ethical part. Now let’s change the password to something stronger.” | What Leo Learned | Why It Matters | |----------------|----------------| | Monitor mode rarely works on internal Android Wi-Fi | You need a rooted phone + external USB Wi-Fi adapter (with OTG cable) for real penetration testing. | | Aircrack-ng in Termux works for cracking captures | If you obtain a .cap file legally (e.g., from your own router or test lab), aircrack-ng runs fine. | | Wordlists are essential | Without a good wordlist like rockyou.txt , cracking is nearly impossible. | | Ethics are non-negotiable | Only test networks you own or have written permission to audit. | The Happy Ending Leo’s friend changed the Wi-Fi password to BlueMuffin$42 — strong, unique, and not in any dictionary. Leo documented the test, thanked his friend, and used the experience for his cybersecurity homework. aircrack-ng termux
He turned on his phone’s Wi-Fi, connected to the target network (his own), and found the interface name: After a few seconds of reconnection attempts, he
ip a On Android, it was wlan0 . Leo asked his friend to disconnect and reconnect to the network. Meanwhile, Leo ran: That’s the ethical part
Late one evening, Leo, a cybersecurity student, sat in a bustling coffee shop. His friend had just lost the Wi-Fi password to their shared study group’s router. “No problem,” Leo said, pulling out his Android phone. “Let me show you how we audit our own network’s security.” Step 1: The Setup (No Root? No Problem — Mostly) Leo opened Termux . He knew that Android’s Wi-Fi chip is locked down — no monitor mode without a rooted device and a compatible external adapter. But for basic WPA handshake capture on his own, authorized network , he could still use aircrack-ng in limited ways.
First, he updated Termux:
pkg update && pkg upgrade pkg install root-repo pkg install aircrack-ng He also installed tcpdump and termux-api (to check Wi-Fi status). Leo’s internal Wi-Fi couldn’t go into monitor mode. So he couldn’t use airodump-ng to scan. But he had a backup plan: capture a WPA handshake passively using tcpdump while his friend reconnected to the router.