How To Hack Wifi WPA And WPA2 Without Using Wordlist In Kali Linux OR Hacking Wifi Through Reaver

Hello Friends Today I Am Going To Show You How To Hack Wifi Without Using Wordlist Or You Can Call it as  Hacking Wifi Password Using Reaver Method



1.   Kali Linux – Operation System in Your System or In Your Flash Disk (USB Pendrive)
2.   4GB or Above Pendrive
3.   Kali Live Boot
4.   Wifi networks nearby with Excellent Signal to make hacking faster


1)    Can hack only WPS Enabled Routers

2)    Cannot hack WPS Turned ON Routers 

 What is WPS: : 
                   WPS Means Wifi Protected System, This Is a Different Type of security system which is enabled for some routers, it is the best method to hack wifi , But it does have Limitations, they are some routers with WPS enabled are secured by another security called “AP RATE LIMITING” if you see this just leave that network and go to another network.

1)     Till now no one found any method to break that security system, may be in my later posts I will try to post how to break that security system

2)      Wpa And Wpa2 Networks can only be hacked using wordlist, Which uses Brute Force Attack in which probability of getting password is only 35%

3)      But In Reaver Method Probability is 100% (Only If AP Rate Limiting  Is Not Available)

4)      So it is better to go for reaver method if wps is available

5)      It consumes less time than Brute Force Attack Or Dictionary Attack

6)      If the network that you want to hack has an excellent signal and if your system is in good condition, then the hack completes in  5 – 18 Hours.

How To Hack Wifi WPA/WPA2 - WPS Enabled Netork without Using Wordlist

Step 1: Open Terminal and type "ifconfig"  (Optional)

Step 2:  Here I will be selecting wlan0 as my interface

             And the Next Command Is  “airmon-ng start wlan0”

Step 3: Now you can see the available supplicants and the interfaces 

Step 4:  There are two options from here on, you can either kill the supplicants or move on with the other command. 

1)   By Using Kill Command and Stopping the Wlan0 Supplicants

    2)   By Using the Command "airodump-ng mon0" instead of kill and the next  
                                command is  "airodump-ng wlan0"

 Here i used "Kill" Command to kill the supplicants, you can follow any of these   methods

Step 5: Now Type The Following Command "airodump-ng wlan0"

For Kali Linux 2016 and later on versions,  type "airodump-ng wlan0mon"

Step 6: Here you can see all the available wifi networks 

Step 7:  Press "CTRL + C" to stop the search

Step 8: Type "wash -i wlan0mon" 

if that doesn't work type "wash -i mon0"

Wash is a tool used to search for all the wps enabled networks around you. 

Step 9:  Here are the wps enabled networks available around me :p. 

Note:  Reaver can hack networks for which WPS is enabled and not locked, which can be seen below. In the WPS Locked Column. If it says

 "Yes" - reaver can not hack such networks 
  "NO" -- Reaver can hack those networks 

Step 10: Press "CTRL + C" to stop the search and select a network that you want to hack

 Step 11: Copy the "BSSID" of the network

Step 12: Now time to hack the network using Reaver :p 

"Reaver -i mon0 -b bssid -vv"

Here bssid = the mac address or the bssid  that you copied earlier
          mon0= Interface (you can either use wlan0 or mon0 or wlan0mon in Kali 2016 or higher)

Step 13: Now reaver starts its program and the Hacking Starts, you need to wait till it completes it's hack(100%)

Reaver takes at least 6-18 hours to hack the network password, so please be patient and let it do its work. WPS pin contains 99999999 combinations, so it might take a while to crack it. 

After reaching 100% you can see the password of that network, as it takes a lot of time I am not able to show you the password of that network. But can guarantee you that this is the best and easiest way to hack wifi wpa and wpa2 password

Reaver can hack routers which are manufactured before 2012, later on manufactured discovered the flaw and modified in such a way that, when someone try to brute force wps pin, it automatically locks the wps system which is a disadvantage to reaver.


If you face this Error, most likely you should stop using this particular method and go for Evil Twin Method, which can Hack any router but with user Interference.  

The Reason for getting this Error is WPS Protection is turned "ON" on the victim's Router. We cannot hack WPS locked router's using Reaver, you need to use evil twin attack to hack WPS locked networks, that's the only method as of now. 

If you get an error of AP Rate Limiting then try using the following commands, for very few router's this command will work

“reaver –i mon0 –b bssid –d 30 –vv –dh-small”

AP rate limiting cannot be cracked, nowadays almost all the routers come with WPS lock turned on so this might not work on all the routers.

                                                    Never Give Up

How to Secure Yourself from Reaver Attack:

If You don’t want to be a victim of Rever Attack, replace your very old routers with new one or simply disable WPS from your Router’s control panel.

==========     Hacking Don't Need Agreements     ==========
Just Remember One Thing You Don't Need To Seek Anyone's  To Hack Anything Or Anyone As Long As It Is Ethical, This Is The Main Principle Of Hacking Dream
    Thank You for Reading My Post, I Hope It Will Be Useful For You

I Will Be Very Happy To Help You So For Queries or Any Problem Comment Below Or You Can Mail Me At