pkg install wget wget https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt gunzip rockyou.txt.gz The terminal whirred — and within minutes, aircrack-ng found the password: coffeeLover2024! .

After a few seconds of reconnection attempts, he stopped the capture ( Ctrl+C ). He copied the .cap file and ran:

His friend was amazed. “You did that just from your phone?”

ip a On Android, it was wlan0 . Leo asked his friend to disconnect and reconnect to the network. Meanwhile, Leo ran:

And Leo’s final advice to you: “Aircrack-ng on Termux is a powerful learning tool — but respect the law. Use it on your own lab, your own router, or with explicit permission. Otherwise, you’re not a hacker; you’re a criminal.” Want to try it safely? Set up a free virtual lab with aircrack-ng on Kali Linux instead of relying on Termux’s limitations. Your future self will thank you.

pkg update && pkg upgrade pkg install root-repo pkg install aircrack-ng He also installed tcpdump and termux-api (to check Wi-Fi status). Leo’s internal Wi-Fi couldn’t go into monitor mode. So he couldn’t use airodump-ng to scan. But he had a backup plan: capture a WPA handshake passively using tcpdump while his friend reconnected to the router.

First, he updated Termux:

Late one evening, Leo, a cybersecurity student, sat in a bustling coffee shop. His friend had just lost the Wi-Fi password to their shared study group’s router. “No problem,” Leo said, pulling out his Android phone. “Let me show you how we audit our own network’s security.” Step 1: The Setup (No Root? No Problem — Mostly) Leo opened Termux . He knew that Android’s Wi-Fi chip is locked down — no monitor mode without a rooted device and a compatible external adapter. But for basic WPA handshake capture on his own, authorized network , he could still use aircrack-ng in limited ways.