Home > Products > Network passwords > Wireless Password Recovery > Screenshots > Recovering WPA hashes > Base-word recovery
Recovering WPA hashes using base-word attack
14.11.2018
Reset Windows Password v9
New forensic investigation tools
16.10.2018
Passcape Wordlist Collection
New dictionaries with real passwords
24.09.2018
Wireless Password Recovery v5.0
Support for PMKID and NVidia RTX 20xx. WPA/WPA2 enterprise credentials recovery, etc.
27.07.2018
Wireless Password Recovery v4.3.5
New features and tools, bug fixes

Articles and video

You may find it helpful to read our articles on Windows security and password recovery examples. Video section contains a number of movies about our programs in action

Wireless Password Recovery - base-word attack


Base-word attack (developed by Passcape) is pretty much similar to mask recovery. However, you don't have to set up the mask syntax here; simply enter the keyword, which supposedly was the base word for the password. It is an irreplaceable recovery tool when you know a portion of the password or its basic component. Normally, such cases dispose to using mask recovery; however, it does not always allow coping with the task set forth. Suppose our password was 'S10wDr1v3r'. Trying to guess such a complicated password using mask recovery would be an ungrateful job, even if you are quite sure that it is based upon the 'slowdriver' word. These are the cases when the base-word attack will rescue you.

Base-word recovery

With this tool, the program will attempt to guess the original password, trying all possible combinations founded upon 15 groups of rules (total over 150 rules.) If you type 'slowdriver' in the field, you will see that the program has generated thousands of different combinations upon this phrase, and one of those combinations could match our password.

You can also generate a wordlist on those mutations and save it on a disk.

Turn on the 'Use document name as an input word' option to let the program automatically select the base-word phrase based on SSID name. 

Note, if your password length exceeds 15-16 characters, it may take quite some time to prepare (mutate) the password for the recovery.