Password Recovery, System Security & Forensic Software


Elcomsoft Wireless Security Auditor

Examine Wi-Fi Network Security

Elcomsoft Wireless Security Auditor is an all-in-one tool to help administrators verify how secure and how busy a company’s wireless network is. The tool will attempt to break into a secured Wi-Fi network by analyzing the wireless environment, sniffing Wi-Fi traffic and running an attack on the network’s WPA/WPA2-PSK password. Featuring patented cost-efficient GPU acceleration technologies and employing a range of smart attacks targeting the human factor, Elcomsoft Wireless Security Auditor runs a highly efficient accelerated attack on the network for a pre-defined amount of time in order to test how secure your wireless environment is.

Designed for nVidia CUDA Designed for AMD Enhanced of Intel Core

Features and Benefits

  • Determine how secure your wireless network is by attacking WPA/WPA2-PSK passwords
  • Analyze your wireless environment
  • Intercept Wi-Fi packets with built-in wireless network sniffer
  • Support for most modern Wi-Fi adapters, as well as dedicated AirPCap adapters
  • Patented GPU acceleration technology uses one or more NVIDIA or AMD video cards to simulate real-world attacks
  • Targets the human factor with highly customizable attacks with configurable variations
  • Intercept limited Wi-Fi traffic, continue working offline

How Secure Is Your Wireless Network?

A single weak link poses a valid security threat to the entire corporate network. Wi-Fi networks can provide sufficient security if configured properly and accompanied by an adequate password policy. Elcomsoft Wireless Security Auditor identifies and exposes security problems in your wireless network to allow network administrators taking appropriate measures and adopting a proper password policy.

If one of your network workstations is compromised and a malicious person gets network access to at least one system, it may not even be necessary for an attacker to be physically close to the wireless network in order to obtain full access to data sent and received. A password hash is normally stored in the Windows Registry, and can be retrieved remotely for off-line analysis.

Elcomsoft Wireless Security Auditor can simulate attacks from the inside by automatically importing saved password hashes as retrieved by Elcomsoft Proactive System Password Recovery. This kind of attacks allows determining how secure your wireless network is to insider attacks.

Built-in Wi-Fi Sniffer

Elcomsoft Wireless Security Auditor comes with a custom NDIS driver for 32-bit and 64-bit systems (Windows 7, 8, 8.1 and 10). The driver is digitally signed by Microsoft, and can be installed on all compatible versions of Windows including the latest builds of Windows 10. By automatically intercepting Wi-Fi traffic and performing an attack on selected Wi-Fi networks, Elcomsoft Wireless Security Auditor becomes a one-stop solution for auditing Wi-Fi networks. WinPCap drivers are required to enable Wi-Fi sniffing. The WinPCap driver is included with Wireless Security Auditor.

In addition, Elcomsoft Wireless Security Auditor fully supports dedicated AirPCap adapters provided that the correct drivers are installed.

Attack Wi-Fi Passwords

Elcomsoft Wireless Security Auditor examines the security of your wireless network by attempting to break into the network from outside or inside. Elcomsoft Wireless Security Auditor can work as a wireless sniffer or operate offline by analyzing a dump of network communications. The tool attempts to recover the original WPA/WPA2-PSK passwords in plain text.

Elcomsoft Wireless Security Auditor allows carrying out a password audit within a limited timeframe. Representing state-of-the-art in password recovery, Elcomsoft Wireless Security Auditor is one of the fastest, smartest and most advanced tools for recovering Wi-Fi passwords. If Elcomsoft Wireless Security Auditor fails to recover a Wi-Fi password within reasonable time, a real attack would similarly fail.

GPU Acceleration and Distributed Attacks

ElcomSoft has pioneered many software innovations that have made it easier to recover passwords protecting various types of resources. For the first time in the industry, the company’s patented GPU acceleration makes its way into Wi-Fi password recovery, reducing the time required to recover Wi-Fi passwords up to a hundred times. Supporting up to four mixed NVIDIA and AMD video cards, Elcomsoft Wireless Security Auditor allows building servers with supercomputer performance at a fraction of the price.

You can use Elcomsoft Distributed Password Recovery to perform a full-performance attack on Wi-Fi passwords. Running on multiple computers, Elcomsoft Distributed Password Recovery can utilize all available resources (CPU and GPU units) when attempting to break your wireless password. If your password cannot be recovered after a reasonably long distributed attack, you may assume your network if sufficiently secure.

Intel Arc GPU benchmark
Elcomsoft Wireless Security Auditor 7.50

Types of Attacks

Elcomsoft Wireless Security Auditor performs a range of highly configurable attacks targeting the human factor. Advanced dictionary attacks are combined with common mutations in order to expose weak passwords consisting of words and phrases in spoken languages. Allowing highly customizable mutations of ordinary dictionary words, Elcomsoft Wireless Security Auditor performs hundreds of mutations to each word in order to ensure the widest coverage.

Elcomsoft Wireless Security Auditor supports highly customizable mutations that target the majority of use cases. Mutations include digits and special caracters, "hacker talk" and years, case and character substitutions, and many others. The tool can combine words from multiple dictionaries, and includes the widest range of manual settings, tweaks and rules such as regular expressions to ensure that most non-random passwords can be recovered in a reasonable time.

Compatibility Chart

EWSA Standard EWSA Professional
Brute-force attack
Dictionary attack with mutations
Wireless sniffer (NDIS/WinPCap) -
Wireless sniffer (AirPCap) -
Number of CPUs supported 2 32
Number of GPUs supported 1 8


Elcomsoft Wireless Security Auditor integrates a custom NDIS driver for 32-bit and 64-bit Windows systems (Windows 7, 8, 8.1 and 10), and automatically installs the required WinPCap drivers. Most modern Wi-Fi adapters are supported. Drivers are digitally signed by Microsoft.

Tcpdump support: the tool can use a standard tcpdump log produced by a third-party Wi-Fi sniffer. In order to audit your wireless network, at least one handshake packet must be intercepted or discovered in the tcpdump file.

AirPCap support: Elcomsoft Wireless Security Auditor supports AirPCap adapters, and requires proper drivers installed.