Did you know that your Wi-Fi can be hacked using only an Android phone?
Your home network is the weakest point, which can allow a hacker to break into your digital defenses.
If someone gains access to your Wi-Fi network, they could spy on connected devices, steal sensitive data like login credentials and credit-card details, or even install malware that puts your data at serious risk.
This is why testing the security of your Wi-Fi network should be the first step in protecting your digital life.
In this guide, I will introduce Wipwn, a tool that lets you test WPS-enabled Wi-Fi networks directly from your Android phone using Termux. Wipwn performs ethical tests using techniques like Pixie Dust and brute force, helping you find out whether your WPS-enabled network is vulnerable before a hacker does.
What is Wipwn?
As mentioned above, Wipwn is an open-source Wi-Fi pentesting tool focused on testing WPS security. You can run it directly on your Android device using Termux. Wipwn helps you check whether a WPS-enabled router is vulnerable by running ethical tests.
Wipwn mainly uses two types of attacks:
- Pixie Dust attack: Some routers let you log in using an 8-digit PIN or a single button press instead of a full password. The Pixie Dust attack takes advantage of weaknesses in how these routers generate and verify that PIN. It can guess the PIN offline, without connecting to the router.
- Brute force attack: A brute force attack tries every possible PIN or password until it finds the correct one. This method usually takes longer than Pixie Dust, depending on the strength of the PIN or password. Wipwn can continue a brute force test from where it left off if the process is interrupted.
Importance of Wipwn
Runs on Android
Not everyone has access to a laptop running Kali Linux. Wipwn lets you perform WPS security checks using just your Android phone and Termux. So instead of struggling with high-end computers, you can test your Wi-Fi security quickly on your Android phone.
Auto-Save Feature
One feature I really like about Wipwn is that it automatically saves cracked PINs and settings. This means you don’t have to start from scratch if a test is interrupted, and you always have a record of your results.
I’m sharing this guide to help you test your own WPS-enabled Wi-Fi networks or networks you have explicit permission to test. Please use this information ethically never attempt to hack someone else’s network. Ethical testing keeps you and others safe.
Requirements to Run Wipwn in Termux
Before you start copying and pasting installation commands, it’s important to know that not every Android phone can run Wipwn. This tool relies on specific hardware and software to work correctly. Here’s what your device needs:
-
Root access
Wipwn requires root access to control your phone’s Wi-Fi chip. Without root, the tool won’t work. Rooting comes with risks, so it’s best to use a spare phone, not your main device.
-
A Compatible Wi-Fi Chipset
Not all Android phones have WI-FI chipset that support monitor mode, which Wipwn uses to scan and test networks. Phones with Qualcomm or Broadcom chipsets usually work best.
If your phone isn't compatible, don’t worry, you can use an OTG adapter with an external Wi-Fi adapter to run Wipwn.
-
Sufficient Hardware (RAM / Storage)
To run Wipwn smoothly, your Android phone should have enough RAM and Storage, I recommend at least 4 GB of RAM and 32 GB of storage. Running the tool on weaker devices may cause crashes or slow performance.
-
Required Software (inside Termux)
You’ll need to install several tools to run Wipwn:
- Python – runs the Wipwn scripts
- git – downloads and updates the tool
- wpa-supplicant, iw, pixiewps, openssl – Wi-Fi utilities and helper tools
- tsu or sudo – provides root access inside Termux
Don’t worry you’ll get a full guide below on how to install all of these tools step by step.
Recommended Phones (Tested & Reliable)
If you want a device that meets all requirements for smooth Wipwn operation, here are my top picks:
- Samsung Galaxy S25 Ultra – High performance, large battery, and excellent hardware for Wi-Fi testing.
- Google Pixel 10 Pro XL – Popular with developers, easy to root, and gets long-term updates.
These phones are not only powerful but also have strong developer community support, making them excellent choices for advanced mobile security testing
Other compatible options include:
Samsung Galaxy S25 (non-Ultra), Google Pixel 9 / Pixel 9a, older Pixel 6 / 7 series, and select OnePlus flagship phones.
Note: Compatibility can vary depending on region, carrier, or software version. Always check forums like XDA Developers for device-specific advice before purchasing.
How to Install Wipwn in Termux
If your device meets the requirements above, you’re ready to install Wipwn in Termux. Follow these steps carefully to avoid errors.
Tip: Always use the recommended version of Termux for smooth installation. Avoid the Play Store version it’s outdated. Download it from the official Termux website or follow this step-by-step guide to install Termux on Android.
1. Update and upgrade Termux packages
First, open Termux and run:
pkg update && pkg upgrade -yThis updates all packages in Termux, ensuring that Wipwn installs smoothly and reducing the chance of errors.
2. Install Required Repositories and Packages
Next, you need to install the packages required to run Wipwn:
pkg install root-repo -y
pkg install git python wpa-supplicant pixiewps iw openssl -yroot-repo enables packages that require root access.
pixiewps is used for Pixie Dust analysis attacks.
wpa-supplicant and iw provide Wi-Fi utilities.
3. Install Root Helper (tsu or sudo)
Wipwn requires root privileges to run. Install
tsu (preferred) or sudo if tsu isn't available:
pkg install tsu -y || pkg install sudo -y
After the installation is complete test root by running tsu then
whoami (you should see root)
4. Clone the Wipwn Repository
Download Wipwn from GitHub and navigate to its directory:
git clone https://github.com/anbuinfosec/wipwn
cd wipwnThis copies Wipwn to your device and moves into the folder so you can run commands.
5. Make the Main Script Executable
To allow Wipwn run, make the main script executable:
chmod +x main.pyThis allows Wipwn to run. Without this step, the tool won’t start.
6. Install the Launcher Script (Optional but Recommended)
For easier access, you can install a launcher script so that you can
run Wipwn with a simple command instead of typing
python main.py every time:
python3 setup.py installAfter this, you can start Wipwn by simply typing:
wipwnTip: Follow each step carefully. Skipping a command or permissions step can prevent Wipwn from running correctly.
How to Use Wipwn (Usage)
Once you’ve successfully installed Wipwn, it’s time to start testing your Wi-Fi security. Follow these steps carefully and remember: only test networks you own or you have a clear OK from the owner in charge of a network that lets you test its security.
1. Read the help and info
Before scanning networks, first check the help menu to better understand what the tool can do and lists available options.
Run this command to open the help and info menu:
wipwn --helpOr, if you didn’t install the launcher you can run:
python main.py --helpThe help output will show you:
- how you can specify the Wi-Fi interface (the network adapter you want to use)
- what modes exist (scan, auto, target, analysis)
- where your results are saved
- any optional flags for verbose logging or dry-run
2. Scan for Networks + Auto Attack
The command below scans for nearby networks and checks whether they support WPS; if it finds one, it automatically tries a Pixie Dust attack when possible.
sudo wipwn -i wlan0 -K
Tip: Your network interface might be different (like wlan1 or
eth0). Run iw dev to find yours
Before scanning, make sure your hotspot and location services are turned on. Also, turn off WiFi so your interface is free to scan.
3. Target a Specific Wi-Fi Network
If you want to specify the WiFi network to scan use this command:
sudo wipwn -i wlan0 -b <BSSID> -K
Replace <BSSID> with your network’s unique ID it looks
somewhat like 50:0F:F5:B0:08:05. This tells Wipwn: “Don’t scan everything,
just focus on this one router.”
4. WPS Brute Force Attack
If the router resists a Pixie Dust attack, you can try a brute-force test. This method attempts every possible WPS PIN until it finds the correct one, it can take a long time and may trigger router protections, so use it carefully.
Run:
sudo wipwn -i wlan0 -b <BSSID> -B
To speed things up, provide a PIN prefix with -p. For
example:
sudo wipwn -i wlan0 -b <BSSID> -B -p 1234This tells Wipwn to try all PINs that start with 1234, which can dramatically reduce testing time if you already know part of the PIN.
If your scan or attack is interrupted, simply rerun the same command. Wipwn automatically saves your progress, so you don’t need to start from scratch.
5. Use the Bash Launcher (shortcut)
If you want to avoid typing long commands every time, Wipwn includes a small bash launcher you can run for quicker access.
Make the launcher executable (if needed):
cd wipwn
chmod +x wipwn.shRun the launcher:
bash wipwn.sh
# or, if executable:
./wipwn.shThe launcher wraps common commands and menus so you can select actions (scan, target, analysis, etc.) without remembering full command lines.
How to update or uninstall Wipwn
Update Wipwn
Make sure you are inside the wipwn directory, then run:
python3 update.pyThis will pull updates and apply any fixes or new features included in the repository.
Uninstall Wipwn
To uninstall Wipwn from Termux, run:
python3 setup.py uninstallThat removes the installed launcher and related installed files. If you and want to remove the repo too, delete the folder:
cd
rm -rf wipwnQuick Troubleshooting (if something goes wrong)
If you run into errors while using Wipwn, don’t panic. Most issues can be fixed with a few simple checks. Try these first:
| Problem | Cause | Fix |
|---|---|---|
| Check the help menu | Not sure if Wipwn is installed correctly |
Run wipwn --help or sudo wipwn --help. If
you see the help menu, it is installed fine. If not, repeat the
installation steps carefully.
|
| No networks found | Hotspot or location services are off, or adapter is busy | Turn on Hotspot and Location Services. Make sure your Wi-Fi adapter is not already connected. |
| Device or resource busy (-16) | Wi-Fi interface is locked by another process | Toggle Wi-Fi ON → OFF, then try again. |
If you face an error not listed here, drop a comment — I enjoy replying and helping readers solve problems.
What to Do if Your Wi-Fi Can Be Cracked
If Wipwn shows that your Wi-Fi is vulnerable, don’t panic. That’s the whole point of testing, to discover weaknesses before someone else does. Follow these steps to lock down your network:
1. Change your Wi-Fi password immediately
Set a strong, unique password that combines uppercase, lowercase, numbers, and symbols. Avoid names, birthdays, or anything easy to guess. This step alone stops most brute force attacks.
2. Turn off WPS and WEP
WPS and WEP are outdated and insecure. Go into your router settings and disable them.
If your router supports WPA2 or WPA3, enable one of those instead (WPA3 is the most secure option right now).
3. Update your router’s default settings
Change the default username, password, and SSID (Wi-Fi name). Use
something unique but not personal (avoid your real name, address, or ISP
brand).
4. Check for unknown devices
Log into your router’s admin panel and look at the list of connected devices. If you see something unfamiliar, remove or block it, it could be someone unauthorized using your Wi-Fi.
5. Consider upgrading your router
If your router is old and still relies on WPS or WEP, it’s time for an upgrade. Buy a modern router that supports WPA2 or WPA3 (WPA3 is highly recommended).
Click one of the options below to find the best router for your needs — fast, reliable, and secure:
Conclusion
Testing your own Wi-Fi with Wipwn in Termux is a smart way to check how safe your network really is. If your Wi-Fi turns out to be weak, don’t panic. Just follow the steps above to secure your Wi-Fi and, most importantly, protect your personal information. And if your router is outdated, consider upgrading to one of the recommended options above for stronger security and better performance.
