AI-Powered Wireless Attack Framework
WireStrike is a next-generation wireless security auditing framework written in Rust, replacing legacy Python-based tools with high-performance, multi-threaded operations. It integrates Ollama AI for intelligent target prioritization, OPSEC-aware attack planning, and autonomous decision-making during wireless engagements.
Disclaimer: This tool is intended for authorized security testing and wireless audits only. Unauthorized access to wireless networks is illegal in most jurisdictions.
-
Multi-Protocol Support
- WPA2-PSK / WPA2-Enterprise (EAP)
- WPA3-SAE / WPA3-Transition
- WiFi 7 / MLO (Multi-Link Operation)
- WPS (Push Button & PIN)
- WEP (legacy support)
-
AI Integration (Ollama)
- Intelligent target prioritization based on signal, client count, and protocol
- OPSEC-aware attack recommendations
- Automated handshake quality analysis
- Smart wordlist and mask generation
-
Attack Modules
- Scanner: Passive & active discovery, hidden SSID detection
- Attacker: Deauth, PMKID capture, handshake capture
- Cracker: WPA/WPA2 cracking with GPU-optimized wordlists
- Evil Twin: Captive portal, karma attack, certificate injection
- OPSEC: MAC randomization, timing jitter, noise floor analysis
-
Dual-Radio Support
- Simultaneous scan + attack with two wireless interfaces
- Evil twin on one radio while capturing on another
-
Performance
- Rust + Tokio async runtime for high concurrency
- Sub-second scan cycles with channel hopping
- Optimized for ARM (Raspberry Pi) and x86_64
┌─────────────┐ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐
│ Scanner │───▶│ Attacker │───▶│ Cracker │───▶│ Evil Twin │
│ (scan) │ │ (attack) │ │ (crack) │ │ (twin) │
└─────────────┘ └─────────────┘ └─────────────┘ └─────────────┘
│ │ │
▼ ▼ ▼
┌─────────────────────────────────────────────────────────────────────┐
│ AI Module (Ollama) │
│ Target Ranking • OPSEC Advice • Wordlist Gen • Handshake Analysis │
└─────────────────────────────────────────────────────────────────────┘
│
▼
┌──────────┐
│ OPSEC │
│ Engine │
└──────────┘
| Module | Purpose |
|---|---|
scanner.rs |
WiFi scanning, SSID discovery, client enumeration, hidden SSID detection |
attacker.rs |
Deauthentication, PMKID capture, 4-way handshake capture |
cracker.rs |
WPA/WPA2 offline cracking, wordlist & mask attacks |
evil_twin.rs |
Rogue AP creation, captive portal, certificate injection |
ai.rs |
Ollama integration for intelligent decision-making |
models.rs |
Data structures for APs, clients, handshakes, scan results |
opsec.rs |
MAC randomization, timing obfuscation, noise analysis |
main.rs |
CLI entry point with clap |
git clone https://github.com/hamzazakakhan/wirestrike.git
cd wirestrike
cargo build --releaseThe binary will be available at target/release/wirestrike.
- Rust 1.75+ (
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh) - Wireless interface in monitor mode (
airmon-ng start wlan0) - Ollama (optional, for AI features)
sudo ./target/release/wirestrike scan --interface wlan0mon --duration 60sudo ./target/release/wirestrike attack --interface wlan0mon --target "MyNetwork" --channel 6sudo ./target/release/wirestrike crack --handshake capture.hccapx --wordlist rockyou.txtsudo ./target/release/wirestrike evil-twin \
--interface wlan0mon \
--interface2 wlan1mon \
--ssid "MyNetwork" \
--channel 6 \
--captive-portalsudo ./target/release/wirestrike scan --interface wlan0mon --ai-model qwen2.5-coder:7bsudo ./target/release/wirestrike scan --interface wlan0mon --no-ai- Linux with wireless drivers supporting monitor mode
libpcap-dev(for raw packet capture)- Root privileges (for monitor mode and raw sockets)
wifite_training.json— Historical wireless attack data for ML trainingwifite_v1_source.py— Reference implementation from wifite v1
MIT License — See LICENSE for details.
Hamza Zaka Khan — github.com/hamzazakakhan