wifi-deauth icon indicating copy to clipboard operation
wifi-deauth copied to clipboard
verified publisher icon flashnuke

Does it work on WPA3-SAE auth mode?

Open HolmesAmzish opened this issue 10 months ago • 2 comments

Most deauth or flooding attack tools such as aircrack work on WPA/WPA2 mode, but to WPA3-SAE mode there is no use to send deauth frame. Is there any method to deauth the client of WPA3 or downgrade the auth method of WPA3 AP to WPA2?

HolmesAmzish avatar Feb 26 '25 14:02 HolmesAmzish

Unfortunately I have not tested on WPA3 yet so I cannot provide an answer to this, but I do plan to do this in the future

flashnuke avatar Sep 16 '25 07:09 flashnuke

Just tested on the following setup and it worked:

    Authentication          : WPA3-Personal
    Encryption              : CCMP
    BSSID 1                 : 16:bd:55:ab:d9:67
         Signal             : 60%
         Radio type         : 802.11ax
         Band               : 2.4 GHz
         Channel            : 11
         Details            :  (H2E supported)
         QoS MSCS Supported    : 0
         QoS Map Supported     : 0
         Basic rates (Mbps) : 1 2 5.5 11
         Other rates (Mbps) : 6 9 12 18 24 36 48 54

H2E is a variant of SAE, so to answer your question: it should work on WPA3-SAE

However, I was not able to determine whether PMF (protected management frames) was enabled on the WIFI access point during the test, so for now I assume it works for WPA3-SAE but not necessarily when PMF is enabled

PMF can in fact protect against de-auth attacks so there's a good reason to believe it won't be effective against it, I'll update again after I test PMF

flashnuke avatar Nov 12 '25 22:11 flashnuke