Home > Products > Network passwords > Wireless Password Recovery > Screenshots > Recovering WPA hashes > Base-word recovery
Recovering WPA hashes using base-word attack
19.09.2022
Reset Windows Password v12.1
USB and Recycle Bin history viewers, Windows Hello PIN dumper, update of the DPAPI recovery module
02.09.2022
New blog post
quite a bit about Windows Hello biometrics
23.08.2022
Windows Password Recovery v15.0
A big update of the DPAPI recovery module, support for Windows cloud accounts and much more
19.07.2022
Reset Windows Password v12.0
Windows media forensic tools and improved interface

Articles and video

You may find it helpful to read our articles on Windows security and password recovery examples. Video section contains a number of movies about our programs in action

Wireless Password Recovery - base-word attack


Base-word attack (developed by Passcape) is pretty much similar to mask recovery. However, you don't have to set up the mask syntax here; simply enter the keyword, which supposedly was the base word for the password. It is an irreplaceable recovery tool when you know a portion of the password or its basic component. Normally, such cases dispose to using mask recovery; however, it does not always allow coping with the task set forth. Suppose our password was 'S10wDr1v3r'. Trying to guess such a complicated password using mask recovery would be an ungrateful job, even if you are quite sure that it is based upon the 'slowdriver' word. These are the cases when the base-word attack will rescue you.

Base-word recovery

With this tool, the program will attempt to guess the original password, trying all possible combinations founded upon 15 groups of rules (total over 150 rules.) If you type 'slowdriver' in the field, you will see that the program has generated thousands of different combinations upon this phrase, and one of those combinations could match our password.

You can also generate a wordlist on those mutations and save it on a disk.

Turn on the 'Use document name as an input word' option to let the program automatically select the base-word phrase based on SSID name. 

Note, if your password length exceeds 15-16 characters, it may take quite some time to prepare (mutate) the password for the recovery.