macOS
brew install hcxtoolslocal Homebrew formula metadata
安装
brew install hcxtoolslocal Homebrew formula metadata
sudo apt install hcxtoolsDebian stable package indexes · hcxtools · 来源: deb.debian.org
sudo dnf install hcxtoolsFedora Rawhide package metadata · hcxtools · 来源: dl.fedoraproject.org
nix profile install nixpkgs#hcxtoolsnixpkgs package indexes · pkgs/by-name/hc/hcxtools/package.nix · 来源: api.github.com
sudo pacman -S hcxtoolsArch Linux sync databases · hcxtools · 来源: geo.mirror.pkgbuild.com
概览
Utils for conversion of cap/pcap/pcapng WiFi dump files
历史
hcxtools is a Linux-focused suite for converting Wi-Fi capture files into hash formats consumed by Hashcat and John the Ripper. The upstream description frames it as an analysis toolkit for finding weak points in one's own wireless networks rather than as a password-cracking engine.
The GitHub repository was created in April 2017. Its scope settled around the conversion and post-processing side of WPA/WPA2 auditing: hcxpcapngtool converts capture files, hcxhashtool filters hash files, hcxpmktool verifies PSKs or PMKs, hcxpottool handles pot files, and related tools handle wordlist candidates, vendor lookup, and upload workflows.
The toolkit is closely paired with ZerBea's hcxdumptool, which performs packet capture and layer-2 WPA protocol tests. The documented workflow is hcxdumptool to hcxpcapngtool to hcxhashtool, optionally to hcxpsktool or hcxeiutool, and then to Hashcat or John the Ripper.
hcxtools evolved with Hashcat's WPA formats. The README emphasizes Hashcat mode 22000/22001 over older 2500/2501 and 16800/16801 formats, while the changelog records later work on FT-PSK PMKID and EAPOL conversion for mode 37100 and ongoing handling of EAPOL length limits.
The package spread through security-oriented Linux distributions and general package managers because it solves a specific interoperability problem: turning packet captures into forms that established cracking and auditing tools can read. The batch input records Homebrew, Debian, Fedora, Nix, Arch, and Ubuntu packaging, but upstream itself warns that operating systems outside its Linux target are unsupported.
Its audience is narrower than a general network utility. Upstream expects knowledge of radio technology, 802.11 protocol behavior, key derivation, Linux drivers, capture filters, and related tooling. That technical bar shaped adoption among wireless-security practitioners and package users who already know the Hashcat/JtR workflow.
hcxtools does not capture traffic, crack hashes, attack WEP or WPS, or decrypt encrypted traffic. Instead, it converts, filters, verifies, and prepares artifacts: pcapng/pcap/cap input, PMKID and EAPOL hash lines, pot files, ESSID-derived candidate lists, vendor OUI lookups, and wpa-sec upload workflows.
The upstream README is explicit that output files may be appended to, that dump files should not be merged in ways that destroy custom block hash assignments, and that nonce-error correction is not performed by the tools. These details are why package users often care about exact upstream versions matching hcxdumptool and Hashcat behavior.
hcxtools is package-nerd significant because it sits at a brittle boundary between kernel Wi-Fi capture behavior, pcapng file semantics, WPA handshake interpretation, and Hashcat/JtR hash formats. Small changes in any layer can make a packaged version too old for a user's capture workflow.
The suite is also notable as a source-built C toolkit with many small executables rather than one command. Packaging therefore exposes a toolbox: hcxpcapngtool for conversion, hcxhashtool for filtering, hcxhash2cap for reverse conversion, hcxpottool for pot files, whoismac for OUI data, and more.
安全态势
narrow executable package without higher-risk signals.
绿色 风险 · 低 置信度 · appliance
在无人值守的代理使用前,请检查该工具是否读取明文凭据、写入远程状态、发布制品或调用插件。
可执行文件
| 命令 | 类型 | 暴露范围 | 备注 |
|---|---|---|---|
hcxeiutool | cli | 全局可执行文件 | |
hcxhash2cap | cli | 全局可执行文件 | |
hcxhashtool | cli | 全局可执行文件 | |
hcxpcapngtool | cli | 全局可执行文件 | |
hcxpmktool | cli | 全局可执行文件 | |
hcxpottool | cli | 全局可执行文件 | |
hcxpsktool | cli | 全局可执行文件 | |
hcxwltool | cli | 全局可执行文件 | |
whoismac | cli | 全局可执行文件 | |
wlancap2wpasec | cli | 全局可执行文件 |
新鲜度
这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。
https://github.com/ZerBea/hcxtools
安装元数据
| 软件包键 | brew:hcxtools |
|---|---|
| 版本 | 7.1.2 |
| 软件包管理器 | Homebrew |
| 软件包管理器页面 | https://formulae.brew.sh/formula/hcxtools |
| 主页 | https://github.com/ZerBea/hcxtools |
| 仓库 | https://github.com/ZerBea/hcxtools |
| 上游文档 | https://github.com/ZerBea/hcxtools#readme |
| 许可证 | MIT |
| 源码归档 | https://github.com/ZerBea/hcxtools/archive/refs/tags/7.1.2.tar.gz |
| 依赖 | openssl@3 |
| 构建依赖 | pkgconf |
| macOS 提供的库 | curl |
| Bottle | 可用 (于 arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | 未定义 |
| 服务 | 未声明 |
注册表事实
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | hcxtools |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
源数据库匹配
匹配项来自外部软件包管理器索引,并与本地 Automic Vault 软件包链接分开显示。
hcxtools 6.3.5-1
Tools for converting captures to use with hashcat or John the Ripper
https://github.com/ZerBea/hcxtools
sudo apt install hcxtoolshcxtools
nix profile install nixpkgs#hcxtoolshcxtools 6.2.7-2build3
Tools for converting captures to use with hashcat or John the Ripper
https://github.com/ZerBea/hcxtools
sudo apt install hcxtoolshcxtools 7.1.2-1.fc45
Set of tools to convert packets from capture files to hash files
https://github.com/ZerBea/hcxtools
sudo dnf install hcxtoolshcxtools 7.1.2-1
Portable solution for capturing wlan traffic and conversion to hashcat and John the Ripper formats
https://github.com/ZerBea/hcxtools
sudo pacman -S hcxtools来源线索
此页面由 av-web 从 scripts/generate-pkg-sqlite.py 生成的私有软件包 SQLite 工件提供。
View the package source record on GitHub.