Airgeddon logo Airgeddon Wireless audit tool

Linux-native wireless assessments

Airgeddon turns complex Wi-Fi auditing flows into a faster operational workflow.

Built around Bash and focused on Linux environments, Airgeddon combines interface handling, handshake and PMKID capture, Evil Twin paths, WPS tooling, enterprise attack modes, WPA3 support, plugins, Docker, and headless operation.

Latest release v11.61 GPL-3.0 2.4 GHz + 5 GHz 6 GHz in development
Open GitHub Read the Wiki
Sourced from the official Airgeddon GitHub repository and wiki.
airgeddon.sh Intro screen
Official banner Project identity

Project statistics

Latest release

Latest release v11.61

Latest public release: Jan 30, 2026.

GitHub stars

Stars 7.6k

Community traction around the project.

GitHub forks

Forks 1.3k

Active reuse and contribution base.

Commit history

Commit history 3,446

Updated from GitHub commit history on branch master.

Latest changes

Newest changelog entries from master and dev.

Published from the upstream CHANGELOG.md on both long-lived branches so visitors can compare the latest stable and development state.

master Source

11.61

  • Added check to detect if operating in a Virtual Machine.
  • Added beep sounds to Evil Twin attacks to alert about different events.
  • Created an option to avoid playing sounds during Evil Twin attacks.
  • Fixed colors of some vendors for the advanced captive portal.
  • Improvements in WPA3 menu to allow more WPA3 plugins.
  • Fixed minor bug detecting hashcat hash format.
  • Fixed bug. Prevent DoS Pursuit mode from switching 2.4‑only deauth interfaces to 5 GHz channels.
  • Improved internet interface validation for VPN compatibility.
  • Fixed a rare bug that caused a hang after closing scan windows.
dev Source

12.0

  • Fixed enterprise certificate capture results persisting when switching targets.
  • Added WiFi standard tag to the selected interface label and to the interface selection menu.
  • Enabled mouse support in tmux sessions (Thank you to "strasharo").
  • Added 6Ghz partial support (some scans, some attacks, capable adapter detection, option toggle, validations, etc.).
  • Fixed target list sorting by power so values below 10% no longer appear after stronger networks.
  • Fixed alignment in network selection lists (including WPS) when 3-digit indices are shown.

Why it matters

A broader audit surface than a single-purpose Wi-Fi script.

The upstream feature list covers interface mode switching, handshake and PMKID capture, WPA3 paths, Evil Twin scenarios, WPS automation, enterprise credential capture, Docker support, tmux for headless systems, and a plugin system that keeps extending the tool.

Operational map

Key attack and analysis paths in one place.

Official screenshots

Real interface views from the Airgeddon wiki.

The gallery uses official images from the upstream project, including the intro screen, the main menu, and the captive portal attack workflow.

Platform coverage

Linux-focused, broad distro compatibility, and remote-friendly operation.

The official compatibility and features pages highlight support across many Linux distributions, Wayland support, xRDP and remote X workflows, plus tmux for headless environments.

Use it only on networks and infrastructure you own or are explicitly authorized to assess.

Tooling

Docker images, auto-updates, plugin hooks, optional Bettercap, BeEF, hashcat, and more.

Workflow safety

Controlled exit routines, cleanup tasks, and restore handling for iptables and nftables changes.

Display modes

Dynamic screen sizing, graphical workflows, and headless operation through tmux where needed.

Language support

Multilanguage support with OS language autodetection and per-menu usage hints.

Typical flow

From interface selection to post-capture analysis.

Get started

Use the upstream docs, not guesswork.

Installation, requirements, usage, Docker workflows, compatibility notes, and plugins are documented in the official wiki.

Installation Releases Docker

Certification

CWP training for professional wireless assessments.

The Airgeddon wiki recommends the Certified WifiChallenge Professional certification for people who want to learn how to perform professional wireless network assessments.

The course is 100% online, includes practical lab work, and the wiki notes that Airgeddon's main author passed the exam and collaborates with the certification content.

The Airgeddon Discord includes a dedicated #cwp channel for certification and lab topics. Exam-related discussion is not allowed.

ENROLL English course ENROLL Spanish course Wiki source
Certified WifiChallenge Professional certification banner

Practical lab

Hands-on exercises help turn wireless assessment concepts into repeatable practice.

Lifetime access

The wiki highlights lifetime access after purchase and regularly updated content.

Guided learning

Students are guided step by step through each lab exercise in the online course.

Community channel

The Airgeddon Discord has a dedicated channel for CWP and lab discussion.