wpaclean

Clean capture file

$ wpaclean [output.cap] [input.cap]

$ wpaclean [output.cap] [file1.cap] [file2.cap]

wpaclean output input ...

wpaclean extracts WPA handshake data from wireless packet capture files, producing cleaned output files containing only the EAPOL authentication frames needed for offline password analysis. This significantly reduces file size by removing all non-handshake traffic.
Multiple input capture files can be processed and combined into a single cleaned output file. The tool is part of the aircrack-ng suite and is typically used to prepare capture files before running them through aircrack-ng or hashcat for WPA password recovery during authorized security assessments.

output

Cleaned output file.

Input capture files.

Part of aircrack-ng. For WPA captures. EAPOL focused.

wpaclean is part of the aircrack-ng suite, extracting WPA handshakes from packet captures.

aircrack-ng(1), airodump-ng(1), tcpdump(1)