I like lnuxxunl way of cracking the WPA/2, how would you go by getting the user to enter WPA key again? Airdrop and then how would read the data from the attack? Wireshark with some filters or?