I've been very busy lately but I have had some time to work on the project so here's the latest.
Nothing on it yet. give me your google account name and I'll add you as a project member
PCAP parser: I did dig up an existing parser online http://node5.blogspot.com/2009/02/ne...ap-parser.html haven't looked at it at all but it might be something to start with, if not, I'm leaning towards a python solution from scratch because I'm more familiar with it (yes, I'm aware of existing python parsers, I'm not a fan though)
Domain name: I'm too cheap(for now)
Offline cracking: Yup, already possible on my personal script.
Users typing a password in a box: Is possible, could be checked by adding the submitted password/cap combo to someones next workload otherwise we need that parser which I keep putting down on my todo list
Making the service "private": Its a question I ask myself on a regular basis; provide excellent cracking to a few, trusted people, or decent cracking to the masses? It's a tough call but getting to the roots of the project and why I wanted to do this in the first place I have to say the masses minus skiddies win.
Me looking at cracking the wrong way: You're entitled to your opinion but the fact is dictionary attacks are by far the most successful against WPA. Beck & Tews attack doesn't crack the password and is rarely useful(when it works)(only works with tkip). In the end I'm just doing this for a hobby.
Scrambling caps for anonymity: I've not seen this BSSID-MUNGE tool before and unfortunately don't have time to investigate at the moment but I would be very interested in seeing how we could change the essid since its used to salt the wpa hash, bssid shouldn't be a problem.
ATI vs NVIDIA: You are correct, ati is superior to nvidia when calpp is used, most of the performance gain is due to an instruction that openCL doesn't implement and the latest round of nvidia(shamefully) cards doesn't even have. They both have their merits though, nvidia's drivers are FAR superior, used more often in gpgpu computing and faster in many other applications.
Pyrit: Yup, great stuff, I use it and my helper script for the public will probably at least have an option for it.
Brute forcing 8 chars: Check your math dude.
GingerP: I think we should be aiming to get our upload page cleaned up and capable of password profiling options ect. before we go on to fancy pcap parser stuff. Let me know what your up to other than that sky router bruter (which looks good, but likely to take a while to crunch all those combos).