Profiler is a Wi-Fi client capability analyzer tool built for the WLAN Pi.
The primary purpose is to automate the collection and analysis of association request frames to understand client Wi-Fi capabilities.
Understanding client capabilities helps in:
- WLAN design - Factor in client capabilities (spatial streams, Tx power, frequency bands)
- Troubleshooting - Verify client support for 802.11k/r/v, PHY types, and channels
- Validation - Confirm clients can support planned network features
1. Live capture mode (WLAN Pi / Linux)
- Advertises a fake access point using hostapd or FakeAP
- Captures client association requests in real-time
- Requires Linux with supported Wi-Fi adapter
2. Pcap analysis mode (cross-platform)
- Analyzes pre-captured
.pcapfiles offline - No special hardware required - uses built-in Scapy parsing
- Works on Windows, macOS, and Linux
Profiler detects 40+ client capabilities across multiple Wi-Fi generations:
Wi-Fi standards:
- 802.11n (Wi-Fi 4) - HT capabilities, spatial streams
- 802.11ac (Wi-Fi 5) - VHT capabilities, MCS, 160 MHz, beamforming
- 802.11ax (Wi-Fi 6/6E) - HE capabilities, TWT, OFDMA, BSS Color
- 802.11be (Wi-Fi 7) - EHT capabilities, MLO, 320 MHz
Management and security:
- 802.11k - Radio resource management
- 802.11r - Fast roaming (FT)
- 802.11v - BSS transition management
- 802.11w - Protected management frames
- WPA3/SAE - Modern security with SAE Hash-to-Element
sudo profiler- Look for SSID "Profiler xxx" (where xxx is last 3 chars of eth0 MAC)
- Connect using passphrase:
profiler - Profiler captures the association request and displays results
- Web interface:
http://<WLAN_Pi_IP>/profiler - File system:
/var/www/html/profiler/ - Terminal: Real-time text output
Profiler is included in the WLAN Pi image as a Debian package.
sudo apt update
sudo apt install wlanpi-profilerSee installing with pipx.
- Adapter with monitor mode and packet injection support
- Tested: mt76x2u, mt7921u (a8000), mt7921e, iwlwifi (ax200, ax210, be200)
- Elevated permissions (sudo)
- Quick start guide - Get up and running
- Configuration guide - Customize settings
- Command line usage - CLI reference
- Full documentation index
Uses hostapd for faster client discovery (1-2 seconds vs 10+ seconds in legacy mode).
- Hostapd handles probe responses at driver level
- Monitor mode VIF captures association requests
- Requires adapter supporting simultaneous AP + monitor mode
| Mode | WPA2 | WPA3 | 802.11r | 802.11be |
|---|---|---|---|---|
| ft-wpa3-mixed (default) | Yes | Yes | Yes | Yes |
| wpa3-mixed | Yes | Yes | No | Yes |
| ft-wpa2 | Yes | No | Yes | Auto-disabled |
| wpa2 | Yes | No | No | Auto-disabled |
Profiler writes JSON files for integration with other tools:
- Status file:
/run/wlanpi-profiler.status.json- Real-time lifecycle state - Info file:
/run/wlanpi-profiler.info.json- Operational metrics - State file:
/var/lib/wlanpi-profiler/state.json- Persistent session data
# Start with defaults
sudo profiler
# Use specific channel
sudo profiler -c 48
# Custom SSID
sudo profiler -s "My Profiler"# Analyze existing capture
profiler --pcap capture.pcap# WPA2-only clients
sudo profiler --security-mode wpa2
# Passive listening mode
sudo profiler --listen-only -c 100
# Debug logging
sudo profiler --debugValidate your installation with the built-in test suite:
sudo profiler testTests include:
- Hostapd binary and permissions
- Configuration and directories
- Interface discovery and capabilities
- Interface staging for monitor mode
Developers can build Debian packages locally:
# Native architecture build
./scripts/build-package-native.sh
# Cross-architecture build
./scripts/build-package-cross.shContributions are welcome! Please read the contributing guide for details.
- Documentation: Full docs index
- Issues: Create a GitHub issue for bugs
- Discussions: Use GitHub discussions for questions and ideas
- Known issues: See known issues
Thanks to Jerry Olla, Nigel Bowden, and the WLAN Pi community for their input and effort on the first versions of profiler. Without them, this project would not exist.
BSD-3-Clause
