I’ve been doing a penetration test recently. Once you’re in the network, generally you can get stuff done. So, I decided to skip phishing and try the WiFi - just for the sake of it.
Getting a handshake capture was trivial. Starting password cracker was even easier. And then, within minutes, there was a match.
Having a long password does not mean a thing, if it is in the “most popular passwords” list. So, when you are feeling creative and craft a long and funny password, check it against dictionary attacks first.
After trying the key, and getting into the network, the rest was easy. Protect your WiFi!