Next he wanted to understand how weak passwords leaked. Using the ISO’s cracking suite and a GPU-enabled helper he tested several WPA2 handshake captures against a curated wordlist. One of the older IoT devices in his home — configured with a default, easily guessable password — yielded to the attack within minutes. That was a wake-up call. Martín didn’t exploit anything beyond his own network; instead he used the result to improve his environment: stronger, unique passphrases, disabled WPS on the router, and firmware updates for devices.