the two uncommon Scenarios/modes that i know and have seen online
are
a WEP downgrade attack
"A story of Rogue AP":https://www.wifi-libre.com/topic-756-una-historia-de-rogue-ap-el-pdf-de-koala-traducido-al-espanol.htmland asking the user to push the wps button instead of asking for the password using wifiphisher
wifiphisher -wP -wAI
https://github.com/wifiphisher/wifiphisher/issues/494