Doomsday Explorer

Anti‑Scanner TRNG Audit Tool – Bitcoin‑only, open‑source, white‑hat.

View on GitHub


Check out presentation

Business page

⚡️ Quick Overview

What

A PoC audit framework that shows how low‑entropy / predictable TRNGs can compromise Bitcoin wallets.

Why

“Noise is NOT secure random”. The project demonstrates a real‑world attack surface that many RNG specs hide.

How

`npm install` → download address dump → `node ingest.js` → `node enumerate.js replica_name`.

Ledger Deterministic Replica:

∀ spectra (exhaustive). `avalanche noise (first power-on)` → `SHA-256` → `entropy seed` → `thermal noise` → `XOR-fold + SHA256` → `wallet seed`.

📽️ Demo & Screenshots

^ Dashboard

^ what AI admits...in response to childish inqury

^ Clock is ticking...

🚀 Getting Started

# 1️⃣ Clone the repo
git clone https://github.com/dk14/crypto.git
cd crypto/chats/btc-audit

# 2️⃣ Install dependencies
npm ci                # reproducible install

# 3️⃣ Pull the latest address dump (≈ 600 k addresses)
curl -L https://addresses.loyce.club/addresses.zip -o addresses.zip
unzip addresses.zip -d data

# 4️⃣ Populate the local DB
node ingest.js

# 5️⃣ Run a test enumeration (choose one source)
node enumerate.js ledger   # Ledger‑seed brute‑force
node enumerate.js urandom  # /dev/urandom scan
node enumerate.js clock    # Clock‑drift demo

Tip: add --verbose for detailed logs or --dry-run for a quick sanity check.

🔎 Running the Audits

Command Description Typical Runtime
node enumerate.js ledger Brute‑forces possible seeds derived from a Ledger hardware wallet. 30 min – 2 h (CPU/GPU dependent)
node enumerate.js urandom Scans for wallets that used /dev/urandom directly as a private key. < 10 min
node enumerate.js clock Reconstructs keys generated from system‑clock entropy (e.g., time()%2^32). < 5 min

Outputs: found.json (compromised addresses + private keys) and report.md (ready‑to‑publish disclosure).

🔎 Explorer Protocol v0 (for PoW-like cluster)

Tool-independent. Early warning defensive system.

It meant to outrun hackers and report you keys that are dangerously close to yours.

`seeds, blockchain_id, replica_id, worker_id, worker_id_pow, reward_address, version, signature`.
 
 worker id is YOUR pubkey, pow is over your pubkey simply: `+` - magicNo is PoW (SHA256),
 replica_id is arbitrary (per worker_id), blockchain_id is 0 for BTC, version is 0. JSON. Signature is over minified JSON with signature field absent
 
 IPFS --metadata "project:ExplorerBTCAudit"
 
 if you got your own private tool joining protocol: don't overload pinning services - you have to filter seeds based on metrics developed here (bitmatch as a starter).
 CHECK that seeds don't belong to funded addresses. If they do - submit address (NO seed, no secret) in an issue here, on GitHub.

 Note: IPFS will become replaced in favor of gossip (in future)

UI design:

💰 Profit‑Sharing & Funding

Donate any BTC

bc1qekvmkczge3hxrvwdf2lj3yyvgjnparn3fdf9lg

Instant inclusion in the Explorer Network profit‑share pool.

BitcoinTalk

Bid on a Feature

Send a TXID + description – your feature is prioritized and you get a larger revenue slice.

Sponsor a Compute Node

Earn a “Node‑Sponsor” badge and a share of fees for all audits run on your hardware.

Early bird

Earn bonuses and extra profit‑share for investing early

Profit‑sharing logic lives in profit-sharing.js. Feel free to audit, fork or improve it.

🛣️ Roadmap & How To Contribute

MilestoneETADescription
v1.1Q3 2026Explorer UI. Tool integration into Explorer protocol
v1.2Q4 2026Ledger replica. Ledger firmware integration for risk reporting
v1.3Q1 2027Full “Explorer Network” – decentralized marketplace of auditors.
v2.0Q2 2027Other replicas (Trezor, Apple Secure Enclave, military TRNGs). Audits for public SSL certificates
Want to help?
  1. Open an issue – bug or feature request.
  2. Submit a PR – follow the existing code style (`eslint-config-airbnb-base`).
  3. Donate – any amount pushes the roadmap forward.

All contributors are listed in CONTRIBUTORS.md and automatically receive a share of future revenues.

📜 Authentication

Message: "Doomsday Explorer Project for Bitcoin: https://github.com/dk14/crypto/tree/main/chats/btc-audit"

Address: bc1qekvmkczge3hxrvwdf2lj3yyvgjnparn3fdf9lg

Signature: IHdq/tIQtQeimfF92NOyOOdz2/iq2YR6qjD8vLgHWK3GGGETKX76L0e4Tvgtb1fOHrbLiW87QYIuOdCKYbSvmpA=

📜 License & Disclaimer

License – MIT (see LICENSE file).

Disclaimer – This tool is for **educational, research and white‑hat security auditing only**. Misuse to steal funds is illegal and will be prosecuted. The author disclaims any liability for damages caused by misuse.