Milk Sad Lookup Service

To help people identify if they are impacted by Milksad, we are providing a web service to check if your mnemonic is in the vulnerable set. Note that this service only covers mnemonics impacted by Libbitcoin Explorer (bx) versions 3.0.0 to 3.6.0, though it may be updated over time to cover other related vulnerabilities we are researching.

Who should use this tool?

• If you know you generated your wallet with bx 3.0.0 or higher (after March 2017)
• If you know you generated your wallet with a CLI tool, but don't remember which tool.

What do the results mean?

• Vulnerable means that we are 99.99% sure your mnemonic is vulnerable to being brute forced. You should recreate your mnemonic and move your funds.
• Match Not Found means that we do not have a record of your mnemonic, but it does not mean it may not be impacted by other issues. If you are not certain your wallet is secure, you may consider changing regardless.

Security and Privacy

We do not want to store BIP39 mnemonics for this lookup service, or have people submit their BIP39 mnemonic private keys to us, so we had to sacrifice the user experience to provide this service safely. Our server contains SHA256 hashes of all currently known vulnerable mnemonics, so you can submit the SHA256 hash of your own mnemonic and see if it is in our set.

Please note that it is usually a very bad idea to follow invitations from strangers on the internet when it comes to sharing something about your wallet private keys. Typically they are scammers with bad intentions. We're aware of this and want to avoid being a poor example, so we decided to avoid including a convenient HTML input field to do the hashing for you (and could steal your mnemonic in the process). Users must bring their own SHA256 hash of their mnemonic ideally calculated in their own offline machine. If other people offer a similar lookup service, especially one that accepts a mnemonic as input, please be very cautious.

For those wishing to limit metadata sent to us or our service provider, we encourage using Whonix/Tor.

To generate a sha256 of your hash, you can use any of the following commands. DO NOT send your mnemonic to a third-party service to hash it, as it would no longer be secure. Make sure you've run unset HISTFILE and set +o history to disable persisting the mnemonic to your shell history.

• printf "milk sad wage cup reward umbrella raven visa give list decorate bulb gold raise twenty fly manual stand float super gentle climb fold park" | sha256sum
• printf "milk sad wage cup reward umbrella raven visa give list decorate bulb gold raise twenty fly manual stand float super gentle climb fold park" | gsha256sum
• printf "milk sad wage cup reward umbrella raven visa give list decorate bulb gold raise twenty fly manual stand float super gentle climb fold park" | openssl sha256

Lookup