BitcoinAddressFinder

🚀 Fast address finder for Bitcoin and altcoins using OpenCL & Java – includes vanity address generation, balance checking, and offline support.

---

Table of Contents

• About BitcoinAddressFinder
• Requirements
• Quickstart
• Features
• Address Database
  • Import
  • Create the Database by Yourself
  • Export
  • Use My Prepared Database
    • Light Database
    • Full Database
• Pages and Projects for Address Lists
• Find Addresses
  • Mixed Modes
  • Key Range
  • OpenCL Acceleration
    • Built-in Self-Test (BIST)
    • Performance Benchmarks
• Collision Probability and Security Considerations
• Similar Projects
  • Deep Learning Private Key Prediction
• Known Issues
  • Hybrid Graphics Performance (Low Throughput)
• Future Improvements
  • KeyProvider
• Legal
  • Permitted Use Cases
  • Prohibited Use Cases
  • Legal References by Jurisdiction
• License

---

About BitcoinAddressFinder

BitcoinAddressFinder is a free, high-performance tool for scanning random private keys across a wide range of cryptocurrencies — including Bitcoin, Bitcoin Cash, Bitcoin SV, Litecoin, Dogecoin, Dash, Zcash, and many more.

Its core purpose is to generate both compressed and uncompressed addresses with maximum efficiency, combining the portability of the Java Virtual Machine (JVM) with OpenCL-powered GPU acceleration.

Each generated address is checked against a high-speed LMDB database to detect whether it has ever been used — identifying possible balances, known keyspaces, and even RIPEMD160 hash collisions.

🔍 Whether you're generating vanity addresses, verifying address usage, or experimenting with cryptographic edge cases, BitcoinAddressFinder is built for speed, flexibility, and fully offline operation.

🔐 Runs air-gapped · ⚡ GPU-accelerated · 🧪 Unit-tested · 🛠️ Extensible

Made with ❤️ in Germany

Copyright (c) 2017-2025 Bernard Ladenthin

Requirements

• Java 21 or newer is required to run BitcoinAddressFinder.
  Older versions such as Java 8, 11, or 17 are not supported.

• 🚀 OpenCL (optional):
  You can run this software in either CPU-only mode or with GPU acceleration via OpenCL for significantly enhanced performance.

  When OpenCL is enabled:

  • Elliptic Curve Key Generation is offloaded to one or more OpenCL-capable devices (e.g., GPUs), dramatically boosting key scanning throughput.
  • SHA-256 and RIPEMD-160 hashing operations are also offloaded to the GPU, further reducing CPU load and increasing overall efficiency.
  • Multi-GPU setups are fully supported — each device can be configured individually, enabling efficient parallelization and scalability across multiple GPUs.

Quickstart

1. Download the binary (jar) from https://github.com/bernardladenthin/BitcoinAddressFinder/releases
2. Download and extract the light database from https://github.com/bernardladenthin/BitcoinAddressFinder#use-my-prepared-database
3. Download a configuration set like:

• logbackConfiguration.xml
• config_Find_1OpenCLDevice.json
• run_Find_1OpenCLDevice.bat

4. Put all in one directory like the following structure

• Downloads
  • lmdb
    • data.mdb
    • lock.mdb
  • bitcoinaddressfinder-1.4.0-jar-with-dependencies.jar
  • logbackConfiguration.xml
  • config_Find_1OpenCLDevice.js
  • run_Find_1OpenCLDevice.bat

5. Run the file run_Find_1OpenCLDevice.bat

✨ Features

• 📐 Supports blockchain addresses based on secp256k1
• 🛡️ Unit-tested, trusted open source that can be compiled easily by yourself
• 🎯 Vanity generation of Bitcoin addresses using regex patterns
• 🔌 Runs entirely offline — no internet connection is required or used. Suitable for air-gapped systems and isolated environments — even in a bunker with a generator and zero connectivity.
• 🤹 No synchronization required to run multiple instances. Random numbers are used, so no coordinated search strategy is needed — just run it on multiple machines
• ⚡ Checks a high-performance database of known addresses to detect already used ones
• 📦 Portable, platform-independent, runs on the JVM
• 🔁 Generates both uncompressed and compressed keys simultaneously
• 🧮 EC key generation via:
  • 🧵 Multiple CPU threads
  • 🖥️ Multiple OpenCL devices (optional)

⚡ ECC Scalar Multiplication Optimizations

To accelerate elliptic curve scalar multiplication (k·G, i.e. private key × base point), the OpenCL kernel applies the following optimizations:

• Windowed Non-Adjacent Form (wNAF):
  The scalar k is converted to a signed digit representation using a window size of 4.
  This results in digits from the set {±1, ±3, ±5, ±7}, with at least one zero between non-zero digits.
  This reduces the number of costly additions during multiplication.
  Further explanation of wNAF on crypto.stackexchange.com

• Precomputed Table:
  The kernel precomputes and stores the following multiples of the base point G:
  ±1·G, ±3·G, ±5·G, ±7·G
  These are stored in the secp256k1_t structure and reused during scalar multiplication.

• Left-to-Right Scalar Multiplication:
  The multiplication loop scans the wNAF digits from most to least significant:

  • Each iteration always doubles the current point.
  • If the current digit is non-zero, it adds the matching precomputed point.

• Optimized for GPGPU (not constant-time):
  To prioritize speed on OpenCL/CUDA devices, this implementation is not constant-time and may be vulnerable to side-channel attacks in adversarial environments.

• Use of Constant Memory:
  Precomputed points are stored in constant GPU memory (__constant via CONSTANT_AS), allowing fast access by all threads in a workgroup.

🔄 Scalar Walker per Kernel (loopCount)

The OpenCL kernel supports a loop-based scalar strategy controlled by the loopCount parameter. Each GPU thread generates multiple EC keys by:

• Computing the first key via full scalar multiplication: P₀ = k₀·G (using point_mul_xy)
• Computing subsequent keys via efficient affine additions: Pₙ₊₁ = Pₙ + G (using point_add_xy)

This enables high-throughput, grid-parallel linear keyspace traversal like:
k₀·G, (k₀ + 1)·G, ..., (k₀ + loopCount - 1)·G

Example:

• If loopCount = 8, each thread generates 8 keys
• Grid size is reduced by a factor of 8
• All results are written to global memory

✅ Lower loopCount values like 4 or 8 are often ideal.
❌ Higher values may reduce GPU occupancy due to fewer active threads.

🚀 MSB-Zero Optimization

To accelerate elliptic curve multiplication, BitcoinAddressFinder applies a 160-bit private key optimization:

• The upper 96 bits of each 256-bit private key are set to zero
• Only the lower 160 bits are randomized and traversed

This reduction in scalar size speeds up k·G computations, resulting in significantly better performance during brute-force and batch-based key scanning.

✅ Matches the size of RIPEMD160(SHA256(pubkey))
✅ Especially effective when combined with OpenCL acceleration

🚀 Bloom Filter Address Cache (useBloomFilter)

As of version 1.5.0, a memory-efficient Bloom filter can be used to significantly accelerate address checks:

"useBloomFilter": true

Instead of loading all addresses into a Java HashSet, a compact Bloom filter is loaded into RAM. This enables ultra-fast containsAddress() checks with minimal memory usage — even for millions or billions of entries. Advantages:

• ✅ O(1) lookup speed (comparable to HashSet)
• ✅ Low memory usage, even with large datasets
• ✅ No false negatives (real matches are always detected)
• ⚠️ Possible false positives → only trigger additional LMDB lookups

Estimated Memory Usage:

fpp	Light Database (~132M)	Full Database (~1.37B)
0.1	~80 MB	~800 MB
0.05	~100 MB	~1024 MB
0.01	~151 MB	~1574 MB

🔧 Tuning Accuracy with bloomFilterFpp

The expected false positive probability (FPP) can be configured:

"bloomFilterFpp": 0.1

Value	Description
0.01	✅ Only ~1% false positives – high accuracy, more memory
0.05	⚖️ Balanced tradeoff between memory and performance
0.1–0.2	🪶 Very memory-efficient – suitable if some false positives are acceptable

"useBloomFilter": true,
"bloomFilterFpp": 0.1

Recommended setting for best balance between speed and memory usage.

🔐 Public Key Hashing on GPU (SHA-256 + RIPEMD-160)

The OpenCL kernel performs blazing fast public key hashing directly on the GPU using:

• SHA-256(pubkey.x || pubkey.y) followed by
• RIPEMD-160(SHA-256(pubkey))

This allows each GPU thread to independently generate full Bitcoin-style public key hashes (hash160) without CPU involvement.

Benefits:

• No host-side post-processing needed
• Fully parallelized and memory-efficient
• Ideal for massive batch generation and filtering

✅ Output is already in hash160 format, ready for address comparison

Address Database

The addresses are stored in a high-performance database: LMDB. The database can be used to check whether a generated address has ever been used.

Address Import Support

The importer supports reading multiple .txt or .text files, each containing one address per line in arbitrary order. Lines may vary in address type and format. Each line may also optionally include an associated coin amount.

⚠️ Unsupported or malformed lines are silently skipped during import.

Supported Address Types

• P2PKH – Pay to Public Key Hash Encoded using Base58. Most commonly used format for legacy Bitcoin addresses.

• P2SH – Pay to Script Hash Base58-encoded address type used for multisig and other script-based spending conditions.

• P2MS – Pay to Multisig Custom format prefixed with d-, m-, or s- (e.g. m-<script>).

• P2WPKH – Pay to Witness Public Key Hash Native SegWit v0 address, encoded in Bech32.

• P2WSH – Pay to Witness Script Hash Native SegWit v0 address for scripts, encoded in Bech32.

• P2TR – Pay to Taproot Native SegWit v1 (Taproot) address, encoded using Bech32m.

Note: Bech32 was introduced in BIP-173 for SegWit v0 (P2WPKH, P2WSH). Bech32m, defined in BIP-350, is used for SegWit v1 (P2TR).

Special Formats

In addition to standard script types, the importer also recognizes and supports several special address encodings:

• Bitcoin Cash (Base58 prefix q)
  Legacy Bitcoin Cash addresses using the q-prefix are automatically converted to legacy Bitcoin format.

• BitCore WKH
  Custom format prefixed with wkh_ and encoded in Base36.

• Riecoin P2SH as ScriptPubKey
  Riecoin P2SH addresses are provided as raw ScriptPubKey hex (starting with 76a914...).

---

Legend:
✅ = Supported and tested
❌ = Explicitly not supported (format known but intentionally excluded)
empty = Unknown or unverified — either not implemented by the altcoin project, or no valid address example was found (thus no implementation or test exists)

Coin	TAG	P2PKH	P2SH	P2WPKH	P2WSH	P2MS	P2TR
42-coin	42	✅	✅
Alias	ALIAS	✅
Argoneum	AGM	✅
Artbyte	ABY	✅
Auroracoin	AUR	✅
B3Coin	B3	✅
BBQCoin	BQC	✅
Bean Cash	BEAN	✅
Biblepay	BBP	✅
BitBay	BAY	✅
BitBlocks	BBK	✅
Bitcoin	BTC	✅	✅	✅	❌	❌	❌
Bitcoin Cash	BCH	✅	❌			❌
Bitcoin Gold	BTG	✅
Bitcoin Oil	BTCO	✅		✅	❌
Bitcoin Plus	XBC	✅
BitCore	BTX	✅		✅	❌
Bitmark	BTMK	✅
BlackCoin	BLK	✅
BlakeBitcoin	BBTC	✅
Blakecoin	BLC	✅
Blocknet	BLOCK	✅
BolivarCoin	BOLI	✅
BYTZ	BYTZ	✅	✅
Canada-eCoin	CDN	✅		✅	❌
Catcoin	CAT	✅
ChessCoin 0.32%	CHESS	✅
Clam	CLAM	✅
CloakCoin	CLOAK	✅	✅
Coino	CNO	✅
ColossusXT	COLX	✅
Compound	COMP	✅
CROWN	CRW	✅
Cryptoshares	SHARES	✅
Curecoin	CURE	✅
Dash	DASH	✅	✅
DeFiChain	DFI	✅	✅	✅	❌
Deutsche eMark	DEM	✅
Diamond	DMD	✅
DigiByte	DGB	✅		✅	❌
DigitalCoin	DGC	✅
Dimecoin	DIME	✅
Divicoin	DIVI	✅
Dogecoin	DOGE	✅	✅
Dogmcoin	DOGM	✅
Doichain	DOI	✅		✅	❌
e-Gulden	EFL	✅
Electron	ELT	✅
Element (HYP)	HYP	✅
Elite	1337	✅
Emerald	EMD	✅
EverGreenCoin	EGC	✅
Feathercoin	FTC	✅		✅	❌
Firo	FIRO	✅
Freedomcoin	FREED	✅
GapCoin	GAP	✅
Goldcash	GOLD	✅
GoldCoin	GLC	✅
Groestlcoin	GRS	✅		✅	❌
Hemis	HMS	✅
Herencia	HEIRS	✅
HoboNickels	HBN	✅
HTMLCOIN	HTML	✅
I/O Coin	IOC	✅
IDChain	DCT	✅
Innova	INN	✅
InfiniLooP	IL8P	✅
Infinitecoin	IFC	✅
iXcoin	IXC	✅
Kobocoin	KOBO	✅
Komodo	KMD	✅
Lanacoin	LANA	✅
Litecoin	LTC	✅	✅	✅	❌
Litecoin Cash	LCC	✅		✅	❌
LiteDoge	LDOGE	✅
Lithium	LIT	✅
Luckycoin	LKY	✅
Lynx	LYNX	✅
MasterNoder2	MN2	✅
Mooncoin	MOON	✅	✅	✅	❌
MotaCoin	MOTA	✅
Myriad	XMY	✅	✅	✅	❌
Namecoin	NMC	✅		✅	❌
NewYorkCoin	NYC	✅
Novacoin	NVC	✅
PAC Protocol	PAC	✅
PakCoin	PAK	✅
PandaCoin	PND	✅
Particl	PART	✅	✅
PeepCoin	PCN	✅
Peercoin	PPC	✅
Photon	PHO	✅
Pinkcoin	PINK	✅
PIVX	PIVX	✅
PotCoin	POT	✅
Primecoin	XPM	✅
PutinCoin v2	PUT	✅
Quark	QRK	✅
Raptoreum Core	RTM	✅
Reddcoin	RDD	✅
Riecoin	RIC		✅	✅	❌
SaluS	SLS	✅	✅
SexCoin	SXC	✅
Slimcoin	SLM	✅
Smileycoin	SMLY	✅
Smoke	SMOKE	✅
SpaceXpanse	ROD	✅		✅	❌
Sparks	SPK	✅
Stakecoin	STK	✅
Sterlingcoin	SLG	✅
Stronghands	SHND	✅
Syscoin	SYS	✅		✅	❌
TajCoin	TAJ	✅
Terracoin	TRC	✅
TheHolyRogerCoin	ROGER	✅		✅	❌
Trezarcoin	TZC	✅
Trollcoin	TROLL	✅
UFO	UFO	✅	✅	✅	❌
UFOhub	UFOHUB	✅
Unitus	UIS	✅
UniversalMolecule	UMO	✅
Unobtanium	UNO	✅
Validity	VAL	✅
Vanillacash	XVC	✅
VeriCoin	VRC	✅
Versacoin	VCN	✅
Vertcoin	VTC	✅		✅	❌
VirtaCoin	VTA	✅
VirtacoinPlus	XVP	✅
WorldCoin	WDC	✅
Zetacoin	ZET	✅
ZCash	ZEC	✅	✅

Create the database by yourself

Useful txt/text file provider:

• http://blockdata.loyce.club/alladdresses/
• https://blockchair.com/dumps

Export

The exporter provides various output formats for Bitcoin and altcoin address data:

• HexHash
  Exports addresses as raw hash160 (RIPEMD-160 of the SHA-256 of the public key), encoded in hexadecimal. No version byte or checksum is included. Ideal for advanced usage and low-level comparison. Best viewed in fixed-width hex viewers (e.g., HxD).

• FixedWidthBase58BitcoinAddress
  Exports Base58Check-encoded addresses (e.g., legacy P2PKH) in a fixed-width format for consistent alignment. No amount is included. Suitable for hex/byte-aligned visual inspection and batch comparison.

• DynamicWidthBase58BitcoinAddressWithAmount
  Exports Base58Check-encoded addresses along with their associated amounts (e.g., balance or UTXO value), using a dynamic-width format. Suitable for human-readable CSV-like formats and analytics.

---

Use My Prepared Database

I am in the process of building and publishing databases containing large sets of Bitcoin and altcoin addresses.
(Refer to the Import section above for details on supported address formats.)

The sources of these addresses are confidential, but you are fully permitted to extract, inspect, and use them.

You are also welcome to extend this database by importing your own address data. This allows you to build upon the existing dataset, tailoring it to your specific needs (e.g., adding additional coins, formats, or private address collections).

If you're missing any information or have questions about usage or content, feel free to ask or open an issue.

Light database

• Light (5.4 GiB), Last update: July 1, 2025
  • Contains Bitcoin addresses whith amount and many altcoin addresses with amount.
  • Static amount of 0 is used to allow best compression.
  • Unique entries: 132288304
  • Mapsize: 5576 MiB
  • Time to create the database: ~9 hours
  • Link (3.66 GiB zip archive): http://ladenthin.net/lmdb_light.zip
  • Link extracted addresses as txt (5.17 GiB) (2.29 GiB zip archive); open with HxD, set 42 bytes each line: http://ladenthin.net/LMDBToAddressFile_Light_HexHash.zip

💡 Hint: When using the light database, it is strongly recommended to enable the following setting in your configuration:

"loadToMemoryCacheOnInit" : true

Although LMDB is very fast, a Java HashSet provides true O(1) lookups compared to O(log n) (or worse) with disk-backed access. Enabling this flag loads all addresses into memory at startup, resulting in significantly higher throughput during key scanning — especially for OpenCL or high-frequency batch operations.

Checksums lmdb_light.zip

lmdb_light.zip	CRC32	DF77E5CF
lmdb_light.zip	MD5	4B733EAFF200C8044F80BE68538BB164
lmdb_light.zip	RipeMD160	A82C31F511C9BF3CDCA705E63860B5B597227EB3
lmdb_light.zip	SHA-1	C2E9FA56578C9F73942943C7861B226C6B44AC18
lmdb_light.zip	SHA-256	3B8AB59232D9CBB67118A79143E788E0B08A957E9C3D877F8B41303005170DC0
lmdb_light.zip	SHA-512	108D88E7EE1E90BEE975ADB711438C41971B23A65751EFB33EA6287A9697DC563ECCE40452DFA2DD1E0F66637F5AA14CC02D9A621AED953E0DA6FCEDD9D9C440
lmdb_light.zip	SHA3-224	BDF86A26D072BF521AE4A909AC912AC1C0F4EEAB33D12AE4D554327F
lmdb_light.zip	SHA3-256	55206B88314AD7F2907740FBD49C462BC0B1C2F075C23807E71E095EE9712345
lmdb_light.zip	SHA3-384	D23681FC1722253F2B51BBCF9CDA22FDD2B79C33657D38C938B64392E8CD4957AAD1FD4E6D54E7B9FF1A98C3D110C52F
lmdb_light.zip	SHA3-512	096B12FE4CB1A095287F678C10B30418091FCBF1FABB77003969C6D9846F1344A0C8918B3D2D047E94363B6E9BC5324801EA0E14331A012E8123FDE44672B394

Checksums LMDBToAddressFile_Light_HexHash.zip

LMDBToAddressFile_Light_HexHash.zip	CRC32	AA42A096
LMDBToAddressFile_Light_HexHash.zip	MD5	EB2E19F7AFE545A1A98FAE134D5394D4
LMDBToAddressFile_Light_HexHash.zip	RipeMD160	A011232D5069884ACFBE76C8DF4069DF684768DB
LMDBToAddressFile_Light_HexHash.zip	SHA-1	C8899544133C605EAB9FE2C83227854737B8D3FC
LMDBToAddressFile_Light_HexHash.zip	SHA-256	A8B67B606C574A4F895FA7E9B5E0AA9830C5DDD7E615EB59D77C2324E388DB78
LMDBToAddressFile_Light_HexHash.zip	SHA-512	4FD1B0905016292169A23E166C0D1C4D448DADFE4EC8FE410C1991D37B6AB5FE34596FD6EDFC62C0DE8EC8AD7142212F105ACD137B9A71F5F71E1BB1FB3B9278
LMDBToAddressFile_Light_HexHash.zip	SHA3-224	858550C2805FF1A20F3728392E70CAB9E4952792F31FA0881B0031D2
LMDBToAddressFile_Light_HexHash.zip	SHA3-256	4B522E2F4225D6FB238228033CC8AAE843DC24BA00B32BCBCA0D23B9A4C1AC46
LMDBToAddressFile_Light_HexHash.zip	SHA3-384	C29158FCB83F2D4F25BC610CE4D143964AC984ACA9D2064C9B8D40F33679830B3704A99BF408DAC75702658E55F58A7D
LMDBToAddressFile_Light_HexHash.zip	SHA3-512	29CA44CD666D7B8CF9EAD4B340620FBB7EDC30F47DBC2582A57E3DFF5E537A2A2F2CE7A7CEC2C6EF21775F7B839E0D1F23BE720CE0FC64F304B142AFAFA1437E

Full database

• Full (57.0 GiB), Last update: June 4, 2025
  • Contains all Bitcoin addresses which are ever used and many altcoin addresses with and without amount.
  • Static amount of 0 is used to allow best compression.
  • Unique entries: 1377481459
  • Mapsize: 58368 MiB
  • Time to create the database: ~54 hours
  • Link (34.3 GiB zip archive): http://ladenthin.net/lmdb_full.zip
  • Link extracted addresses as txt (23.4 GiB zip archive); open with HxD, set 42 bytes each line: http://ladenthin.net/LMDBToAddressFile_Full_HexHash.zip

Checksums lmdb_full.zip

lmdb_full.zip	CRC32	815A7A2D
lmdb_full.zip	MD5	AF29E5E75C62DC9591DFE0C101726296
lmdb_full.zip	RipeMD160	6137C2A7BDA337C274141ED866C7C9B5F011A47E
lmdb_full.zip	SHA-1	82554DD5C17BBDCD071015382AF4E1A8F3A85B33
lmdb_full.zip	SHA-256	DD9F6ACE080D24D80C1C032361226348D62CAF8BD0C0C09E0473A76F1ED95D57
lmdb_full.zip	SHA-512	0DF89EDB8243A4E12F56BC1AB9DF2C558A32FE14919B8A648CD3EB6869611DE035B044DEFAE6A5D5835886CBA405975E534BE4A624CD17A39CF69CF45A46381A
lmdb_full.zip	SHA3-224	43FF7478841483F022866569B73D89C7A4D154564CBE343873C29C61
lmdb_full.zip	SHA3-256	EB02EA6321F346406011F8195A57AA43BDAFAD2BBD34944ED27A87EF04FC509D
lmdb_full.zip	SHA3-384	F1A91448D85A84E6059EDED27E23FE5939B5F2A9BCE5DC260C8CAEF7B2E5AAFF75F6FE58AFB05F13094441F91DF3B031
lmdb_full.zip	SHA3-512	EF669BAD483E373CE4AFBA37AAE800A030F78E3D81972D8385E659DC5BEF2973E279D8666F53F727F1891F2C242896A957944E2E8E24BF138BC61C5A58394A7A

Checksums LMDBToAddressFile_Full_HexHash.zip

LMDBToAddressFile_Full_HexHash.zip	CRC32	41E4AF53
LMDBToAddressFile_Full_HexHash.zip	MD5	920B9656E21A0B68737255FC240F48D2
LMDBToAddressFile_Full_HexHash.zip	RipeMD160	73689B50945034554DADA23E5C25B49FCD1BF57C
LMDBToAddressFile_Full_HexHash.zip	SHA-1	2C59FCBF6FB53EDEB9E3B9069E67A547F114AEC6
LMDBToAddressFile_Full_HexHash.zip	SHA-256	CC45F6E8F383344D918B9C9F2AEDA5846211D878B7E05E222DB066106230BFBE
LMDBToAddressFile_Full_HexHash.zip	SHA-512	18E1739A6380D421F232C669DBD685B418B6F2D462C92E711539D2A2EEC606CEEDF58E19014B23A8936093ED07D55F51CFDC374B59B3299332E0DED223A53A96
LMDBToAddressFile_Full_HexHash.zip	SHA3-224	24B2D4AD34E73B59FB7BA5F8E064288176733A2634B5470B25B1C0DE
LMDBToAddressFile_Full_HexHash.zip	SHA3-256	1CC79E2F24031A37BFB5FFEA27C07CC654CDD91224A334F52095AF16FBE81F55
LMDBToAddressFile_Full_HexHash.zip	SHA3-384	CA115D352C2609B0B2E85010CC13175E7DC3C8F6295B3B6B4BD858D60D81D6E3EA706E4979F764A4C6BF7D351153A429
LMDBToAddressFile_Full_HexHash.zip	SHA3-512	A1419AFFE869B18973D499439E7EA90A94C4C7C6818F719741E59DD619985C6867F6C51F31BC7EDEBF27356D11B013E4D36FB83D89E5FFB1F77566FF5582FBD5

---

Pages and projects to get lists (dumps) of PubkeyHash addresses

• https://github.com/Pymmdrza/Rich-Address-Wallet
• https://github.com/mycroft/chainstate
• https://github.com/graymauser/btcposbal2csv
• https://blockchair.com/dumps
• https://balances.crypto-nerdz.org/

Find Addresses

🔢 Key Generation Configuration

BitcoinAddressFinder supports multiple pseudorandom number generators (PRNGs) for private-key creation. Pick one in your JSON via the keyProducerJavaRandomInstance field, e.g. "keyProducerJavaRandomInstance": "SECURE_RANDOM". This flexibility lets you switch between production-grade entropy and deterministic or deliberately weak sources for audits and research.

Key producer Use Cases

• 🔐 Secure wallet generation
• 🧪 Testing deterministic output
• 🕵️ Simulating vulnerabilities
• 🔄 Reproducible scans

⚠️ Security Warning: This software is intended for research and educational purposes. Do not use it in production or on systems connected to the internet.

A secure environment should be fully isolated — ideally an air-gapped computer (physically disconnected from all networks).
The software is highly optimized for performance and not designed to run in constant time, which means it may be vulnerable to side-channel attacks on shared or exposed systems.

For generated vanity addresses or private keys, consider storing them safely using a paper wallet.

Supported PRNG Modes (key producer java random)

Value	Description
SECURE_RANDOM	✅ Cryptographically secure system CSPRNG (/dev/urandom, Windows CNG). Recommended for real wallet generation.
RANDOM_CURRENT_TIME_MILLIS_SEED	⚠️ java.util.Random seeded with the current timestamp. Insecure; handy for replaying time-window RNG flaws.
RANDOM_CUSTOM_SEED	⚠️ java.util.Random with user-supplied seed. Fully deterministic; useful for reproducible fuzzing or fixed keyspaces.
SHA1_PRNG	⚠️ Legacy “SHA1PRNG” engine (Android pre-2013). Lets you reproduce the historic SecureRandom bug.

Examples

🔐 SECURE_RANDOM

Best choice for real wallet generation – uses system CSPRNG (e.g. /dev/urandom, Windows CNG).

...
"keyProducerJavaRandom": [
  {
    "keyProducerId": "exampleKeyProducerId",
    "keyProducerJavaRandomInstance": "SECURE_RANDOM"
  }
],
...

🕰️ RANDOM_CURRENT_TIME_MILLIS_SEED

Recreates time-based vulnerabilities using java.util.Random seeded with the current system time.

...
"keyProducerJavaRandom": [
  {
    "keyProducerId": "exampleKeyProducerId",
    "keyProducerJavaRandomInstance": "RANDOM_CURRENT_TIME_MILLIS_SEED"
  }
],
...

🧪 RANDOM_CUSTOM_SEED

Fully deterministic PRNG using java.util.Random with a user-defined seed. Useful for reproducible scans and testing.

Fully deterministic output. Useful for reproducible tests or fixed keyspace scans. Without explicit seed:

...
"keyProducerJavaRandom": [
  {
    "keyProducerId": "exampleKeyProducerId",
    "keyProducerJavaRandomInstance": "RANDOM_CUSTOM_SEED"
  }
],
...

With custom deterministic seed:

...
"keyProducerJavaRandom": [
  {
    "keyProducerId": "exampleKeyProducerId",
    "keyProducerJavaRandomInstance": "RANDOM_CUSTOM_SEED",
    "customSeed": 123456789
  }
],
...

⚠️ SHA1_PRNG

Legacy deterministic PRNG using "SHA1PRNG". Used to reproduce the 2013 Android SecureRandom vulnerability. Can be used with or without an explicit seed.

Simulates old Android bug. May produce the same keys if seeded poorly or not at all. Without seed:

...
"keyProducerJavaRandom": [
  {
    "keyProducerId": "exampleKeyProducerId",
    "keyProducerJavaRandomInstance": "SHA1_PRNG"
  }
],
...

With custom seed:

...
"keyProducerJavaRandom": [
  {
    "keyProducerId": "exampleKeyProducerId",
    "keyProducerJavaRandomInstance": "SHA1_PRNG",
    "customSeed": 987654321
  }
],
...

🔐 BIP39_SEED (key producer java bip 39)

HD-wallet-style derivation: mnemonic + passphrase → BIP32/BIP44 keys.

Hierarchical deterministic key generator using a BIP39 mnemonic and optional passphrase. Allows full BIP32/BIP44 path derivation and reproducible HD wallets.

JSON field	Type	Default	Purpose
mnemonic	string	—	12/24-word BIP39 sentence
passphrase	string	""	Optional BIP39 salt (“wallet password”)
hardened	boolean	false	Whether to use hardened key derivation (adds 0x80000000 to indices)
bip32Path	string	"M/44H/0H/0H/0" (constant DEFAULT_BIP32_PATH)	Base derivation path; must start with M/
creationTimeSeconds	number	0	Epoch-seconds creation timestamp; fed to DeterministicSeed.ofMnemonic

Minimal:

...
"keyProducerJavaBip39": [
    {
      "keyProducerId": "exampleKeyProducerId",
      "mnemonic": "abandon abandon abandon abandon abandon abandon abandon abandon abandon abandon abandon about"
    }
],
...

Full:

...
"keyProducerJavaBip39": [
    {
      "keyProducerId": "exampleKeyProducerId",
      "mnemonic": "abandon abandon abandon abandon abandon abandon abandon abandon abandon abandon abandon about",
      "passphrase": "correct horse battery staple",
      "hardened" : false,
      "bip32Path": "M/44H/0H/0H/0",
      "creationTimeSeconds": 1650000000
    }
],
...

🔢 incremental scanning (key producer java incremental)

This mode generates private keys sequentially in batches within a specified key range. It is especially useful for:

• Systematic scanning of a defined keyspace range (e.g., for key recovery or cryptographic research)
• Batch processing optimized for GPU/OpenCL parallelization
• Ensuring deterministic and reproducible key generation from start to end

---

Configuration Fields

JSON field	Type	Default	Purpose
startAddress	string	0000000000000000000000000000000000000000000000000000000000000002	Hex string of the first private key in the range (inclusive)
endAddress	string	FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141 (secp256k1 group order)	Hex string of the last private key in the range (inclusive)

How it works

• Scanning begins at startAddress, producing sequential private keys in batches of size batchSize, up to and including endAddress.
• Each batch contains exactly batchSize keys.
• If the next full batch would go beyond endAddress, the process stops with an exception.
• The endAddress is inclusive, but partial batches are not allowed by default — batches must fit completely inside the range.
• For optimal performance, especially with OpenCL, configure batchSize and your GPU's grid size so that batches align perfectly within the range. This prevents errors and maximizes throughput.

Note: If unsure, set the endAddress slightly higher to closely match the batch size. This helps avoid exceptions and ensures efficient scanning.

---

Example JSON Configuration

Example minimal configuration:

...
{
  "keyProducerJavaIncremental": [
    {
      "keyProducerId": "exampleKeyProducerId",
      "startAddress": "0000000000000000000000000000000000000000000000000000000000000002",
      "endAddress": "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141"
    }
  ]
}
...

🧩 This configuration incrementally searches a defined range of private keys. It is particularly suited for brute-force challenges, such as the 71st Bitcoin puzzle transaction.
The private key range is specified by two 64-character hex strings: startAddress and endAddress.

...
"keyProducerJavaIncremental": [
    {
      "keyProducerId": "exampleKeyProducerJavaIncremental",
      "startAddress": "0000000000000000000000000000000000000000000000400000000000000000",
      "endAddress":   "00000000000000000000000000000000000000000000007fffffffffffffffff"
    }
],
...

🌐 SOCKET_STREAM (key producer java socket)

Read raw private keys from a TCP socket stream (client or server mode).
Useful for piping externally generated secrets (e.g., from Python, Go, etc.) directly into the finder.

JSON Field	Type	Default	Description
keyProducerId	string	—	Unique identifier for this key producer
mode	string enum (CLIENT, SERVER)	"SERVER"	Whether to connect to a remote socket (CLIENT) or wait for connections (SERVER)
host	string	"localhost"	Remote host to connect to (used only in CLIENT mode)
port	number	12345	TCP port to connect to or bind on
timeout	number	3000	Socket read timeout in milliseconds
logReceivedSecret	boolean	false	Whether to log each received private key as a hex string
connectionRetryCount	number	5	Number of times to retry establishing a socket connection
retryDelayMillisConnect	number	1000	Delay between connection retry attempts (in milliseconds)
readRetryCount	number	3	Number of attempts to retry reading a full secret after I/O failure
retryDelayMillisRead	number	1000	Delay between read retry attempts (in milliseconds)
readPartialRetryCount	number	5	Number of retries when partially reading a single 32-byte secret
readPartialRetryDelayMillis	number	20	Delay between partial read retries (in milliseconds)
maxWorkSize	number	16777216	Maximum number of secrets to request in a single call

Minimal:

...
"keyProducerJavaSocket": [
    {
        "keyProducerId": "exampleKeyProducerId",
        "host": "localhost",
        "port": 12345,
        "mode": "SERVER"
    }
],
...

Full:

...
"keyProducerJavaSocket": [
    {
        "keyProducerId": "exampleKeyProducerId",
        "host": "localhost",
        "port": 12345,
        "mode": "SERVER",
        "timeout": 3000,
        "logReceivedSecret": true,
        "connectionRetryCount": 5,
        "retryDelayMillisConnect": 1000,
        "readRetryCount": 5,
        "retryDelayMillisRead": 1000,
        "readPartialRetryCount": 5,
        "readPartialRetryDelayMillis": 20,
        "maxWorkSize": 16777216
    }
],
...

Example: Python Socket Stream Server:

import socket
import os
import time
import binascii

HOST = 'localhost'
PORT = 12345

while True:
    try:
        with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
            s.connect((HOST, PORT))
            print(f"Connected to {HOST}:{PORT}")
            while True:
                private_key = os.urandom(32)
                print("Sending key:", binascii.hexlify(private_key).decode())
                s.sendall(private_key)
                time.sleep(1.0) # Slight delay to avoid flooding
    except ConnectionRefusedError:
        print("Connection refused, retrying in 1 second...")
        time.sleep(1)
    except BrokenPipeError:
        print("Connection lost, reconnecting...")
        time.sleep(1)

🔄 Protocol

• Each private key must be exactly 32 raw bytes, sent binary, with no delimiter or framing.
• Keys are interpreted as big-endian (new BigInteger(1, bytes) in Java).
• Sending fewer than 32 bytes will cause blocking or exceptions.

🌐 SOCKET_STREAM (key producer via ZeroMQ)

Receive raw private keys via a ZeroMQ PULL socket. Ideal for decoupled key streaming where producers push keys using ZeroMQ PUSH sockets.

JSON field	Type	Default	Description
keyProducerId	string	—	Unique identifier for this key producer
address	string	tcp://localhost:5555	The ZeroMQ address to bind or connect to
mode	string enum (BIND, CONNECT)	BIND	Whether this socket binds to or connects
timeout	number	-1	Receive timeout in milliseconds: 0 = non-blocking, -1 = infinite, >0 = wait that long
logReceivedSecret	boolean	false	Whether to log each received secret in hex

Minimal:

...
"keyProducerJavaZmq": [
    {
        "keyProducerId": "exampleKeyProducerId",
        "address": "tcp://localhost:5555"
    }
],
...

Full:

...
"keyProducerJavaZmq": [
    {
        "keyProducerId": "exampleKeyProducerId",
        "address": "tcp://localhost:5555",
        "mode": "BIND",
        "timeout": -1,
        "logReceivedSecret": true
    }
],
...

Example: Python Socket Stream Server:

import zmq
import os
import time
import binascii
from enum import Enum

class Mode(Enum):
    CONNECT = "connect"
    BIND = "bind"

ADDRESS = "tcp://localhost:5555"
MODE = Mode.CONNECT  # Change to Mode.BIND to switch

context = zmq.Context()

while True:
    try:
        socket = context.socket(zmq.PUSH)
        socket.setsockopt(zmq.SNDHWM, 1) # Limit send queue to 1 message

        if MODE == Mode.BIND:
            socket.bind(ADDRESS)
            print(f"Bound to {ADDRESS}")
        else:
            socket.connect(ADDRESS)
            print(f"Connected to {ADDRESS}")

        while True:
            private_key = os.urandom(32)
            print("Sending key:", binascii.hexlify(private_key).decode())
            try:
                socket.send(private_key, flags=zmq.NOBLOCK)
            except zmq.Again:
                print("Send queue full, message not sent.")
            time.sleep(1.0) # Slight delay to avoid flooding

    except zmq.ZMQError as e:
        print(f"ZMQ error occurred: {e}, retrying in 1 second...")
        time.sleep(1)

    finally:
        try:
            socket.close()
        except:
            pass

🔄 Protocol

• Each private key must be exactly 32 raw bytes, sent as a single ZeroMQ message.
• Messages are interpreted as unsigned big-endian (new BigInteger(1, bytes) in Java).
• No framing or delimiters needed—ZeroMQ handles message boundaries.
• Messages larger or smaller than 32 bytes will be discarded or raise errors.

Mixed Modes

You can combine vanity address generation with database lookups to enhance functionality and efficiency.

For example:

• Search for personalized (vanity) addresses using custom patterns and
• Simultaneously check if the generated addresses already exist in the LMDB database

This hybrid mode allows you to find rare or meaningful addresses while ensuring they haven’t been used before.

Key Range

You can define a custom key range for private key generation—for example, limiting the search space to 64-bit keys.
In this setup, the first 192 bits (256-bit - 64-bit) of the key are zeroed, effectively restricting the generation to a specific portion of the keyspace.

This feature can be used for:

• Targeted key recovery, such as searching for private keys from known ranges like the Bitcoin Puzzle Transaction
• Verification and testing, to prove that the software functions correctly within a predictable key range

OpenCL Acceleration

To significantly boost the performance of EC key generation, the software supports OpenCL-based parallelization.

A shared secret (base key) is transferred to the OpenCL device along with a predefined grid size. Each OpenCL thread independently derives a unique EC key by incrementing the base key with its thread ID. This allows the generation of a batch of EC keys in a single execution cycle. Once generated, the keys are transferred back to the host (CPU) memory for further processing.

The CPU then hashes the X and Y coordinates of the public keys to derive the corresponding (Bitcoin/Altcoin) addresses. This division of labor offloads the computationally expensive elliptic curve operations to the GPU, allowing the CPU to focus on faster address hashing and database lookup operations—resulting in improved overall throughput.

Built-in Self-Test (BIST)

The OpenCL backend includes a built-in self-test mechanism that cross-verifies results from the GPU against a CPU-generated reference. This ensures that the OpenCL device is functioning correctly and producing valid EC keys—giving end users confidence in the reliability of their hardware-accelerated address search.

💡 Hint: To enable the built-in self-test, make sure the following configuration flag is set to true:

"runtimePublicKeyCalculationCheck": true

This option is disabled by default. Enabling it is especially useful during development, debugging, or when validating new hardware setups.

Performance Benchmarks

Note: OpenCL generates uncompressed keys. Compressed keys can be derived from uncompressed ones with minimal overhead.

GPU Model	CPU	Key Range (Bits)	Grid Size (Bits)	Effective Keys/s (~)
AMD Radeon RX 7900 XTX	AMD Ryzen 7 9800X3D	160	19	15,000,000 keys/s
AMD Radeon RX 7900 XTX	AMD Ryzen 7 9800X3D	256	19	11,000,000 keys/s
NVIDIA RTX 3070 Laptop	AMD Ryzen 7 5800H	160	19	6,000,000 keys/s
NVIDIA RTX 3070 Laptop	AMD Ryzen 7 5800H	256	19	4,000,000 keys/s
NVIDIA RTX 3090	AMD Ryzen 9 3950X	160	19	11,000,000 keys/s
NVIDIA RTX 3090	AMD Ryzen 9 3950X	256	19	8,000,000 keys/s
NVIDIA RTX A3000	Intel i7-11850H	256	19	3,000,000 keys/s
NVIDIA RTX A3000	Intel i7-11850H	160	19	5,000,000 keys/s

Collision Probability and Security Considerations

Isn't it impossible to find collisions?

The likelihood of discovering a collision—two different inputs that produce the same output hash—is astronomically low when using secure cryptographic functions like SHA-256 and RIPEMD-160, which are employed in Bitcoin address generation.

However, discussions around potential vulnerabilities, theoretical attacks, or edge cases exist in the cryptography and Bitcoin communities.

For more in-depth information on collision resistance, address reuse risks, and cryptographic hash functions, refer to the following resources:

• How to deal with collisions in Bitcoin addresses – Crypto StackExchange
• Why haven't any SHA-256 collisions been found yet? – Crypto StackExchange
• bitcoin-wallet-finder – Results and discussion
• PKGenerator_Checker – Instructions
• BitBruteForce-Wallet – Requirements and usage
• New Records in Collision Attacks on RIPEMD-160 and SHA-256 (ePrint 2023/285) – Li et al. present new records in collision attacks: 40-step RIPEMD-160 and 39-step semi-free-start SHA-256. Both hash functions are fundamental to Bitcoin address generation.

⚠️ Security Advisory: Android RNG Vulnerability (2013) and Simulation via BitcoinAddressFinder

In 2013, a serious vulnerability was discovered in Android’s SecureRandom implementation. It caused Bitcoin private keys to be exposed due to reused or predictable random values during ECDSA signature creation. This problem affected many wallet apps that generated keys directly on Android devices.

BitcoinAddressFinder can be used to simulate and analyze this type of attack. With small changes, it can reproduce faulty random number generators by:

• using fixed or repeating k values
• limiting entropy to 16, 32, or 64 bits
• replacing the secure RNG with a weak or deterministic version

This makes it possible to test and study:

• how r-collisions happen in ECDSA signatures
• how easy it is to find reused k values
• how quickly a private key can be recovered
• how secure different RNG implementations really are

BitcoinAddressFinder can generate millions of key pairs quickly. This allows researchers to create and scan large keyspaces under controlled RNG conditions. All results can be verified using the built-in self-test feature or compared against known addresses in the LMDB database.

This kind of simulation is useful for:

• learning about signature security
• building training examples for audits or courses
• checking RNG quality in real wallets or custom apps

References:

• Wikipedia: RNG Attack
• Crypto.SE: Android SecureRandom + r-Collisions
• The Register: Android Bug Batters Wallets
• Google Blog: SecureRandom Fixes
• bitcoin.org Alert (2013-08-11)

Similar projects

• The LBC is optimized to find keys for the Bitcoin Puzzle Transaction. It require communication to a server, doesn't support altcoin and pattern matching.
• https://privatekeys.pw/scanner/bitcoin
• https://allprivatekeys.com/get-lucky
• https://allprivatekeys.com/vanity-address
• https://github.com/treyyoder/bitcoin-wallet-finder
• https://github.com/albertobsd/keyhunt
• https://github.com/mvrc42/bitp0wn
• https://github.com/JeanLucPons/BTCCollider
• https://github.com/JeanLucPons/VanitySearch
• https://github.com/JamieAcharya/Bitcoin-Private-Key-Finder
• https://github.com/mingfunwong/all-bitcoin-private-key
• https://github.com/Frankenmint/PKGenerator_Checker
• https://github.com/Henshall/BitcoinPrivateKeyHunter
• https://github.com/Xefrok/BitBruteForce-Wallet
• https://github.com/Isaacdelly/Plutus
• https://github.com/Noname400/Hunt-to-Mnemonic
• https://github.com/Py-Project/Bitcoin-wallet-cracker
• https://github.com/johncantrell97/bip39-solver-gpu

Deep learning private key prediction

An export of the full database can be used to predict private keys with deep learning. A funny idea: https://github.com/DRSZL/BitcoinTensorFlowPrivateKeyPrediction

Learn more

• https://learnmeabitcoin.com/technical/keys/public-key/

Known Issues

Hybrid Graphics Performance (Low Throughput)

Laptops with hybrid graphics—using both integrated (iGPU) and discrete (dGPU) GPUs—may suffer from significantly reduced performance when running compute-intensive OpenCL workloads like BitcoinAddressFinder. This is often due to:

• Shared memory between CPU and GPU
• Bandwidth limitations
• Automatic GPU switching (e.g., NVIDIA Optimus, AMD Enduro)
• Suboptimal GPU selection by drivers

Affected Devices and Recommendations

Manufacturer	Affected Series/Models	Recommendation
HP	ZBook G3, G4, G5, G7	Enter BIOS → set Graphics to Discrete Only
Lenovo	ThinkPad X, T, and P Series (hybrid configs)	Use Lenovo Vantage → Disable Hybrid Graphics
Dell	Inspiron, XPS, Precision (with Optimus)	BIOS → Disable Hybrid Mode (if available)
MSI	Gaming laptops with switchable graphics	Use Dragon Center to select dGPU
Razer	Blade models with NVIDIA Optimus	Use Razer Synapse to enforce dGPU use
Apple (Intel)	MacBook Pro (pre-2021 with dual GPUs)	macOS → Disable Automatic Graphics Switching in Energy Preferences

If your laptop uses hybrid graphics, always ensure that the discrete GPU is explicitly selected for OpenCL workloads to avoid severe performance bottlenecks.

Future improvements

• Refactor the entire key generation infrastructure to support a key provider. This provider should be configurable to supply private keys from various sources, such as Random, Secrets File, Key Range, and others. All consumers should retrieve keys from this provider.

KeyProvider

• Key generation within a specific key range. See #27 Wished from themaster:

"privateKeyStartHex" : "0000000000000000000000000000000000000000000000037e26d5b1f3afe216"
"privateKeyEndHex" : "0000000000000000000000000000000000000000000000037e26d5b1ffffffff"

Wished from Ulugbek:

// Search started from given address. Would be nice if it can save last position...
"sequentalSearch" : true,
"startAddress" : xxxxxxxx,

// Random search with batches, here 100000. I,e. some random number is found and after 100000 sequental addresses should be checked.
"searchAsBatches" : true,
"searchBatchQuantity" : 100000,


// Random search within Address Space, with batches, here 100000.
"searchAsBatches" : true,
"searchAddressStart" : xxxxxxx,
"searchAddressEnd" : xxxxxxxy,
"searchBatchQuantity" : 100000

• Incomplete Seed-Phrase as Private KeyProvider. Wished from @mirasu See #38
• Socket KeyProvider for independend KeyProvider via byte protocol
  • Ideas might be a screen recorder and use the visible screen downscaled as 256 bit input
• KeyProvider must get the grid size to increment properly on incremental based Producer
• ExecutableKeyProvider gets data from stdout

---

Legal

BitcoinAddressFinder is not intended for malicious use, and you are solely responsible for complying with your local laws, international regulations, and ethical standards.

This software must not be configured or used to attempt unauthorized access to cryptocurrency assets (e.g., scanning for RIPEMD-160 address collisions to gain access to third-party funds).
Such activities are likely illegal in most jurisdictions and may carry serious penalties.

---

✅ Permitted Use Cases

You may use BitcoinAddressFinder for legitimate and research-focused purposes, such as:

• Recovering lost private keys associated with your own known public addresses
• Verifying whether generated addresses have ever been used to prevent collisions
• Running performance benchmarks and OpenCL testing
• Generating vanity addresses for personal or demonstrative use
• Conducting offline cryptographic research and educational exploration

---

🚫 Prohibited Use Cases

You must not use this tool for:

• Gaining unauthorized access to cryptocurrency or wallet funds
• Circumventing access controls or exploiting systems
• Engaging in unethical behavior or violating terms of service

---

Legal References by Jurisdiction

Below is a non-exhaustive collection of legal frameworks that may apply depending on your jurisdiction.

⚠️ Important Note: The following information is provided for informational purposes only and does not constitute legal advice.
You should always consult with a qualified legal professional before engaging in any activity related to cryptographic systems or asset recovery.
I merely present relevant legal context, not binding interpretations or actionable recommendations.

Germany

• § 202c StGB – Vorbereiten des Ausspähens und Abfangens von Daten
  (Preparation of spying or intercepting data)

• OLG Braunschweig, Beschluss vom 18.09.2024 – 1 Ws 185/24
  In einem aufsehenerregenden Fall entschied das OLG, dass der Zugriff auf eine Wallet mittels eines bekannten (nicht rechtswidrig erlangten) Seeds nicht als Straftat im Sinne der §§ 202a, 263a oder 303a StGB gewertet werden kann.
  Der Angeklagte hatte eine Wallet für einen Dritten erstellt und sich später mittels der Seed-Phrase Zugriff auf Token im Wert von rund 2,5 Mio. € verschafft.
  Das Gericht urteilte jedoch:

  • Kein Diebstahl: Kryptowährungen sind keine „Sachen“ im Sinne des § 242 StGB.
  • Kein Ausspähen von Daten (§ 202a StGB): Der Zugriff mittels bekannter Passwörter ist kein Überwinden einer Zugangssicherung.
  • Kein Computerbetrug (§ 263a StGB): Eine Krypto-Transaktion impliziert keine „Täuschung“ oder „Miterklärung einer Berechtigung“.
  • Keine Datenveränderung (§ 303a StGB): Die eigentliche Änderung erfolgt durch die Blockchain-Netzwerkbetreiber – nicht durch den User selbst.

  🔍 Fazit: Der „Kryptodiebstahl“ per bekanntem Seed ist unter Umständen nicht strafbar – bleibt aber zivilrechtlich angreifbar.
  Quelle: OLG Braunschweig Beschluss 1 Ws 185/24 (juris.de)
  Bericht: heise.de Artikel vom 11.07.2025

United States

• Computer Fraud and Abuse Act (CFAA)
  Prohibits unauthorized access to protected computers, including use of tools for circumvention

• Digital Millennium Copyright Act (DMCA)
  Sections on anti-circumvention tools and reverse engineering may apply in specific contexts

European Union

• General Data Protection Regulation (GDPR)
  While not directly related, use of personally identifiable data or address targeting must comply

• Directive 2013/40/EU on Attacks Against Information Systems
  Criminalizes the creation or possession of tools designed for unauthorized access

Other Notable References

• UK: Computer Misuse Act 1990
• Canada: Criminal Code Sections 342.1 & 430
• Australia: Criminal Code Act 1995 – Part 10.7 – Computer Offences

---

⚠️ The authors and maintainers of BitcoinAddressFinder assume no responsibility for how the tool is used.
It is your duty to ensure compliance with all relevant legal and ethical standards in your country and jurisdiction.

If in doubt, consult with a legal professional before using this software for anything beyond educational or personal purposes.

License

It is licensed under the Apache License, Version 2.0. See LICENSE for the full license text. Some subprojects have a different license.

This package is Treeware. If you use it in production, then we ask that you buy the world a tree to thank us for our work. By contributing to the Treeware forest you’ll be creating employment for local families and restoring wildlife habitats.