jesus fuck trustwallet just generated me a used eth address. shit was used like 650 days ago. empty now ofc but wtf? this shouldn't happen
weak entropy in their seed generation process? anyone with a handle on this shit have any thoughts?
off the top of my head their process is:
entropy generation (probably their weak point) checksum generation split the string to 12 substrings each w/ 11 bits convert each substring to decimal their decimal value determines position on the bip39 wordlist
after the mnemonic is generated its just a matter of key derivation, i could be wrong but i think they use SECPK22500(sp) for their EVM addresses which is up to standard
pardon the retarded grammer im on mobile and cant be fucked atm
so yea i wonder what the fuck jenky ass entropy generation theyre using
interesting user.perhaps make a script to keep making addresses until u get a used one again, ie try and replicate the issue. if u can, then keep doing it until you find one with cash in it.
Jeremiah Nguyen
Hey, that’s my wallet u mind not touching any of my assets?
Dominic Powell
>found the uphold user
the txs were small like 0.002 eth lol. eth was about 150$ back then too
Samuel Johnson
What’s your device / os version / app version? Gonna check
James Roberts
i alwasy wondered why nobody has made a program script that makes unlimited wallets until all permutations are complete
Ian Kelly
fake op 99.99%
if you wanna prove it (tho not even really)
paste private key for that dup in your screenshot
David Lewis
You have no idea how wallet keys are generated do you?
Juan Moore
iphone 8 / 15.1 / 7.15
thanks to you im 7$ richer for a net worth total of 7$. found it while checking trustwallets version in the app store. kek. score.
Robert Jenkins
i do actually ive written millions of python scripts doing this exact thing.
it's not brain surgery user, bip_utils is a thing
but go ahead, give us your version
Andrew Stewart
check it out, i made the account to get some green dragon from a thread posted here 2 weeks ago on BSC. i just checked again today and noticed the same addy was active on eth 600+ days ago.
trustwallet doesnt give priv keys for multi wallets i dont think, but heres the mnemonic.
cream eight sight draft ecology tenant forum name victory dinner evolve poet (its empty obv)
--> paste --> select coin type ethereum --> first address/priv key on the list should be the same deriv path as metamask/trustwallet
Asher Green
thx for proof but still 90% sure thats just your old address
10% chance trustwallet got some dodgy entrophy
Caleb Sullivan
ive made scripts that literally generate and check thousands every second but i have little hope of ever finding one, chances are basically 0.
the only way this is possible is they just have a flawed method of entropy generation. their code is open source: github.com/trustwallet/wallet-core
but i dont know c++ just java and python.
ill try and figure out how they go about it
Hudson Sanders
>post proof >OP posts proof >ok but its insufficent proof fuck off stop wasting people’s time
Grayson Martin
lmao its not full proof (which i what i said in my first post)
Aaron Cooper
>not using opensource wallets to generate keys
Jaxon Price
i go through about 18 phones a year and im not a retarded boomer that lets his seeds get uploaded to icloud just for some rickshaw salesmans brother to help himself to
i created a trustwallet fresh on that day to stay user receiving that green dragon shitcoin from a randy user here
Thomas Young
Don't these key generators at least check if the address is new or not? Wtf? I get it's a sub-atomic chance but it still should be checked for completeness.
Blake Williams
then ask for full proof or dont ask at all wasted quads
William Anderson
it is opensource you meatball see above
Jace Morris
ultramega apocalypse happening if true. imagine if you landed on a binance cold wallet