Donjon

The security research at Ledger

KeepKey Hardware Wallet Under The Scope

KeepKey Hardware Wallet Under The Scope

A side-channel attack on the PIN verification of the KeepKey hardware wallet allows to retrieve the PIN of the device...

Lit by Laser: PIN Code Recovery on Coldcard Mk2 Wallets

Lit by Laser: PIN Code Recovery on Coldcard Mk2...

How the Donjon performed a PIN code recovery on a Coldcard Mk2 wallet.

Ledger's CTF 2018 and side-channels

Ledger's CTF 2018 and side-channels

Solving Ledger's whitebox challenge with Side-Channel attacks

Everybody be Cool, This is a Robbery!

Everybody be Cool, This is a Robbery!

Summary of the HSM vulnerabilities exposed at Black Hat 2019

OLED screen (minor) vulnerability

OLED screen (minor) vulnerability

Details on the side-channel vulnerability reported by Christian Reitter

Funds are SSSAFU - Stealing the funds of all HTC EXODUS 1 users

Funds are SSSAFU - Stealing the funds of all HT...

How a bad implementation of Shamir Secret Sharing allows to steal all the cryptocurrencies stored on a HTC EXODUS 1...

Unfixable Seed Extraction on Trezor - A practical and reliable attack

Unfixable Seed Extraction on Trezor - A practic...

An attacker with a stolen device can extract the seed from the device. It takes less than 5 minutes and...

Extracting seed from Ellipal wallet

Extracting seed from Ellipal wallet

Ellipal is a hardware wallet based on air-gapped Android device, Our study showed that communication interfaces could be re-enabled

Breaking Trezor One with Side Channel Attacks

Breaking Trezor One with Side Channel Attacks

A Side Channel Attack on PIN verification allows an attacker with a stolen Trezor One to retrieve the correct value...

Extracting seeds from Wallets

Extracting seeds from Wallets

An executive summary of the Donjon findings during the research.

Rainbow

Rainbow

Introducing Rainbow: Donjon's side-channel analysis simulation tool

Introducing Ledger Donjon

Introducing Ledger Donjon

A very high level description of Ledger Donjon - the security research at Ledger.