If you remember part of your password (e.g., you know it started with "Satosh" but ended with a 4-digit year):
hashcat -m 11300 -a 3 btc.hash Satosh?d?d?d?d
Bitcoin2john supports several wallet formats: Bitcoin2john
| Wallet | File/Format | Notes |
|--------|-------------|-------|
| Bitcoin Core (original) | wallet.dat | Berkleley DB, old and new formats |
| MultiBit Classic | .wallet file | Uses scrypt + AES |
| MultiBit HD | .wallet file | Different structure |
| Armory | .wallet file | Legacy support |
| Electrum (old versions) | default_wallet | Pre-2.0 format |
| Hive | JSON-based | Limited | If you remember part of your password (e
Important: Modern BIP39 seed phrase wallets (most 12/24-word wallets) are not directly crackable via Bitcoin2john unless they also have an encrypted wallet file. For BIP39, you need tools like
btcrecoverorfindmycoins. Bitcoin2john supports several wallet formats: | Wallet |
| Method | Pros | Cons | |--------|------|------| | Bitcoin2john + Hashcat | Free, open-source, GPU-accelerated, no data leaves your machine | Requires technical skill, slow for complex passwords | | Commercial Recovery Services | Easy, hands-off, expert knowledge | Expensive (often 20% of recovered funds), requires trusting a third party | | Wallet Recovery Services (cloud) | Fast for simple passwords | Your hash is sent to their servers—major security risk | | Brute-force manually | No tool needed | Practically impossible for strong passwords |
The cracking speed depends on:
git clone https://github.com/openwall/john.git
cd john/run/
ls bitcoin2john.py # present in bleeding-edge jumbo
John the Ripper has "rules" that mutate words. For example, take the word "Satoshi" and try Satoshi1, Satoshi!, Satoshi123, satoshi.