实验室在线 · 24h 受理 Lab online · 24h intake

找回那些
本该消失的资产。 We bring back
what was supposed to vanish.

由密码学家、硬件取证工程师与链上分析师组成的资产恢复团队。不成功,不收费。 Cryptographers, hardware forensics engineers, and on-chain analysts. No recovery, no fee.

提交案件Submit a case 查看案卷Browse the files
2,140+
BTC 已找回recovered
14.8K+
ETH 已找回recovered
$42M+
USDT 追回retrieved
63%
结案率closure rate
§ 01 · 服务Services

我们处理的每一类案件。 The kinds of cases we take.

01
钱包密码恢复Wallet password recovery
imToken、Electrum、Bitcoin Core — GPU 集群定向爆破。imToken, Electrum, Bitcoin Core — GPU-cluster targeted attacks.
02
助记词修复Seed-phrase repair
单词错乱、缺词、BIP39 校验失败 — 组合搜索逐步收敛。Scrambled order, missing words, BIP39 failures — combinatorial search.
03
硬件钱包芯片级取证Hardware-wallet chip forensics
Ledger、Trezor、库神 — 物理读取、侧信道与安全元件提取。Ledger, Trezor, ColdLar — physical readout, side-channel, SE extraction.
04
Keystore / JSON 破解Keystore / JSON attacks
结合记忆线索对 scrypt / pbkdf2 执行定向攻击。Targeted scrypt / pbkdf2 attacks using memory-cued fragments.
05
手机解锁与私钥提取Mobile unlock & key extraction
iPhone、Android 变砖或锁定时定位钱包数据并重建私钥。iPhone, Android — locate wallet data on bricked devices and rebuild keys.
06
磁盘恢复与钱包文件还原Disk recovery & wallet files
无尘室介质恢复 + wallet.dat / keystore 文件重组。Cleanroom media recovery plus wallet.dat / keystore reassembly.
07
链上资金追踪与法证On-chain tracing & forensics
混币器、跨链桥、交易所聚类、OTC 出金点定位。Mixers, bridges, exchange clustering, OTC off-ramp identification.
08
遗产钱包与司法协助Estate wallets & legal
配合律所完成身份核验与资产安全交付。Identity verification with counsel, secure delivery of recovered assets.
§ 02 · 案卷Case Files

来自已结案的文件柜。 From the closed file drawer.

已脱敏。完整细节签订保密协议后可披露。 Redacted. Full details disclosed under NDA.

№ 0418
设备解锁 · BTC · 41 天Device unlock · BTC · 41d
封存八年的 iPhone,资产回到链上。 An iPhone sealed for eight years — the BTC came back.
CLOSED

一部 2014 年的 iPhone 因连续错误密码进入永久停用状态。硬件团队通过 BootROM 漏洞获取原始映像,定位了钱包数据库与加密版本,结合客户线索完成爆破。第 41 天资产回到新冷钱包。

A 2014-era iPhone in permanent disable state. The hardware team imaged the device via a BootROM exploit, located the wallet databases, and targeted the password using fragments the client could recall. Day 41, assets moved to a fresh cold wallet.

EVIDENCE LOG
DEVICEiPhone 6 · A1586
METHODBootROM + DFU
AGE OF KEY3,041 days
OUTCOMEFull recovery
№ 0387
密码恢复 · MultiBit · 11 个月Password · MultiBit · 11mo
沉睡十二年的 MultiBit 钱包终于被叫醒。 A MultiBit wallet asleep for twelve years.
CLOSED

2013 年存入的一笔 BTC,密码遗忘。前期六个月规则攻击未命中。内部口令推导引擎升级后,新模式覆盖了客户当年的"两段拼接"习惯,第十一个月完成爆破。

A 2013 BTC deposit, password forgotten. Six months of standard rule attacks landed nothing. After an internal upgrade adding two-segment concatenation patterns the client had used, the password broke in month eleven.

EVIDENCE LOG
WALLETMultiBit 0.5.x
FIRST TX2013-04-17
GPU HOURS~ 38,400
OUTCOMECracked
№ 0356
密码恢复 · imToken · 3 个月Password · imToken · 3mo
世界杯之夜设下的醉酒密码。 A drunken password set on World Cup night.
CLOSED

2018 年世界杯决赛之夜,客户在醉酒后给钱包设了一组约 15–16 位的密码。次日醒来彻底无法复现,仅记得"大概混了几个数字和符号"。

After the 2018 World Cup final, the client set a ~15–16 character password on a wallet while drunk. The next morning it was gone. The only fragment they could give us was "some numbers and symbols, probably."

由于搜索空间巨大、客户线索几乎为零,案件进入冷案队列。三个月后内部口令推导引擎升级,新增对"键盘临近键漂移"与"重复双字符"模式的覆盖,最终命中。

With a massive search space and almost no leads, the case sat in the cold queue. Three months later our password-derivation engine added patterns for adjacent-key drift and repeated digrams — and the password broke.

EVIDENCE LOG
WALLETimToken 2.x
PASSWORD~ 16 chars
GPU HOURS~ 96,000
OUTCOMECracked
№ 0322
硬件取证 · 库神 · 22 天Chip forensics · ColdLar · 22d
库神硬件钱包,芯片级读取后完整恢复。 A ColdLar hardware wallet, restored by chip-level readout.
CLOSED

设备外壳烧蚀,PCB 焊点受损,常规启动失败。委托人持有该钱包多年,已无法回忆助记词;资产同时涉及 BTC 与 ETH。

Burn damage on the shell, broken PCB joints, refused to boot. The client had owned the wallet for years and no longer recalled the seed; assets included both BTC and ETH.

硬件实验室对主控芯片进行去封装后从非编程区直接读取,配合该机型已发表的安全研究恢复种子。第 22 天完成全部交付。

In the lab we decapsulated the main controller and read the unprogrammed region directly, combining the dump with published security research on the model to reconstruct the seed. Day 22, end-to-end.

EVIDENCE LOG
DEVICEColdLar · 库神
DAMAGEThermal + PCB
METHODDecap + readout
OUTCOMEFull recovery
§ 03 · 方法Method

每一个案件,四个阶段 Every case. Four stages.

i.

立案与评估Intake & triage

24 小时内返回可行性判断与成功概率区间。免费,不要求敏感信息。A feasibility read and probability band within 24 hours. Free, no sensitive data required.

ii.

合同与保密Contract & NDA

签订 NDA 与不成功不收费条款,明确成功费比例。仅此后接收钱包数据。Signed NDA, success-fee terms, no-recovery-no-fee. Wallet material only after signature.

iii.

恢复与调查Recovery & investigation

案件进入对应工作组。运算在离线环境执行,客户每周收到进度报告。Compute runs in air-gapped environments. The client receives a structured weekly report.

iv.

交付与清算Delivery & settlement

资产在客户监督下转入新钱包。结算成功费用,删除案件副本。Assets move under client supervision to a fresh wallet. Success fee settles. Case copy destroyed.

§ 04 · 优势Why Bitective

资产恢复是一场战斗 Recovery is a fight.

与数学、时间、成本和人类行为的较量。当数学条件不成立时,我们也会直接拒绝案件。 Against mathematics, time, cost, and human behavior. We turn down cases when the math doesn't support a crack.

⌘ · 01
底层钱包专家Wallet internals

主流钱包早期研发者与安全审计师。读源码,不只是 README。Early contributors and auditors of mainstream wallets. We read source.

⌘ · 02
独立硬件实验室Hardware lab

显微焊接、去封装、侧信道与故障注入全部自有。Microscope rework, decap, side-channel and fault injection — all in-house.

⌘ · 03
真实算力Real compute

GPU 集群与矿场合作 — 必要时为单一案件分配工业级算力。GPU clusters and mining partnerships — industrial-scale compute on demand.

⌘ · 04
不成功 不收费No recovery, no fee

恢复服务仅以成功费结算。不收取任何形式的预付款。Recovery work paid only on success. No form of advance payment.

§ 05 · 联系Contact

把你已经放弃的钱包交给我们看一眼。 Hand us the wallet you've already given up on.

初步评估免费,24 小时内回复。 The initial read is free, returned within 24 hours.

EMAIL
hi@bitective.io
TELEGRAM
@bitective
安全提示Safety note 请勿在首次接触中发送助记词、私钥或截图。合法的恢复服务不会要求预付款,也不会承诺 100% 找回。 Never send seed phrases, private keys, or screenshots in a first contact. A legitimate recovery service does not ask for upfront payment and does not promise 100% recovery.