A universal blockchain wallet for cryptos
- Handy, almost 1-click
- Fast and lightweight
- Multiple cryptos blockchains
- Tokens ERC20/BEP20
- WalletConnect
- Multiple networks (testnets,...)
- Multi platforms : PC, Mac and Linux
- Open source GPLv3
Official web site : https://uniblow.org
(also https://uniblow.app)
Don't expect to get advanced settings for the fees. This software provides an easy and basic wallet, focused on universality and ease in use, as it works on multiple blockchains and platforms.
Compatible with the following blockchains :
- BTC
- mainnet and testnet networks
- Standard wallet (P2PKH)
- Segwit P2SH compatibility
- Full Segwit bech32 (P2WPKH)
- Send to Taproot Bech32m address (P2TR)
- ETH
- mainnet, Rinkeby, Ropsten, Kovan and Goerli networks
- ERC20 tokens
- WalletConnect
- BSC
- mainnet and testnet networks
- BEP20 tokens
- WalletConnect
- MATIC
- Mainnet and Mumbai networks
- ERC20 tokens
- WalletConnect
- FTM
- Mainnet and Testnet networks
- ERC20 tokens
- WalletConnect Dapps
- CELO Mainnet, Alfajores and Baklava networks ERC20 tokens WalletConnect Dapps
- ARB
- Arbitrum mainnet
- ERC20 tokens
- WalletConnect
- AVAX
- Mainnet and Fuji testnet networks
- ERC20 tokens
- WalletConnect
- SOL
- mainnet and testnet networks
- XTZ
- tz1 wallet
- tz2 wallet
- Main Tezos, testnet Granada and Hangzhou networks
- LTC
- mainnet and testnet networks
- Standard wallet (P2PKH)
- Segwit P2SH compatibility
- DOGE
- mainnet and testnet networks
- EOS
- K1 wallet
- EOSio and Jungle3 networks
On Windows :
- Download the Uniblow binary from the uniblow official website.
To increase the security, the Windows exe releases are signed with our Extended Validation certificate, bringing even greater confidence in the integrity of the application.
On Debian / Tails / Ubuntu :
- Follow the dedicated instructions page.
To increase the security, the Linux binaries releases are signed with our PGP key, bringing even greater confidence in the integrity of the application. The checking process is described in this instructions document.
On MacOS
- Download the Uniblow dmg package for Mac from the uniblow official website.
- Open the dmg to mount it.
- Drag and drop Uniblow (on the left) to the Applications icon on right.
- Eject the dmg disk and you can delete the dmg file.
To increase the security, the Mac dmg package and also the uniblow app are signed (stapled) and notarized by Apple, bringing even greater confidence in the integrity of the application.
Useful for paperwallets or one-time analysis of a mnemonic seed. This specific device can be also useful to provide an ephemeral temporary wallet, in TailsOS for example.
This device doesn't store permanently the private keys. It provides a window GUI to read a mnemonic seed, analyzes it, and displays the major cryptos held by this given mnemonic, with their respective balance. It can also securely generate new BIP39 mnemonic seeds. Then one can load a given asset wallet in the app to make some transactions.
The seed generated within SeedWatcher is BIP39 only, and is not compatible with Electrum. You can't input a seed generated with Uniblow in an Electrum wallet without selecting the BIP39 option in Electrum.
Note that Seed Watcher only looks at the one given address account/index. If you used a full HD wallet for BTC, LTC or DOGE (such as Electrum), the whole balance could not be recomputed properly.
Using the Electrum seed derivation, the same limitation applies : it can only look at one address account at a time. That means it may not see all your full Electrum account. You need to manually increase the index number. Additionally, the SeedWatcher can't generate an Electrum compatible seed, still it can read an Electrum seed (of one single address).
The BasicFile device encrypts your private key with a random salt using
libsodium
XSalsa20/Poly1305,
with an encryption key derived from the user chosen password using Argon2id
(moderate
settings).
One can choose to use a default password. To do so, just left blank the password
prompt input when asked the first time at device setting. Without a personal
password, the security of the key is what your hard-drive computer offers for
your files.
If you setup a password but forget it, there would be no way to recover your
coins.
The key is encrypted and stored in JSON and hex in the BasicFileWallet.key file, in the user data folder for Uniblow. Hence the name "BasicFile" for this device. To backup this wallet key, copy the file elsewhere. To remove this wallet and start a fresh one, delete this file. You can also rename it and that would start a new different file wallet, and keep the first wallet aside. In this case, rename back to BasicFileWallet and you read back the first wallet.
The folder where the key file is stored, sits in the user data directory.
- Windows : C:\Users\<username>\AppData\Local\BitLogiK\Uniblow\keys\
- Linux : ~/.local/share/Uniblow/keys/ or in $XDG_DATA_HOME if defined
- MacOS : ~/Library/Application Support/Uniblow/keys/
Works with an OpenPGP v3 device that accepts User Interaction confirmation (button) and ECP 256K1 key pairs.
This device type is very secure, because the signature is performed in the OpenPGP physical device, outside of the computer. Most of these devices are built with a secure element chip. The private key never escapes the hardware device boundary. Note that the drawback is that there is no easy backup of the keys, so one have to take care of not forgetting the PIN or losing the device. Some blockchain-based hardware wallets with the OpenPGP mechanism offer some link with the seed, as the Ledger Nano S/X , see details there.
For the best experience, the OpenPGP device should be in its default reset state
before using it with uniblow. Uniblow asks the user to choose the admin PIN
(PIN3), and the user PIN (PIN1), then it configures the device with these PINs.
The device can also be already configured, with one EC256k1 key generated in the
SIG key slot. Uniblow will eventually ask for the user PIN1 and use this key.
Without backup, if you forget the PIN, or lost the OpenPGP device, there would be no way to recover your coins.
The Yubico 5 is a recommended OpenPGP device.
This wallet is compatible with BIP39/32/44 wallets. You can save 12/24 words when initializing a new one, and get back you fund later.
You can also import an existing wallet from a compatible wallet, and it will use the funds. Note that at this stage, there is a limitation on BTC, LTC and DOGE : it only uses one static address for all transactions on a given blockchain. And it won't retrieve your money if you use some other HD wallets with many transactions.
You can also export the saved words mnemonic in an other compatible wallet, and it should access and use all you funds.
The HD device stores only the seed encrypted with a random salt using libsodium
XSalsa20/Poly1305,
using an encryption key derived from the user chosen password using Argon2id
(moderate
settings).
One can choose to use a default password. To do so, just left blank the password
prompt input when asked the first time at device setting. Without your personal
password, the security of the key is what your hard-drive computer offers for
your files.
If you setup a password but forget it, there would be no way to recover your
coins from the backup file. But you can still initialize a new HD device wallet
with the same words mnemonic.
The seed of this wallet is encrypted and stored in a file named HDseed.key, in the user data folder for Uniblow. To backup it, copy the file elsewhere. To remove this wallet and start a fresh one, delete this file. You can also rename it and that would start a new different HD wallet, and keep the first wallet aside. In this case, rename back to HDseed and you read back the first wallet.
To access the direcory where the HDseed is stored, see the BasicFile device section above.
A Ledger hardware device such as Nano X and Nano S, can be used with Uniblow but only for Ethereum/EVM chains (ETH, BSC, MATIC, FTM, CELO, AVAX and ARB).
The Ledger needs to be unlocked and run the Ethereum app. The address displayed in the wallet can be checked on the Ledger with a dedicated UI button. The Uniblow wallet has a tokens list integrated, which allows to send thousands of major tokens without enabling the "blind signing features".
In case you use Uniblow with the Ledger on a web3 dapp, with the WalletConnect option, the transactions can require the "blind signing" option to be enabled in the Ledger app. In this situation, a dedicated modal will appear asking you to activate this, and you need to make the transaction again after the option activation.
On Linux, the udev rules need to be allowed for the Ledger USB device. Run this official script as root/sudo to allow the Ledger device.
In ETH, BSC, MATIC, FTM, CELO, AVAX or ARB, you can choose the ERC20 wallet account type option. Select a known preset token, or input an ERC20 token address.
In ETH, BSC, MATIC, FTM, CELO, AVAX or ARB, Uniblow can connect to a Dapp using the WalletConnect system. Select WalletConnect in the wallet account type, input the wc URI and it will connect to the web3 app using WalletConnect.
Note that in this mode, Uniblow disables sending any transaction from the GUI. All the sending transactions have to be performed from the connected web app, after your approval in Uniblow. Else you have to connect to a standard (or token) account type to process a sending transaction using Uniblow directly.
With a Ledger device, the transactions can require the "blind signing" option to be enabled in the Ledger ETH app.
Uniblow is offering an alternative to the BIP39 mnemonic derivation method. The SecuBoost algorithm is specific to Uniblow, so it won't work in a different wallet. This derivation option replaces the key derivation function of the BIP39 standard for a much stronger one. The key derivation (BIP39 or SecuBoost) is used to turn your mnemonic words list and password into the BIP32 seed (the H.D. wallet first data key).
The benefit is that you can use a "weaker" password for your wallet, so it is easy to remember. For example, 2 random words in the dictionary would take years to recover. Similarly, only 5 random letters would take also years to be recovered. By strengthening the derivation, one can use a password that is much easier to remember. Another benefit is even without any password setup, it protects your mnemonic better because the derivation is more difficult, and more specific.
Technically, the HMAC(SHA512 x 2048) is replaced with Scrypt(8 x Sensitive, spaces removed). A high-end GPU hash-box can perform 1 million BIP39 derivations per second. With SecuBoost, it is approximately only 10 per second. The SecuBoost derivation is 100'000 times slower and additionally it takes 1GB RAM per try, so it is also very robust against large-scale parallel hardware attacks. The SecuBoost algorithm is designed to use a larger amount of memory and time, making a hardware implementation much more expensive, and therefore limiting the amount of parallelism one can use for brute-force recovery. Even a dictionary attack would be slowed down by this time factor.
Note that this algorithm, per design, uses extensive resources : requires 1 GB RAM, and takes approximately 20 seconds on a desktop computer.
-
For the GUI, install wxPython 4 with your system binaries wheels.
-
Windows : Install Python3, then run
pip3 install wxPython==4.1.1 -
MacOS : Read the MacDev document for more details.
-
Linux : Read the LinuxDev document for more details
-
-
Install the uniblow package and its dependencies (or use venv)
python3 setup.py install --user
-
For ETH testnets, put your Infura key in ETHwallet. The binaries have an Infura key embedded.
-
Run with
python3 uniblow.py -v
The '-v' argument enables the debug logging output for more verbose terminal output.
There are specific instructions and scripts to build uniblow binaries for the Windows and Debian platforms in a dedicated build document.
Future features :
- User wallet management (custom name, listing).
- Full HD wallet device, avoiding address reuse, and discover in all account chains (external and internal change).
The Uniblow software can also be used integrated in your services, as it
provides a unified, multi-platforms and blockchain agnostic interface to manage
many different wallets. By using the wallet class, this is as simple as :
ETH_wallet = wallet(0, 0, device), and you get the interface
methods mentioned below.
The coin wallet interface is simple and provides an abstraction layer for any underlying blockchain.
The class can be used to integrate the uniblow code to automate transactions in your backend. It can also be used to extend uniblow to add a new blockchain. Developers can easily add any crypto in this wallet, following this Python3 programming interface class.
class newCOINwallet:
coin = "SYM"
def __init__(self, coin, *options):
... create the wallet, for now options is network,wtype indexes (indexing the list returned by get_networks and get_account_types)
def get_networks(self):
... return list of different possible networks names
def get_account_types(self):
... return list of different possible account types
def get_account(self):
... return the account name (address or similar)
def get_balance(self):
... return a string with the balance and the symbol ticker
def check_address(self, addr_str):
... return True if the address/account name is valid
def history(self):
... return an URL string for the account details
def transfer(self, amount, to_account, fee):
... transfer to pay x coin unit to an external account and return txid
... fee is 0, 1 or 2 : "economic", "normal", "fast"
def transfer_all(self, to_account, fee_priority):
... transfer all the wallet to an address (minus fee)
... fee is 0, 1 or 2 : "economic", "normal", "fast"Copyright (C) 2021 BitLogiK SAS
This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, version 3 of the License.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
