ESP32 Nockchain hardware wallet

Retain your seed.

A teeny tiny touchscreen signer for Nockchain. Your seed never leaves the device — review, approve and sign every transaction offline.

Offline signing AES-256-GCM seed vault Open firmware
click screen · drag body to rotate NOCKSTER-V1
Que?

This thing signs transactions

01

Strictly 4 my Nockaz

Greenfield, from-scratch firmware and tooling. Built only for Nockchain.

02

Nockchain-native crypto

Purpose-built for Nockchain signatures, lock trees, and transaction formats — m-of-n multisig, timelocks, hashlocks, and message signing — shared by the device and the browser app.

03

Hackable & open

Open firmware and an open-source JS library. Build it from source, flash your own, and extend it — or install signed OTA updates from the web.

04

Offline by default

Your seed is generated (or imported) and stored on-device. Keys never touch the network — only signatures leave.

05

Review on-glass

A capacitive 1.47" touchscreen decodes every transaction — recipients, amounts, and the actual lock conditions — and verifies them before you approve with your thumb (or a stylus, it's tiny).

06

Browser transaction composer

Build, parse, and inspect Nockchain transactions in the browser — multisig, timelocks, hashlocks, HTLCs, even private lock-root-only outputs — then sign them on-device over WebHID/WebUSB.

Datasheet

Specs & details

SPECIFICATIONNOCKSTER-V1
MCU
ESP32-S3 · dual-core Xtensa LX7
Display
1.47" IPS LCD · 172×320
Input
Capacitive touch
Transport
USB-C · WebHID / WebUSB
Seed vault
AES-256-GCM · PIN-derived key
Storage
Encrypted NVS slots in flash
Pairs with
Open-source JS library · core CLI
Footprint
≈ 24 × 44 × 5 mm
CAPABILITIESNOCKSTER-V1
  • On-device seed generation & storage
  • Touchscreen review with on-device lock checks
  • Offline signing — keys never leave
  • Browser control over WebHID / WebUSB
  • Composer: multisig, timelocks, hashlocks, HTLCs
  • m-of-n multisig signing & co-signing
  • Signed over-the-wire firmware updates
  • Build & flash it yourself from source
  • Open-source JS library & core CLI
Workflow

gg very ez for u

01

Initialize

Set a PIN and load a mnemonic on the device. Your seed is encrypted into a flash slot and never leaves.

02

Compose

Build or import a transaction in the browser composer, JS library, or CLI — plain sends, multisig, timelocks, HTLCs — and it streams to the device over USB.

03

Approve & sign

The touchscreen decodes and verifies the transaction — recipients, amounts, locks — you approve it, and the signed result is exported back to your host.

Security

Trust the eFuse, not your PC.

Nockster assumes your computer is hostile. Keys are generated and sealed on-device; only signed results ever cross the wire.

Encrypted seed slots

Seeds are stored in flash with AES-256-GCM, keyed by a PIN-derived with a per-device salt.

See what you sign

The device decodes each transaction and verifies its lock tree — multisig thresholds, timelocks, hashlocks — against the committed lock-root, so a hostile host can't disguise where your coins actually go.

ESP32-S3 chip security

Hardened mode uses eFuse/HMAC-backed NVS keys, Secure Boot v2, and flash encryption — sealing the seed to the silicon itself.

Signed updates

Firmware update bundles are signed and verified on-device against a manifest before they can run.

Build it yourself

The firmware is fully open source — compile it from source and flash your own build instead of trusting a vendor binary.

Now available

feed me a stray nock

Built for Nockchain by some guys in Texas🇨🇱🔫🤠🤠.