Provably Fair

You don't have to trust us. Every round's outcome is locked in cryptographically before you place a bet — and revealed after the crash so anyone can verify it.

How it works

  1. 1. Commit
    Before each round opens, we generate a secret server seed and publish only its SHA-256 hash. The crash point is already locked in — we can't change it without breaking the hash.
  2. 2. Play
    You place your bet knowing the hash. The combination of server seed + client seed + nonce uniquely determines the crash point via HMAC-SHA256.
  3. 3. Reveal
    After the round crashes, the full server seed is published. Anyone can hash it to confirm it matches the original commitment, and re-derive the crash point to confirm it matches what we paid out.

Verify a round

Recent rounds

Loading…

The formula

h = HMAC_SHA256(serverSeed, clientSeed + ":" + nonce)

// 4% instant-crash band
if (firstByte(h) < 10) return 1.00x

// Otherwise, hyperbolic distribution with 1% house edge
num = parseInt(h[2..15], 16)        // 52-bit mantissa
e   = 2^52
raw = ((100 - 1) * e - num) / (e - num) / 100
crashPoint = floor(clamp(raw, 1, 500) * 100) / 100

Source: src/lib/game/fairness.ts