I Obtained Satoshi’s Treasure Keys 1, 2, and 3 in Minutes

If you read the QR code with your phone you will be directed to this url: this URL you are prompted to input a passphrase to decrypt the first shard. I checked the page source to find that the actual congrats page that reveals the shard was included in the source code (albeit encrypted by the passphrase). After I saw this source code I realized because the check for whether or not the passphrase was correct was done locally I could brute force this using a dictionary attack.

Source: gist.github.com