If your laptop is stolen, your accounts are nuked, your domain registrar pulls the plug, and your phone falls in the river all on the same day — fallescape is what gets you operating again before lunch.
"A single HTML file containing everything you need to reconstitute your digital life. Encrypted with your passphrase. Pinned to five places. Updated weekly. Your sovereign Plan B."
Your Ed25519 master keypair (fallshield) · encrypted Ed25519 sub-keys per tool · Anthropic/OpenAI/Stripe/GH API keys
Every estate repo URL · mirror locations · domain registrars · DNS records · Cloudflare zone IDs · payment processor IDs
Critical people · clients · co-builders · their preferred channels · backup ways to reach them
2FA recovery codes · seed phrases · password manager export · paid software licence keys
Identity docs (passport scan) · business registration · tax IDs · banking info · insurance policies
Bash + PowerShell script that takes the manifest + keys and clones every repo, restores every config, in under 20 min
| Location | Format | Updated |
|---|---|---|
| fallvault-private (GitHub) | encrypted HTML | weekly |
| fallvault-private (Codeberg mirror) | encrypted HTML | weekly (via fallmirror) |
| USB stick in your safe | encrypted HTML | monthly |
| IPFS pin (Web3.Storage) | encrypted HTML | weekly |
| Paper (passphrase + key fingerprint + 1 BIP39 seed) | handwritten | quarterly |
The 5th location is non-negotiable. Paper survives every other failure mode (account loss, encryption forgotten, file corruption, EMP).
# 1. Generate identity (one time)
node -e "(async () => {
const FS = await import('./fallshield-shim.js');
console.log(await window.FallShield.generate());
})()"
# 2. Make a JSON manifest of everything (one time, updated as estate grows)
cat > escape-manifest.json <<EOF
{
"version": "1.0",
"owner": "Simon Gant",
"fingerprint": "<fallshield public-key fingerprint>",
"estate": [ ...every repo URL... ],
"mirrors": [ ...every mirror host... ],
"domains": [...],
"secrets_pointers": [
"Bitwarden vault at: bitwarden.com (recovery code in paper)",
"1Password export in: fallvault-private/personal-vault.html"
]
}
EOF
# 3. Encrypt the manifest with fallvault
$env:FALLVAULT_PASS = "your-escape-passphrase"
node /path/to/fallvault.mjs ./escape-manifest.json
# 4. Push to 5 locations
node /path/to/fallmirror.mjs --all # GitHub + Codeberg + GitLab + IPFS + USB
# 5. Print paper card with: passphrase, fingerprint, recovery URL
# Put in a safe. Update the paper quarterly.
You're on a fresh laptop with nothing but the paper card in your wallet.
codeberg.org/sjgant80-hub/fallvault-private from any browser · log in via paper-card recovery codevault-001.html.node recovery.mjs manifest.json — script clones every estate repo from primary or fallback hosts, restores configs, re-imports API keys.| Threat | fallescape response |
|---|---|
| GitHub closes your account, every repo gone | fallvault-private on Codeberg + IPFS + USB · re-clone in 10 min |
| Bank freezes your business account | manifest contains backup banking pointers · alt-rail receipts via fallpay |
| Domain registrar pulls ainativesolutions.com | manifest has DNS records · re-register at NameSilo/Porkbun/ENS in 1h |
| Phone in river + 2FA gone | 2FA recovery codes in encrypted manifest · use them from new device |
| Stolen laptop + forgotten passwords | fallvault passphrase on paper card · everything restorable |
| You die. Your estate must continue (or be cleanly wound down). | Recovery key escrow with trusted person · they can decrypt the kit · documented succession plan |
These four together = the full sovereign defensive stack:
Run all four nightly. Sleep well.
It is. The cost is one nightly scheduled task. The payoff is "my entire business survives the worst week of my life." Worth it.
You don't recover. That's the trade. Pick a phrase you'll remember in 10 years. Write it on paper. Put paper in fireproof safe.
Document a Shamir-split or escrow scheme · 2 trusted people each hold half of the passphrase · combining recovers the kit. Or use a lawyer to escrow the paper card.
MIT · part of AI Native Solutions · source