I am not sure I am right or not just guess
about nonce on signature I think should check at
https://asecuritysite.com/signatures/ecd5and use with sample at
https://hackernoon.com/hacking-a-bitcoin-wallet-642u36sahttps://allprivatekeys.com/random-vulnerabilityr = 0xd47ce4c025c35ec440bc81d99834a624875161a26bf56ef7fdc0f5d52f843ad1
s1 = 0x44e1ff2dfd8102cf7a47c21d5c9fd5701610d04953c6836596b4fe9dd2f53e3e
s2 = 0x9a5f1c75e461d7ceb1cf3cab9013eb2dc85b6d0da8c3c6e27e3a5a5b3faa5bab
z1 = 0xc0e2d0a89a348de88fda08211c70d1d7e52ccef2eb9459911bf977d587784c6e
z2 = 0x17b0f41c8c337ac1e18c98759e83a8cccbc368dd9d89e5f03cb633c265fd0ddc
will get result k(nonce) = 55228977394393414412853003502097247104908965897402951232160234933662925082798
I not sure I calculate wrong or not I don't know some good code on python for check it
I think all signature nonce is 256 bit not 128 bit (it not same bitcoin block is a 32-bit (4-byte) _
so it not easy to crack it for high 256 bit nonce