> For the complete documentation index, see [llms.txt](https://harpie.gitbook.io/welcome-to-the-harpie-docs/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://harpie.gitbook.io/welcome-to-the-harpie-docs/~/changes/T8YMsU3xPtqI6mFgVEdC/harpie-security-platform/wallet-2fa/what-is-wallet-2fa.md).

# What is Wallet 2FA?

## Introduction

Wallet 2FA is an easy way to add two-factor-authentication to your transactions. Wallet 2FA seamlessly plugs into your existing wallet, no downloads required.

When you sign a transaction that could be dangerous (i.e. asset-bearing transactions, suspicious contract address), Harpie sends you a notification over email to confirm the transaction. The transaction requires an explicit verification over email before it's sent out to the network.

### What is a "dangerous transaction"?

Harpie categorizes dangerous transactions as those that **can lose you money**. These generally are `approvals` and `transfers` of tokens and ETH, but also include gasless OpenSea signature scams.

Dangerous transactions also include those where you try to interact with potentially bad wallets & smart contracts. These include, but are not limited to:

* Bots
* Phishing accounts
* Honeypot contracts
* Wallets linked to cybercrime

### How it works

<figure><img src="/files/XKDa5jnRmU6CzU3RdRyh" alt=""><figcaption><p>Harpie RPC sits between your wallet and the blockchain, stopping potentially malicious transactions from draining your wallet.</p></figcaption></figure>

Harpie RPC sits between your wallet and the blockchain. It scans outbound transactions from your wallet, notifying you if you are transacting with thieves, scammers, or other bad actors.&#x20;

We utilize large data models, lists of known criminal addresses, and hand-picked data to ensure that malicious transactions are caught. We have over 1,000,000 malicious addresses and 40,000 benign addresses in our database, with more being added every day.

&#x20;If your transaction gets flagged, you receive a notification over email to confirm the transaction. Now, you'll have a chance to review your transaction and view any **security warnings** that we've identified with the account.

<figure><img src="/files/3I43f5z4iAOBBpRXZpxe" alt="" width="182"><figcaption><p>An example email from Harpie RPC</p></figcaption></figure>

If you approve the transaction, your transaction will be forwarded to Infura nodes to be confirmed on the blockchain.

### What are RPC modes?

<figure><img src="/files/Zf0Zr2jyphtHyB6TUgtb" alt=""><figcaption><p>After signing up with Harpie RPC, revisit or refresh the page to view your Harpie RPC dashboard.</p></figcaption></figure>

After signing up with your email on Harpie RPC, you can access your dashboard at any time by revisiting the site and connecting with your wallet. There are 3 modes:

<table data-header-hidden><thead><tr><th width="212">Name</th><th></th><th data-hidden></th></tr></thead><tbody><tr><td><code>OFF</code></td><td>Disable Harpie RPC</td><td></td></tr><tr><td><code>NORMAL</code></td><td>Get notifications for suspicious transactions</td><td></td></tr><tr><td><code>STRICT</code></td><td>Get notifications for EVERY transaction</td><td></td></tr></tbody></table>

On `NORMAL` mode, you should only receive a notification when interacting with dangerous addresses. That means you can interact with dApps like Curve, OpenSea, and Uniswap normally without having to check your email. However, just like your bank, we'll send you an email as soon as we see something suspicious. That way you can double check your transaction and stop a rug.

### Test Harpie RPC

1. First, make sure your wallet address is registered with Harpie
2. Next, switch to the `Harpie RPC` <img src="/files/3RkYUJdum4spNE2IXH4D" alt="" data-size="original">
3. Now, try sending `0.000001 ETH` to `vitalik.eth`. Vitalik's transaction history actually resembles that of a bot, so it gets flagged by our system
4. If everything is set up properly, you should get an email like this:

<figure><img src="/files/IAUDjy11kAbU6dSMkAv3" alt=""><figcaption><p>The email you get after trying to send ETH to Vitalik.eth</p></figcaption></figure>

### How to use Harpie RPC

Harpie is currently in *Early Access* as of writing this article. However, you can still sign up for Early Access by DM'ing [the official Harpie Twitter](https://twitter.com/harpieio) with this info:

* Your wallet address (that you'd like to get whitelisted for)
* Why you're excited to use Harpie RPC

You will receive a response from the official Harpie account once you've been verified!


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://harpie.gitbook.io/welcome-to-the-harpie-docs/~/changes/T8YMsU3xPtqI6mFgVEdC/harpie-security-platform/wallet-2fa/what-is-wallet-2fa.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.