Research Protocol

Securing the local environment is the foundational step of darknet navigation. Standard browsers compromise IP and routing data.

• Install Tor Browser: Obtain the software exclusively from the primary Tor Project repository to ensure cryptographic authenticity.
• Security Level: Navigate to the shield icon settings and elevate the security slider to "Safer" or "Safest". This mitigates active script execution vulnerabilities.
• Disable JavaScript: While the "Safest" setting handles this, manually verifying that `about:config` has javascript execution disabled prevents advanced deanonymization techniques.

Connection requires a verified V3 onion routing address. Never utilize indices from unverified clearnet aggregators.

• PGP Verification: Before proceeding past the CAPTCHA interface, cross-reference the site's displayed PGP signature against the known public key saved in your local keychain.
• Header Check: Ensure the onion URL precisely matches the cryptographic string noted above. Even a single character deviation indicates a parallel, deceptive environment.

Account generation establishes your pseudonym on the network. Structural integrity of your credentials prevents hijacking.

• Credentials: Utilize an offline generator (like KeePassXC) to create a randomized, high-entropy password. Do not reuse credentials from other platforms.
• Saving the Mnemonic: Upon registration, the system outputs a mnemonic phrase. This is the sole recovery mechanism natively supported. Record this string in an encrypted offline text document. Loss of this phrase means total loss of account access.
• 2FA Activation: Navigate to user settings immediately post-creation and activate PGP 2FA. This ensures subsequent logins require decrypting a unique string with your private key.

Pretty Good Privacy (PGP) completely obscures communication parameters, ensuring data remains unreadable if the platform is compromised.

• Importing Keys: Obtain the public key of the platform or the communicating entity and import it into your local software (e.g., Kleopatra or GPG4Win).
• Message Encryption: Never transmit raw text. Encrypt addresses, requests, and sensitive data blocks locally before pasting the ciphertext into the platform's input fields.

Understanding internal wallet mechanisms and the differing privacy protocols of supported cryptocurrencies.

• Asset Selection: While Bitcoin (BTC) is widely recognized, its public ledger allows extensive chain analysis. Monero (XMR) obscures sender, receiver, and amount, making it the mandated choice for privacy-centric operations.
• Deposits: Generate a unique deposit address per transaction via the internal wallet tab.
• Confirmations: Blockchain topology requires network consensus. Wait for the required block confirmations (typically 10 for XMR, 2-3 for BTC) before the balance propagates to your profile.

Executing an interaction securely requires strict adherence to standardized network safety protocols.

• Provider Trust Level: Analyze the entity’s historical data, cryptographic feedback signatures, and active dispute ratios before initiating contact.
• Escrow Utilization: Always utilize the platform's multisig or standard escrow system. Funds are held in a neutral smart contract or central wallet until delivery is confirmed.
• Avoid Finalize Early (FE): Releasing funds before a physical or digital product is verified transfers all power to the opposing entity. FE should never be utilized unless the entity possesses an impeccable, long-standing, verified reputation.