OpSec Level: Critical

Operational Security Protocols

The following documentation outlines mandatory security practices for researchers utilizing Nexus Market Mirror infrastructure. Failure to adhere to these protocols may result in de-anonymization or loss of assets.

Critical Warning

All encryption must be performed CLIENT-SIDE (on your own device). Never use "Auto-Encrypt" checkboxes on any darknet website.

PGP Encryption

Thinking you don't need PGP is the single greatest failure point in OpSec. Nexus Market enforces mandatory 2FA using PGP. You must master this tool.

Rule 1: Client-Side Only

Always encrypt sensitive data (addresses, tracking numbers) using software like Kleopatra (Windows) or GPG Suite (Mac) before pasting it into the browser.

Rule 2: Verify Signatures

Never trust an onion link blindly. Verify the signed message. If the signature does not match the known public key of the market, it is a phishing site.

Identity Isolation

Your Tor identity must be completely walled off from your clear-web identity. Cross-contamination leads to correlation attacks.

  • > Never use a username from Reddit, Discord, or Steam.
  • > Do not reuse passwords. Use KeePassXC to generate random strings.
  • > Never discuss your location, time zone, or weather conditions in chats.
  • > Avoid linguistic fingerprints. Do not use unique slang or typing habits.

Phishing Defense

Man-in-the-Middle (MitM) attacks are sophisticated proxy sites that look identical to Nexus Market but steal your deposit addresses and login credentials.

Verification Workflow

  1. Access the site via a trusted mirror (see Links).
  2. Locate the market's PGP signed message on the login page.
  3. Copy the message and import it into your PGP software.
  4. VERIFY the signature against the market's imported public key.
  5. If the check fails or says "Bad Signature", LEAVE IMMEDIATELY.

Financial Hygiene

Blockchain analysis is permanent. Once a link is established between your KYC exchange account and a darknet market, it cannot be undone.

DO THIS

Use Monero (XMR). It creates a cryptographic break in the transaction chain, making funds untraceable relative to source.

NEVER DO THIS

Never send BTC directly from Coinbase, Binance, or Kraken to a market wallet. You will be banned and flagged.

Flow: Exchange (buy XMR) -> Local Wallet (GUI/Feather) -> Market

Tor Browser Hardening

Security Level

Set Tor Browser Security Level to "Safer" or "Safest". This disables JIT compilers and other potential exploit vectors.

JavaScript

JavaScript should be disabled completely via NoScript or `about:config` where possible. JS exploits can reveal your real IP.

Window Size

Do not maximize the Tor Browser window. Keep it at the default size to prevent window-size fingerprinting.