So you want to explore the darknet. Maybe you've read what it is and you're curious to see for yourself. That's fair — but the darknet isn't the regular web. A wrong click, a leaked IP, or a phishing link can compromise your anonymity or worse. This guide walks you through everything you need to know, step by step, so you can start safely.

Before You Start

Let's get one thing straight: the darknet itself is not illegal. Tor is used by journalists, activists, and privacy-conscious people worldwide. But there are parts of it — namely darknet markets — that exist in a legal gray area or are outright illegal depending on where you live. Accessing them may already violate terms of service or local laws. Know what you're getting into before you click that .onion link.

Warning: This guide is for educational purposes. WikiDarknet does not endorse illegal activity. Always comply with your local laws. If you are uncomfortable with the risks involved, turn back now.

Here's what you should never do:

• Don't use your real identity. No real email, no real name, no real phone number.
• Don't use Tor on your regular OS without precautions. At minimum, read our OPSEC Guide.
• Don't download random files. Malware is common on the darknet.
• Don't trust anyone. Scammers outnumber honest vendors.

Step 1: Get Tor Browser

The darknet runs on hidden services, and the only practical way to access them is through Tor Browser. This is a modified version of Firefox that routes your traffic through the Tor network, encrypting it multiple times and bouncing it through three relays before it reaches its destination.

1. Download Tor Browser from the official site: torproject.org. Do not get it from anywhere else — third-party mirrors have been known to bundle malware.
2. Install it to your desktop or a USB drive. You don't need admin rights — Tor Browser runs as a portable app.
3. Connect. Open the browser, click "Connect," and wait for the onion to turn green. That's it.

For a full walkthrough, including bridge configuration and advanced settings, see How to Use Tor Browser.

Step 2: Verify Your Safety

Before you visit any .onion site, make sure your setup is actually working:

1. Check your IP. Visit check.torproject.org in Tor Browser. It should say you're using Tor. If it shows your real IP, something is wrong.
2. Set the security slider. Click the shield icon next to the URL bar and set it to Safest. This disables JavaScript, WebGL, and other dangerous features. Some sites may break, but that's a good sign — broken scripts can't track you.
3. Disable unnecessary add-ons. Tor Browser already includes uBlock Origin and HTTPS Everywhere. Do not install extra extensions — they can deanonymize you.

For a deeper dive into threat modeling and privacy, read Privacy & Anonymity.

Important: Never maximize Tor Browser's window. Sites can detect your screen resolution, which narrows down who you are. Keep it at its default size.

Step 3: Find Resources

The darknet doesn't have Google. Finding what you need means knowing where to look:

• Link directories. Sites like Dark.fail verify and list working .onion links. Always verify links from multiple sources.
• Dread is the darknet equivalent of Reddit — a forum where users discuss markets, vendors, and security. It's one of the most valuable resources for staying up to date.
• Reddit. Subreddits like r/darknet, r/onions, and r/Tor are good for general discussion, but take everything with a grain of salt. Anyone can post.

Bookmark the directories you trust and always double-check links. Phishing is the number one way people lose money on the darknet.

Step 4: Learn the Tools

Before you even think about placing an order, you need two things: PGP and a cryptocurrency wallet.

PGP Encryption

Pretty Good Privacy (PGP) is how darknet users communicate securely. You'll use it to encrypt your address so that only the vendor can read it. If a market or vendor's PGP key isn't available, walk away.

• Install GPG4Win (Windows) or GPGTools (Mac).
• Generate a key pair: a public key (you share) and a private key (you guard with your life).
• Most markets have a field to paste your public key so vendors can encrypt messages to you.

Cryptocurrency Wallet

Darknet markets don't take credit cards. You'll use cryptocurrency — usually Bitcoin or Monero.

• Set up a wallet on your local machine (Electrum for Bitcoin, Monero GUI Wallet for XMR).
• Buy crypto on a clearnet exchange, then transfer it to your local wallet.
• For additional privacy, use a coin mixer or convert BTC to Monero before spending.

We cover wallets, mixing, and blockchain analysis in depth in Cryptocurrencies in the Darknet.

Step 5: Market Access

Once you've got Tor running, PGP set up, and a funded wallet, you're ready to browse markets. Here's how to do it without getting burned:

1. Find the real URL. Check Dark.fail, Dread, and Reddit for the current .onion address. Scammers create convincing clones of real markets to steal logins and coins.
2. Register with a strong password. Use a unique, randomly generated password. Never reuse passwords from other sites.
3. Enable 2FA. Most modern markets support two-factor authentication via PGP. This means even if someone steals your password, they can't log in without your private key.
4. Start small. Place a tiny test order first to verify the vendor is legit and the product actually arrives.

Red Flags and Scams

The darknet is full of people trying to separate you from your Bitcoin. Here are the most common traps:

• Phishing sites. A fake market that looks identical to the real one. Always check the .onion address character by character. Bookmark the real URL.
• FE (Finalize Early) scams. If a vendor asks you to finalize early (release the funds before you receive the product), they are almost certainly scamming you. Never FE unless you're willing to lose the money.
• Exit scams. A market that has been running for months suddenly shuts down and takes everyone's deposits. This is why you should never keep more coins in a market wallet than you're about to spend.
• Vendor verification. Check a vendor's PGP key against their posts on Dread. If the key matches, it's probably really them. If not, it's an impersonator.

Golden rule: If something feels off, it probably is. The darknet rewards paranoia. Trust your gut, verify everything, and never send money you can't afford to lose.

Recommended Reading

This guide only scratches the surface. To go deeper, read these articles on WikiDarknet:

• What Is the Darknet? — Understand the layers of the web and common misconceptions.
• How to Use Tor Browser — Detailed installation, bridges, and security hardening.
• Privacy & Anonymity — Threat modeling, VPNs, Tails OS, and operational security.
• OPSEC Guide — Keep your identity separate from your darknet activity.
• Cryptocurrencies in the Darknet — Bitcoin, Monero, mixers, and blockchain forensics.
• Glossary — Definitions of every term you'll encounter.

Welcome to the darknet. Stay safe, stay skeptical, and keep learning.

References

• Tor Project: Download Tor Browser
• EFF: Surveillance Self-Defense
• Tor Project: Tor Browser Manual
• Wikipedia: Darknet