Frequently Asked Questions

This portal acts as the designated status monitor and authenticated directory for the DarkMatter Market ecosystem. We provide PGP-signed mirror links, real-time network status updates, and comprehensive security documentation. Our objective is to ensure users connect to legitimate market nodes by providing a centralized point for link authentication and verification.

The DarkMatter Market is hosted as a hidden service on the Tor network, utilizing .onion top-level domains. These addresses are not accessible via standard browsers. Users must utilize the Tor Browser, which routes traffic through a decentralized network of relays to obfuscate IP addresses and location data, ensuring end-to-end anonymity between the user and the market server.

To access the market, install the latest version of the Tor Browser from the official project source. Retrieve a verified .onion address from our 'Links' page. After navigating to the URL, it is mandatory to verify the PGP signature on the landing page against the market's official public key. This cryptographic step confirms you have connected to the genuine server.

Registration is open and requires only a username and password. Upon creation, the system generates a unique mnemonic seed phrase. This 12-word sequence is the cryptographic key to your account. It is the ONLY method for password reset or account recovery. If lost, access is permanently forfeited. Store this seed offline immediately.

Authenticity is established via PGP (Pretty Good Privacy) signatures. DarkMatter Market signs all rotation mirrors with its private key. Users should import the official public key into their GPG keychain. When accessing a mirror, verify the signed message presented on the index page. A valid signature mathematically proves the site is controlled by the market administrators.

DarkMatter utilizes a decentralized server architecture to mitigate DDoS attacks and ensure uptime. User data is protected via zero-knowledge proofs and mandatory PGP encryption for 2FA and sensitive communications. While the infrastructure is secure, user anonymity relies on strict OpSec: using Monero, disabling JavaScript, and never leaking personal identifiers.

PGP-based 2FA is mandatory for all vendor accounts and strongly recommended for buyer accounts. The system presents an encrypted challenge string upon login, which can only be decrypted using the user's private PGP key. This ensures that even with a compromised password, the account remains inaccessible to attackers.

Operational security is paramount. Use a dedicated OS (Tails/Whonix). Generate a high-entropy password. enable PGP 2FA immediately. Never reuse credentials from other markets or clearweb sites. Rotate PGP keys periodically. Store your mnemonic seed offline in a physical location. Never share your PIN or seed with support staff.

We operate a Monero-only standard to guarantee financial privacy. Unlike Bitcoin, Monero utilizes Ring Signatures, RingCT, and Stealth Addresses to completely obfuscate the sender, receiver, and transaction amount on the blockchain. This prevents chain analysis and linkage of financial history to user identity.

Funds for purchases are held in a secure market escrow wallet. The vendor is notified to ship upon deposit. The standard escrow timer is 14 days. Once the buyer receives and verifies the product, they must manually 'Finalize' the order to release funds. If issues arise, a dispute must be opened before the timer expires to pause auto-finalization.

Deposits are credited after 10 confirmations on the Monero blockchain to prevent double-spend attacks. Each user is assigned a unique subaddress. Withdrawals are executed by providing a destination address and 6-digit PIN. Standard network fees apply. Large withdrawals may trigger a manual security review (up to 24 hours) to protect market liquidity.

Multisignature (Multi-Sig) Escrow involves a 2-of-3 key setup between the buyer, vendor, and market. Funds can only be moved when two parties sign the transaction. This ensures the market cannot exit-scam with the funds, and the vendor cannot steal funds without buyer or mediator consent. It is the gold standard for trustless darknet transactions.

Prospective vendors must navigate a strict vetting process. This includes payment of a vendor bond (values fluctuate based on market rates, typically $500 USD equivalent in XMR) to discourage spam. Established vendors from other markets may apply for a bond waiver by providing PGP-signed proof of identity and reputation history.

Disputes are handled via a tiered system. An automated analysis first reviews shipping metrics and communication logs. If unresolved, a human moderator reviews the case. Evidence is key; buyers should maintain logs and video evidence of unboxing. Decisions made by moderators are final and based on the preponderance of evidence provided.

Our ethical code strictly forbids the sale of weaponry, explosives, fentanyl (and analogues), poisons, child exploitation material (CSAM), human trafficking, and murder-for-hire services. Listings violating these terms are removed immediately, and the associated vendor accounts are banned and reported to the internal blacklist.

Yes, but privacy is prioritized. Vendors may provide tracking numbers, which are automatically encrypted with the buyer's public PGP key. Only the buyer can decrypt and view this information. We recommend using drop addresses and avoiding tracking where possible to maintain plausible deniability.

If a specific mirror is unresponsive, it may be due to high traffic load or a targeted DDoS attack on that node. This does not imply the market is offline. Users should cycle through the alternative mirrors provided on our 'Links' page. If all mirrors are unresponsive, check the status indicator on this portal for network-wide updates.

Support is managed exclusively through the internal ticketing system for security reasons. Logged-in users can navigate to the 'Support' panel to submit encrypted inquiries. For account lockouts where login is impossible, users must utilize the signed recovery protocol available on the main landing page using their mnemonic seed.