There Is No Marianas Web, But . . .

isolation-threat-dark-web-100697135-large

by Ciphas

I’ve noticed that a popular question regarding the deep/dark web lately is about “Marianas Web,” which is supposedly the “deepest” level of the deep web. Well, I hate to tell you this, folks, but there is no such thing. There never was.

I believe I’ve referenced RationalWiki’s Deep web entry before, but it really is a great reference if you want to know the honest truth about it. I love the idea of there being “levels” to the web, but it’s the stuff of sci-fi.

Nonetheless, as I’ve mentioned on some previous entries, there are many anonymity networks other than Tor in existence – this might be the kind of thing that people are searching for…what else is out there?

So far, I believe I’ve discussed I2P, Freenet, and ZeroNet to a degree. If you have yet to explore these, take a look. There’s some interesting stuff to be found.

Oh? What’s that you say? You’ve already used these and found nothing? Well, as they said on All Onion Services:

The truth of the matter is there isn’t very many online onion services. Of those that are online, most aren’t worth visiting. They’re scams, phishing attempts, or low-traffic forums that are going to stop existing after a week. You should very quickly realize this after using a “real” index or search engine. No, your inability to find awesome secrets or spooky media is not because you haven’t found the right index/search engine. It’s because that stuff isn’t there. At least not on the “deep web.”

allonions_2

Yeah, that might be disappointing, but even I was surprised to find, upon my first day visiting Tor, that it was far from what the horror stories had made it out to be. Most of what I clicked on turned out to be dead links, in fact.

Still, I was interested in what other networks might be out there, which was how I ended up coming across the variety of wireless mesh networks and P2P networks that were (or are) actively being developed.

One that interested me a lot was Netsukuku (maybe just because of its name), because it was not only a mesh network, but also, as the developers stated, meant to be “autonomous.” (How’s that for your giant A.I. separate from the internet?)

Mother_Brain_Metroid_Zero_Mission

Unfortunately, it appears that Netsukuku is no longer being developed, though I think you can download some releases of it from repositories:

Netsukuku Dyne.org

Index of /netsukuku

It may be that you can compile and install it, but there aren’t a whole lot of peers to connect to. I’ve experienced this on some other P2P networks, like Osiris Serverless Portal System, which I mentioned on a much earlier post.

osiris_sps2

Osiris is a network that allows the anonymous creation of web portals without a central server – like Tor, its concept was to protect data and resist censorship. Unfortunately, it doesn’t seem to have been updated in a long time either. You can try it out if you like at the link above.

Anyhow, my concept of a “Marianas Web” would be this: a censorship-resistant, private network that is not connected to the internet, and could only be accessed by a select group of people.

It, like Tor, would disguise your IP address and encrypt messages, but might also allow things like P2P file sharing. It would be interesting if it had types of services that you couldn’t find on Tor, to differentiate the two.

Want to create one? I’ll join you on there in a minute.

P.S. You want liiiiiiiiiinks, don’t you? Here:

Evilweb Forum

Advertisements

Closed Shell Systems? Nope!

I’m writing this in response to a comment I received on my previous post. It reads:

I have DN42 connected. When I ‘dig @172.23.0.53 chaos’ this returns SERVFAIL or REFUSED. Same with ChaosVPN and Anonet DNS.
What is .chaos TLD? Closed Shell System?

To my knowledge, there is no such thing as the top-level domain “.chaos.” That being said, I’m not surprised if someone is spreading this kind of misinformation around, because the same thing has happened in the past, with software that supposedly allows you to access “.lll or .rdos sites,” or “.clos sites.”

There is no such thing as a “closed shell system.” Whoever created that original “iceberg” misinfographic (the one located here: https://imgur.com/pj0jbtP) helped perpetuate the myth, by claiming that a “closed shell system” was required to reach deeper levels of the deep web. I know I’ll never convince everyone of this fact, so there will always be some people out there believing it.

chaosvpn_wiki

On the other hand, if you create a hidden network of your own (like a VPN-based one), it’s possible that you can make up your own domain names for it, though they won’t be considered official ones by the Internet Assigned Names Authority (IANA). dn42, for example, has sites built on top of it with the domain name “.dn42.” ChaosVPN has sites built on it with the domain name “.hack,” and so on and so forth.

I mentioned this on an earlier post, but if you go to ICANN.org, they have a list of all the approved TLDs that exist right now: List of Top-Level Domains. There are also Pseudo-top-level domains, which are names for computer networks that don’t participate in the official DNS, and may or may not be part of the internet. This would include VPNs like dn42.

links

Connecting to dn42 is fairly simple, as you can reach it via tunnels from other networks, like OpenVPN, Tinc, or Edge. Full sets of instructions can be found here: dn42 how-to. That being said, if something doesn’t exist, you certainly can’t connect to it!

I think that the “closed shell system” concept might be a reference to Ghost in the Shell, or something along those lines, which, although interesting, is pure science fiction. Any network that exists has some way of accessing it, given the right hardware or software, and/or permissions.

Beyond that, just because it’s a hidden network doesn’t mean it has any special, secretive information on it. Hate to disappoint you!

Still, it could be interesting – just stay in the realm of reality, OK?

P.S. These are some of the existing networks/software that I know of, if you’re interesting in checking them out further:

Tor

I2P

Freenet

dn42

GNUnet

CICN

OneSwarm

Retroshare

ZeroNet

Tribler

Netsukuku

Freifunk

FunkFeuer

10866

The Real “Deep Web Levels”

Ever since those ridiculous “infographics” came out in 2013 claiming that there were “levels” to the deep web, people seem to constantly be asking how to access them. Specifically, this is the one I had in mind:

Deep_web_lies

I know I’ll never convince everyone of this, but as I mentioned in my previous post, there are no levels to the deep web, or dark web.

What really exists are different anonymity networks, which achieve this in different ways. Obviously, the most widely used one is Tor. I’ve probably explained how it works in earlier posts, but Tor disguises your identity and location by encapsulating your communications in layers of encryption, analogous to the layers of an onion.

The sites that people frequently refer to as “deep web sites” are technically called “Tor hidden services.” Tor makes it difficult to trace the locations of the servers from which these sites are running, thus why they tend to involve criminal activity, like fraud, narcoctics, and weapons sales.

Beyond Tor, there are other networks, like I2P, Freenet, ZeroNet, and Umbra. And, as I mentioned in my last post, there are also the mesh routing networks, made up of radio nodes. These networks accomplish anonymity in different ways than Tor does, but they mostly have the same purpose: send email, send messages, share files, and set up websites without revealing your identity.

I’ve discussed Tor, I2P, and Freenet in various posts, but haven’t talked about the last two yet.

ZeroNet is a newer network that uses bitcoin cryptography, as well as Tor, to achieve anonymity. The way that it uses Tor is that your communications are sent through the Tor network, much like if you were using the Tor browser itself.

zerohello

As with Tor, you can use ZeroNet to send email, build websites, send messages, and download files anonymously. ZeroNet, at the moment, doesn’t have its own unique browser. However, you can configure Firefox or other browsers to use ZeroNet. It’s actually not that difficult.

ZeroNet’s downside, at present, is that only a small community of users seem to be taking advantage of it. So, if you want to build the community, join and tell your friends about it!

Umbra, on the other hand, I have yet to experience, but I’m planning to try it out as well. Its creators are the same innovators behind the Shadowcash cryptocurrency. I think Umbra should be the subject of a future post. The GUI of Umbra, oddly enough, looks similar to ZeroNet. I’m not sure if one influenced the other in any way.

umbra

Anyhow, as for “deep web levels,” the only thing more confidential than these networks would be the top secret networks used by the U.S. government, like SIPRNet, NIPRNet, JWICS, CAVNET, and GWAN, which are used to share sensitive or classified information. Other governments have similar networks, though at the moment, I don’t know their names.

Even if you were to access them, they probably wouldn’t be as interesting as the movies make them out to be. Too bad, huh?

I’m sure that no matter what, I’ll never convince everyone that there are no special “deep web levels” that you can somehow access, but one person can only do so much.

My suggestion is to check out the real networks that do exist, and educate yourself on what you find. You never know – it could be fascinating!

(Unlike the one below – if it’s so secretive, why is it using Windows 3.1?)

imwghhzrv8LmRSsDbP2hDvmyDG5dlYLMQ7brOdlXDVo

Darkfox: Access the Dark Web with Ease!

darkfox

NOTE: Darkfox will not help you access .clos, .rdos, .lll, or .loky domains. Those don’t exist!! It will help you access .onion, .I2P, and 127.0.0.1:8888 URIs.

by Ciphas

This may sound like an infomercial, but I swear it’s not.

Those of you who use darknets, in particular Tor, I2P, and Freenet, might have noticed that it can sometimes be inconvenient to have to run each one in a separate browser, or at least have to launch the programs separately.

Well, I found a program that makes it simpler to connect to any of these three networks with a simple command: it’s called Darkfox Launcher.

Its advantage is that it lets you access Tor, I2P, or Freenet without having to change your configurations every time. Plus, it’s very simple to use.

The GitHub page goes into a little more detail, but one of the most important questions it answers is: “How does Darkfox Launcher work?”

Here’s the answer: “Darkfox Launcher works by first changing the default profile of the Firefox Portable software and with that, changing the default network configuration. Once this phase is done, Darkfox will proceed by launching the Darknet proxy software to make the connection to the Darknet chosen by the user. When completed, Firefox Portable will boot to the default startpage of that specific Darknet.”

Darkfox is also a convenient way of quickly accessing one of these networks if, say, you need to contact someone through the network and don’t want to go through the process of installing, for example, I2P.

Included in its software package are these things: Firefox Portable Edition, and the proxy software from the Tor Project, the Invisible Internet Project (I2P), and the Freenet Project. If you’re unfamiliar with each of these, it might help to check them out individually first!

So what’s my opinion? I’ve been using it for a little while now, and while it does have a few bugs, I love it. (Besides, what software doesn’t have bugs, especially in the early stages?)

And you may have noticed that, since it’s on GitHub, Darkfox Launcher is also open source. To that end, if you want to fork it and contribute to the code, feel free.

Now, its downside is that it isn’t as secure as the actual Tor browser. So, if you’re doing some kind of hardcore whistleblowing, or engaging in illicit activities, I don’t recommend Darkfox for you. It’s still a work-in-progress, though, so future versions will probably have improved security features.

On a side note, this may just be nostalgia, but its UI reminds me of both the DOS command prompt and the Bash Unix shell. *Nerding out*

While it may not be about bells and whistles, I think Darkfox Launcher accomplishes its purpose well. For more information about it, check out the Darkfox Read Me: https://github.com/blacklight447/Darkfox-Launcher/blob/master/README.md.

If that’s not enough, take a look at its source code here: https://github.com/blacklight447/Darkfox-Launcher/blob/master/darkfox%20code

darkfox_sourcecode

Who knows? Perhaps in the future, it will have the ability to launch Tor and do your taxes.

How to Use I2P on Android Devices

by Ciphas

i2p_android

I’m well aware that not all “dark web” users prefer the Tor network (which I’ve mentioned in a few previous posts).

As I wrote about in How to Access the Dark Web with I2P!, I2P is one of the three most popular anonymity networks at the moment, next to Tor and Freenet. Out of those three, however, it’s arguably the most complicated to use.

That aside, if you already use it, and are interested in the Android app, it’s simple to download. Go to I2P – Android Apps on Google Play, and install it.

If you’re already familiar with using Tor on Android, then you may know the browser Orfox; download that first, from Google Play – Orfox.

device-2015-06-30-133152

As with the standard version of I2P, you need to configure your proxy settings to be able to connect to it on your mobile device.

Depending on which device you have, these may be in a different area, but this tutorial explains it quite well. (With the exception that the Orweb browser is outdated.)

To sum up – you’ll need to configure your proxy settings to 127.0.0.1 (localhost), port 4444 (HTTP). After this is finished, open the I2P app again and hold down the button that says “Long press to start I2P.”

i2p_longpress

Once you’ve started I2P, the app has to find peers on the network. This should only take a few minutes at most (depending on your connection, of course).

Finally, go to the “addresses” tab. There should be some default I2P sites (eepsites) listed there. You can add others if you wish. Actually, on my device, there was only one eepsite listed by default.

If you tap on the name of one of the eepsites, it may ask you which app you want to use to open it. Obviously, the tried and true Firefox is good. You can also use Orfox, as I mentioned.

Also, if you tap the “tunnels” tab, you’ll see which client tunnels and/or server tunnels are running. By default, some of the ones that run are the I2P HTTP/HTTPS Proxy, Irc2p, and smtp.postman.i2p (simple mail transfer protocol):

i2p_tunnels

You can, of course, customize it by adding your own client tunnels or server tunnels using the red “plus” button in the lower righthand corner (maybe that could be a subject for a future blog post…yesssss….).

Interestingly, the tutorial I referenced above recommends Lightning Web Browser, because it’s open-source and built for privacy, speed, and efficiency. It can also send traffic through Tor or I2P, and can be set to use DuckDuckGo or StartPage as its standard search engines. So give that one a try. If you’re curious about the source code, it’s here: GitHub: Lightning Browser.

Now, as for some other eepsites you can try out, here are some suggestions (but I haven’t vetted all of these, so some may not work):

https://sochi.i2p

https://speedie.i2p

https://sponge.i2p

https://nightfort.i2p

https://planet.i2p

https://oniichan.i2p

I hope that’s enough to get you started. Anyhow, have fun. I2P may not seem as “creepy” as Tor, but I would like to get a few more people to try it out, and maybe build more of a community on the network.

Enjoy your visit, friends!

A Darknet Dictionary (Work in Progress, with Links!)

darr5

by Ciphas

So, given that there seems to be a lot of confusion about certain terms connected with the darknet and/or dark web, I thought it might be useful to have a “darknet dictionary” here. I must give some credit for this idea to Deepdotweb.com, who featured a similar article at DeepDotWeb’s DarkNet Dictionary Project! This isn’t a carbon copy of theirs, but they inspired me.

Their darknet dictionary is an ongoing project, so I think I’ll do the same with mine. If anyone wants to suggest new entries (or corrections) in the comments, feel free! I just may add them.

NOTE: Some links below may be down.

2FA – Abbreviation for “two-factor authentication.” 2FA is a type of multi-factor authentication (MFA), i.e. a user is only granted access to a site after presenting multiple pieces of authentication. Although used on the clearnet as well, 2FA is used on many darknet markets (and other sites) to verify users’ identities.

Example: a username and password, plus a separate PIN or a security question.

img21

Active at Dark Markets? – A Tor hidden service set up by Dutch law enforcement to warn darknet market users that they are being tracked.

activedark.png

Ahmia.fi – A search engine that finds Tor hidden services and I2P eepsites. Also available on Tor at http://msydqstlz2kzerdg.onion/.

ahmia

Alienet – A VPN-based hidden network that offers messaging, mail, IRC, and hidden services. Not as well known as some other darknets, but it is real. Their site is at http://darknetproject.info on the clearnet, or https://unionsoe3yw6fxaq.onion on Tor.

alienet

AlphaBay – Currently one of the top darknet markets on the Tor network. Uses both multisig transactions and a traditional escrow system (depending on the vendor). Access it at this link: http://pwoah7foa6au2pul.onion/register.php?aff=41211

AlphaBay-Home-e1440639625779

AYW – All You’re Wiki [sic]. The Hidden Wiki with all CP links removed.

allyourewiki

Besa Mafia – A fake hitman service that (surprise, surprise) turned out to be a scam. Though a number of people paid to use their “services,” no one was ever hurt or killed. The admin of the site did escape with a number of people’s bitcoins, however.

besa

Bitcoin– A digital currency created by the mysterious “Satoshi Nakamoto” in 2009. Bitcoin incorporates encryption techniques to regulate the creation of new units, and to verify the transfer of funds. The smallest units of bitcoin are called “satoshis.”

bitcoins182way

Bitcoin billionaire yet?

Bitcoin Mixer – A service used to disguise the trail of bitcoins back to their original owner. Often used when buying and selling illicit goods on darknet markets. A few examples of bitcoin mixers are: BitCloak, Grams Helix, and BitBlender.

bitcloak

Blackbook – A former social network on the Tor network, modeled after Facebook. Used to be located at https://blkbook3fxhcsn3u.onion.

Blackbook

Black Market Reloaded (BMR) – A former darknet market on Tor, and one of the oldest, which is currently offline. Plans have been announced for it to restart.

black-market-reloaded-screenshot

Blockchain – A public ledger of all bitcoin transactions that have ever been executed. This applies to other cryptocurrencies as well.

blockchaininfo

BotDW – Boss of the deep web.

botdw

Candydoll – A term referring to non-nude photos of children in suggestive poses or sexy clothing. Softcore child pornography, more or less. (Also may refer to makeup kits that are designed for this style of photography.)

NOTE: The screenshot below is from one of the sites selling the makeup kits.

candydoll_makeup.png

Carding – The trafficking of credit cards, bank accounts, website accounts, and other financial or personal information. May or may not take place within larger darknet markets. Some vendors on the dark web specialize in this type of crime.

darknet_forum

Cheese Pizza – Another slang term for child pornography.

Cipherspace – The “hidden internet,” built on top of anonymity networks like Tor, I2P, Freenet, and others.

Clearnet – The “normal internet” accessible without special software or configurations. (e.g. Google, Bing, Facebook, Wikipedia, Twitter, Reddit, etc.) Also sometimes referred to as the “surface web” (though this term is wildly inaccurate and confusing.)

surface-web-anz-tech-anztech-pc-fix-in-manukau-computer-repair-in-penrose

Enough with the icebergs, already!

Cold storage – Keeping a reserve of bitcoins offline (e.g. on a USB drive or encrypted media) to prevent tampering or theft.

coldstorage_bitcoin

CP – An acronym for “child porn” or “child pornography.”

Cryptography – The art of writing and solving codes. With regard to the dark web, it is a means of encrypting data (messages, etc.) that you send over the network.

Daisy’s Destruction – An infamous film made by child pornography producer Peter Scully (see entry), through his company No Limits Fun. The film shows the sexualized torture and abuse of several young girls, one of whom is referred to as “Daisy.” However, the film has reached mythological status on the web, with the details and facts about it being blown out of proportion.

daisy

Darknet – An overlay network that requires specific software, configurations, or permission to access. Examples include: Tor, I2P, Freenet, GNUnet. Some of these networks (like Freenet) have both “darknet” and “opennet” modes, where you can choose whether to connect only to peers that you trust, or connect to anyone.

ccnx_166975_full

Darknet Heroes League (DHL) – DHL is an escrow market comprised of old school vendors who were invited to sell there. Access it at http://darkheroesq46awl.onion.

dhlmarket

Darknet Market – A market hosted on an anonymity network (such as Tor) that often (but not always) deals in illicit goods. Popular purchases include drugs, drug paraphernalia (like pipes), firearms, hacked PayPal accounts, skimmed credit cards, counterfeit money, porn accounts, and fake official documents.

dream_market_drugs

Dark0de (a.k.a. Darkode) – A notorious hacking and cybercrime forum, originally hosted on the clearnet, which transitioned to the Tor network.

DarkodeKoS.png

Dark Mamba – A new “private military company” that claims to offer murder-for-hire services, run by the admin of the old Besa Mafia site. (i.e. another fake hitman site.) Located at https://darkmambawopntdk.onion.

dark-mamba

Dark Web – The part of the web that exists on darknets like Tor, I2P, Freenet, GNUnet, and other networks, and requires special software, configurations, or permission to access. The dark web is a small part of the deep web. The word “dark” does not refer to the content, but rather the fact that the networks are special access.

SIGAINT-attack

Dark Web News – A news site that reports on events that take place on the dark web. Also features bitcoin tutorials, links, and a comparison of darknet markets. Located at https://www.darkwebnews.com.

darkwebnews

DBAN – Darik’s Boot and Nuke – free erasure software that automatically deletes the contents of any hard drive it can detect, developed by Darik Horn.

dban11

Deep Web – The part of the web not indexed by traditional search engines, like Google. This term is often confused with “dark web,” but the two are not synonymous.

91d6d0cc4ed117a62f37c70d97e1a077_original

Deepdotweb – A site that releases news, articles, and occasionally tutorials about the dark web (primarily Tor). They also keep an accurate, updated list of darknet markets that’s very reliable. Can be found at Deepdotweb.com or https://deepdot35wvmeyd5.onion.

deepdotweb3.png

DisconnectA clearnet search engine that prevents other search engines from tracking your searches. It used to be the standard search engine on the Tor browser. Located at https://search.disconnect.me/.

disconnect_search

DNStats.netA site that monitors the status of various darknet markets and a few other sites on the Tor network. Located at https://dnstats.net/ on the clearnet, and https://dnstatstzgfcalax.onion/ on Tor.

dnstats

Doxing – The act of researching and posting someone’s personal information (e.g. phone number, address, full name) on the internet. Takes place on both the dark web and clearnet.

doxbin

Doxxters, The – A group who offers a doxing service for pay. Located at https://doxxtereufvckkiz.onion.

doxxters

Dream Market – Another top darknet market hosted on the Tor network, which uses a traditional escrow system. Access it at http://lchudifyeqm4ldjj.onion/?ai=1675.

dreammarket-drugs3

DuckDuckGo – Currently the standard search engine used on the Tor browser. Is popular with privacy-minded users. Located at https://duckduckgo.com/ on the clearnet, and https://3g2upl4pq6kufc4m.onion on Tor.

duckduckgo

Dump – The sharing of stolen data, such as usernames, passwords, credit card numbers, and bank account data. Also takes place on the clearnet, but is more infamous on networks like Tor.

dumpsad

Eepsite – The name for hidden services hosted on the I2P network. They end in the domain name .i2p.

eepsite

Freedom Hosting – A former Tor specialist web hosting service which, at its height in 2013, was the largest hosting service of its kind. Was the target of an attack by Anonymous, as well as a large law enforcement operation headed by the FBI. Has since been succeeded by another service dubbed “Freedom Hosting II.”

freedom_hosting

Freenet – A peer-to-peer network for censorship-resistant communication, touted as an alternative to other networks like Tor and I2P. It features anonymous messaging, email, social networking, and site hosting. A typical Freenet URI looks like this:

USK@MYLAnId-ZEyXhDGGbYOa1gOtkZZrFNTXjFl1dibLj9E,Xpu27DoAKKc8b0718E-ZteFrGqCYROe7
XBBJI57pB4M,AQACAAE/pyFreenetHg/31/

Download it at https://freenetproject.org/.

freenet_mainpage

Freesite – The name used for Freenet’s hidden services.

freenet_fms_setup

FullzIn carding terms, “fullz” refer to full database records of personally identifiable information. Such things might include names, addresses, phone numbers, bank account information, social security numbers, passwords, etc.

SPAM_smtp-rdp-cc-fullz-plus-bitcoin-carding-methods_6115250321125192472-a347a8c0d08d4002b40415e8063cdb64.jpg

Galaxy2 – A popular social network on Tor. It is a follow-up to the original Galaxy social network, created by “Lameth.” Located at https://w363zoq3ylux5rf5.onion.

0b034e7890a8d0073b501f05601a4071

GNUnet – A free software framework for decentralized peer-to-peer networking. It includes P2P applications, such as chat, file sharing, and VPN.

gnunet_screenshot

Grams – A Tor-based search engine for darknet markets, which helps compare goods, prices, and vendors. Tor link: http://grams7enufi7jmdl.onion/

grams-black-market-search-engine

HANSA Market – A darknet market with a multisig escrow system. Tor link: http://hansamkt2rr6nfg3.onion/affiliate/110

hansa_market

Hard Candy – Slang term for an underage girl – roughly age 12-16, on both the dark web and clearnet. Also can refer to child pornography featuring girls of this age.

Harry71’s Onion Spider – A popular link repository on Tor. Is respectable because it’s updated daily, and the links are generally accurate and active. Tor link: skunksworkedp2cg.onion

harry71_onion

Helix Light – A bitcoin cleaner available from the developers of Grams. Tor link: http://grams7enufi7jmdl.onion/helix/light

helix_light

Hell – Infamous hacking forum formerly hosted on the Tor network, where users share hacking tips as well as stolen data. There is another site currently going by the same name, but it is actually a clone site made with a stolen private key from the original site.

Hidden Wiki – Name for a popular wiki on Tor that links to and describes some basic Tor hidden services (for noobs). The main one is located at http://zqktlwi4fecvo6ri.onion/wiki/index.php/Main_Page. There are several other sites that use the name Hidden Wiki as well, but this one is usually the site in question.

hiddenwiki2

Hitmen/Assassins – A service that’s supposedly easy to find on the dark web. All of the sites offering these services have turned out to be elaborate scams, but the myth continues to be perpetuated by creepypastas and rumors.

hitman_network

Hurtcore – Most extreme form of child pornography, involving such things as physical injury and rape, which can be found on the dark web. Avoid at all costs.

screen-shot-2015-09-10-at-8-54-44-pm

Credit: allthingsvice.com

I2P – An overlay network and darknet that allows applications to send messages to each other anonymously and securely. Download it at https://geti2p.net/en/.

I2P_router_console_0.7.7

L33TER – A vendor shop started by L33Ter, vendor from most of the early darknet markets. Specializes in digital and physical products. Located at http://l33ter2w7q4bytfh.onion.

l33ter

LE – An abbreviation for “law enforcement.”

Litecoin – A peer-to-peer cryptocurrency that is based on bitcoin. Find out more at Litecoin – Open source P2P digital currency.

litecoin

Lux – Username of Matthew David Graham, convicted (and imprisoned) owner of child pornography sites PedoEmpire, Hurt 2 The Core, and Love 2 The Core (among others).

matthewdgraham

Mesh routing network – Networks made up of radio nodes arranged in a mesh topology. Examples include Netsukuku, GNUnet, Hyperboria, and CCNx. Many of these are still in beta mode and have not been officially released, but they have been advertised as alternatives to the traditional internet structure being used right now.

netsukuku

Multisig – An abbreviation for “multsignature.” The requirement for more than one key to authorize a bitcoin transaction.

multisig

Credit: deepdotweb.com

not Evil – The premier search engine on Tor. Was originally designed to look like a parody of Google. Located at https://hss3uro2hsxfogfq.onion.

notevil-chat

Onionland – A nickname for the Tor network.

2000px-Tor-logo-2011-flat.svg.png

OpenBazaar – A decentralized peer-to-peer marketplace that sells a variety of goods for bitcoin and currently runs on the Tor network. Not a “darknet market,” per se, but uses a similar concept.

openbazaar

Operation Onymous – An international law enforcement operation targeting darknet markets and other Tor hidden services in 2014. Supposedly shut down over 400 sites (although many were clone sites).

xzfzwwhgrbpgguhzhkiu

Outlaw Market – Another of the top darknet markets on Tor. Sells drugs, digital goods, weapons, and other merchandise. Access it at http://outfor6jwcztwbpd.onion/indxx1.php.

outlaw.png

Pedo – A slang term on the dark web for “pedophile.” Refers not only to the people themselves, but related sites and materials. (e.g. PedoEmpire)

PedoFunding – A now-defunct website on Tor run by convicted freelance photographer Richard Huckle. Huckle has since been imprisoned, and received 22 consecutive life sentences.

PGP An encryption standard created by Phil Zimmermann in 1991. The initials stand for “Pretty Good Privacy.” PGP is frequently used to encrypt and decrypt messages on the dark web.

public-key

PlayPen – A large child pornography site that, in 2015, was seized by the FBI and used to catch pedophiles who were accessing the site. This has been one of the more controversial cases, as some have questioned the legality of the FBI’s actions.

Qubes – A security-focused operating system that aims to provide security by isolation. One of many distros that can help provide security and anonymity. Official site: https://www.qubes-os.org/

r3rc1-nalu-desktop-1

/r/darknetmarkets – A subreddit dedicated to information and discussions about darknet markets.

/r/deepweb – A subreddit dedicated to factual information about the deep web and dark web (as opposed to urban legends).

Red Room – A series of mythological sites on the dark web that supposedly feature live torture and murder (see “Shadow Web”). Entrance to these sites (in theory) requires bitcoin, as well as special credentials, such as a password given by an administrator. They are, more or less, an extension of the urban legend of “snuff films.”

All of the ones that have become public knowledge have turned out to be scams, yet many creepypastas and YouTube videos have continued to perpetuate the myth.

darkredroom

Scam/Scammer – In the context of the dark web, someone who purports to be selling certain goods or services, and doesn’t follow through, or misrepresents their intentions (e.g. a drug vendor who never delivers their goods, or a “financial service” designed for identity theft).

sheep-scam1

Credit: Deepdotweb.com 2013

Scream, Bitch! – A hurtcore forum on the Tor network. For those of you thinking of joining, registration is closed.

sb_darkweb

Scully, Peter – An infamous Australian pedophile and producer of child pornography, most notably the film Daisy’s Destruction, which has achieved internet notoriety. Scully had formed his own production company to make these films, called No Limits Fun.

peter_scully

Shadow Web – A fictitious part of the dark web perpetuated by creepypastas and YouTube videos. Supposedly features live torture and murder shows for those who pay the right price. A number of sites on Tor claim to offer access to the Shadow Web, but they are all scams. Here’s one example: Shadow Web Gateway 2.0

shadowweb_3

Silk Road – An online black market, considered to be the first modern darknet market. Launched by founder Ross Ulbricht in 2011, the site was shut down by feds in October 2013.

2013116192258674734_20

Silk Road 3 – An escrow market that used to go by another name, but adopted the Silk Road brand. There has been much speculation as to whether or not the market will exit scam or will be taken down, but it is still currently running. Located at reloadedudjtjvxr.onion.

silkroad30_login

SSH – Stands for “secure shell.” SSH is a cryptographic network protocol for operating network services securely over an unsecured network. As with PGP, SSH uses public and private keys to authenticate users.

puttytunnel_06

Suicide Apartment – Members-only social network on Tor (which used to exist on the clearnet). It’s meant to be a site for people who are suicidal and want to find someone else to “leave the world with.” The only way to become a member is to receive a voucher from an existing member.

suicideapartment

Tails – A popular Debian-based live operating system that many dark web users install for extra protection. “Tails” is an acronym for “The amnesic incognito live system.”

tails_screenshot

TLA – An abbreviation for “three-letter agency.” Includes federal agencies such as the CIA, FBI, NRO, NSA, DEA, DHS, and others, who are looked upon with suspicion in the dark web.

hidden_site_seized.png

Tor – An anonymity network on which many “dark web” sites are hosted. The name “Tor” stands for “the onion router.” Frequently, people who say they’re on the “deep web” are referring to Tor. Download it at https://torproject.org.

tbb-screenshot3

TorBay – A Tor-based social network and forum which more or less replaced Blackbook.

torbay

Torch – A simple Tor search engine. Located at https://xmh5752oemp2sztk.onion

torch_search

Traderoute – A traditional and multisig escrow marketplace on Tor.

traderoute

Valhalla (Silkkitie) – Originally a Finnish-only darknet market, now available in English. Valhalla is invite-only, and offers both traditional escrow and multisig transactions, 2FA, and PGP. Requires a referral link to register as either a buyer or a vendor.

silkki

Vendor Shop – Smaller shops started by some of the major darknet market vendors, usually specializing in certain types of items. Examples: Mollyworld and MegaPack.

VPN (Virtual Private Network) – A private network which extends across a public network (internet). Many experts recommend using a VPN in addition to using Tor! (hint hint)

vpn10

Welcome to Dark Web Links and More! – Link list for Tor hidden services. Notable because they do not accept submissions of CP links, and also feature links to Usenet groups. Access it at https://jdpskjmgy6kk4urv.onion/links.html.

welcometodarkweblinks

Zion Market – A newer multisig darknet market without user wallets. Buyers have the option of selecting 2-of-2 (the server and vendor have the keys), or 2-of-3 (the buyer also has a key). Uses 2FA, automated PGP, and Bitmessage alerts. Access it at http://zionshopusn6nopy.onion/_reg23.

zionmarket

Zocalo – A former darknet market specializing in marijuana, hash, and various paraphernalia associated with it. Recently closed due to lack of business.

zocalo_market_weed

Zork – A 1980’s text-based RPG that is now playable on the Tor network (via the not Evil search engine).

zork

P.S. As I said above, this list is far from finished. So I’ll either add more entries in later, or do a part 2 to the post. Anyhow, hope you had fun, and feel free to add your suggestion

Interview: Eileen Ormsby, Author of Silk Road & All Things VICE

AAEAAQAAAAAAAAPwAAAAJGEzYjZmMzI4LWY5NTUtNDM1OS05NjY3LTNmZTI1MTYxY2RmMQ

Photo credit: Philip Gao Photography

I must say, it’s always interesting (and enlightening) to meet people who actually know their stuff when it comes to the dark web. Not long ago, on Twitter, I had that opportunity.

Eileen Ormsby, the Melbourne-based author of Silk Road and All Things VICE, was the perfect person to talk to regarding the ins and outs of the dark web in all its shady glory. According to her, her interest in the dark web emerged as a result of doing research for the Silk Road book, and eventually led to the creation of the blog.

9781742614090

Given that I, too, am aiming to find the truth about the dark web amongst all the disinformation, it seems that Ormsby and I have something in common.  We even touched on my “favorite” dark web myth, red rooms!

Secrets of the Dark: What were your initial experiences on the dark web? Did you use Tor or some other service?

Eileen Ormsby: Yes, started with Tor and, specifically, Silk Road. It was some time in 2011 when a friend who was using it showed it to me. Instant fascination!

silk-road-site (1)

The original Silk Road Marketplace

SoTD: You have interviewed a number of individuals who are involved in various aspects of the dark web. Which interviews did you find to be the most informative or interesting?

EO: Probably the most interesting for me was my interview with the administrators of Atlantis when they were trying to break Silk Road’s stranglehold on the darknet markets. They contacted me and asked for the interview – in fact, several times before I agreed to do it.  They’d been asking whether I would carry their paid advertising (no) and then were always sending me snippets of news to put on my blog. They sent me previews of their infamous Youtube commercial before it was put on. They were really marketing hard, desperate to get some sort of good publicity because Silk Road monopolised the market and their customers were a really strong, loyal fanbase. Nobody trusted Atlantis, even though they offered a smoother interface, lower commissions and better customer service.

Eventually I agreed I would interview them provided it would be real-time, candid and I would not make it positive if I didn’t feel it should be. I agreed to give them a hearing and be fair. It was all done over real-time encrypted chat (I think it was cryptocat, which is now defunct after being proven to be not that crypto after all!) [actually, it’s back up again! – ed.].

It lasted several hours and I did, indeed, feel it was candid. I think they were trying to make a better market, but it failed because of distrust among DNM users and loyalty to Silk Road.

Other than that, I interviewed or engaged with most of the staff of Silk Road from time to time, including [Dread Pirate Roberts] 1&2 and still remain in contact with several of them to this day – the difference being that I now know the real identities of many of them!  I was in constant email contact with Peter Nash, the Australian moderator, during his time in prison in the US and served as his communication to the outside. He gave me an awesome interview when he got out.

SoTD: What are some of the urban legends and dubious information that, in your experience, continue to pass around about the dark web? (e.g. hitmen services, red rooms, bizarre things for sale)

EO: The one that is most persistent is the myth of the “Red Room” – live streaming of torture/rape that ends in the murder of the victim and which people can pay to watch, or even bid to type in commands for the torturer to carry out (highest bid wins!).  People have this idea of Hostel with webcams exist[ing] all over the dark web, but you just need an invite to get into them.  It’s ridiculous.  They don’t exist.  They certainly wouldn’t exist on Tor.  But people are desperate to believe and they always come back with “You can’t prove they don’t exist, people are crazy, therefore they must exist.”  Picture my eyes rolling here.

I don’t think many people are taken in by the hitmen sites anymore, though the press loves playing up the fact that there are sites offering up hitman services. And of course, after the Ross Ulbricht trial, people kept pointing to his alleged attempts to have hits carried out as pointing to him trying to use ‘hitman sites,’ which wasn’t the case at all.

People are always asking where they can find markets for exotic animals. Obviously the illegal trade in exotic animals exists, and some communications and transactions may well take place over Tor, but there are no markets like the drug markets where you can go and look at a picture and then put a tiger or ocelot or something into your basket and buy it with bitcoin.

SoTD: Have you used networks other than Tor to explore the dark web? (e.g. I2P, Freenet, GNUnet, Netsukuku)  If so, how did the experience compare?

nerdageddon_updated

Nerdageddon on Freenet

EO: I used I2P and Freenet back in the beginning when I was researching the dark web in general, but they just weren’t as user-friendly as Tor and didn’t have the user base.

SoTD: What kind of research did you do when writing your book Silk Road (beyond just visiting the website itself)?  What did you discover in the process?

EO: In a lot of ways, I didn’t do any research at all.  I was in there from the early days, an active part of the community.  I spent part of pretty much every single day in there for two years.  I got involved in stuff.  I spoke to people, sometimes they came to me with their stories.  It was totally organic.

As well as the ground-level stuff, I got involved with a lot of the academics involved in researching cryptomarkets. Dr. Monica Barratt was one of the first – we’re still friends today – and she has probably done more rigorous academic analysis of the darknet markets than just about anyone in the world. Nicolas Cristin was another one who could be counted on for impartial analysis. There’s now a large circle of people involved in cryptomarket research and we have a very cool private forum where we share stuff.

SoTD: Have you found that you needed to increase your knowledge of internet security in order to research networks like Tor (i.e. to protect yourself and your identity)?

EO: Well, I’ve always hidden in plain sight.  Once I came out on Silk Road, I used the name OzFreelancer everywhere on the dark web. Everyone knew who I was. I always thought being up front about who I was to be the best way. Of course I have second logins for everything under different names, but they are usually for lurking rather than contributing.

The one thing I’ve found invaluable and that everyone – not just journos or DNM users but everyone – should take the time to learn is PGP. It is the one thing we can still count on.

SoTD: On your blog All Things VICE, you seem to get a lot of comments from the owner(s) of the Besa Mafia website; do you have any inside information as to what the truth is about the site? Is it a scam, honeypot, or what?

EO: LOL, yes I have inside information which I can’t go into detail about at the moment, but it will all come out at some point. Yes, they are a scam, but a very successful one – they have stooged a lot of people out of money.

besa_mafia

Besa Mafia’s website

SoTD: In spite of the negative attention that darknet markets have received, do you think that they have any positive aspects?

EO: The drug markets certainly do. They offer a safer alternative for people who are going to do drugs anyway. There is no possibility of any violence. The vast majority of the time a buyer knows exactly what they are getting, because of the feedback and rating system – if someone is selling 25i as acid or pipes as ecstasy, they will very quickly be called out for it and their ratings will plummet. That’s not the case in a nightclub, or even friends-of-friends, where you just blindly accept that pill, powder or tab is what the seller says it is.

SoTD: Have you explored some of the darknet markets that are still in business, such as Alphabay, Dream Market, Valhalla, Python Market, or Hansa Market? If yes, what was the experience like?

applemarket2

Apple Market

EO: Yes, all of them. And they are boring. Which is exactly what a market should be to stay in business. One of Ross Ulbricht’s biggest mistakes was being too damn interesting and developing a cult following. It really got up the nose of the TLAs and they threw a ridiculously disproportionate number of resources into tracking him down and prosecuting him. There’s been several markets far larger than Silk Road ever was, but law enforcement just don’t care (or at least don’t care enough) because they are quietly running as a commercial enterprise and don’t have any political or disruptive motivations. They certainly don’t have enigmatic leaders posting rousing calls to arms with devout followers drinking the Koolaid. None of us journos are writing about them much, so they are out of sight, out of mind for politicians.

I don’t mean to say that LE doesn’t still work on arresting DNM dealers and, where possible, closing the markets. It’s just that the political pressure to close them down is off.

Ulbricht_Passport

Ross Ulbricht, a.k.a. Dread Pirate Roberts

SoTD: There are many, many so-called “horror stories” that pass around about the dark web; do you have any of your own to share from your research?

EO: Haha, none! I did get bombarded by the owner of Besa Mafia (hitman site) after my article about them, with emails telling me he knows where I live and was sending people around to “beat and rape” me, but I was never really worried that he would go through with it. My partner on the other hand gets nervous about what I do sometimes.

Of course, there’s been disturbing things. I attended the court hearings of people involved in hurtcore sites. I heard and saw things that I need to put in little compartments of my brain that I lock away and rarely visit. But never any of the creepypasta stuff people love to boast about on Reddit.

SoTD: Do you think that Tor is still a good tool for journalists to use, or as a privacy tool for people living under repressive regimes? (e.g. North Korea, ISIL)

EO: Absolutely. Every journo should have a working knowledge of Tor, VPNs and PGP. Especially PGP.

SoTD: Given that darknets and other privacy tools are still being developed, do you think that something else may eventually replace Tor?

EO: Yes. I’m not clever enough to know what though.

SoTD: Answer this question once and for all: is it called the “deep web” or the “dark web”? Or are they two entirely different things?

EO: They are two different things. You know when you hear that stuff about the deep web being 500x larger than the surface web? That’s true (well, I don’t know the exact figure – nobody does – but it is massively larger). But that is all boring stuff, being anything that’s not indexed by search engines. So anything behind a paywall, or password protected, backend stuff for companies, etc. The dark web is a very small part of the deep web. Teeny tiny. It is just a media-friendly way of saying Hidden Services.
I have to admit, I hate seeing people use “deep web” when they mean “dark web.”

 

Me too, Eileen!  Me too.  Well, I encourage you to check out All Things VICE.

And next time you hear some crazy rumors about the dark web…check there first.