08-10-25, 06:04 AM
- Isolation of Identity (Compartmentalization)
- Never cross-contaminate your real identity with your operational persona.
- Maintain dedicated usernames, emails, and cryptographic keys for each persona.
- Do not reuse handles, writing styles, or timestamps across platforms.
- Never cross-contaminate your real identity with your operational persona.
- Dedicated Infrastructure
- Operate only on air-gapped or hardened virtual machines (VMs) configured for darkweb activity.
- Use Whonix or Tails OS as the baseline. Do not use your host machine for darkweb access.
- Segment work: one VM per persona or investigation.
- Operate only on air-gapped or hardened virtual machines (VMs) configured for darkweb activity.
- Network Hygiene
- Always route through Tor (or I2P if required), but don’t rely on it alone.
- Add multi-layer VPN chaining (VPN → Tor → VM) for plausible deniability.
- Ensure you’re not leaking DNS, WebRTC, or other traffic.
- Always route through Tor (or I2P if required), but don’t rely on it alone.
- Secure Authentication
- Use PGP keys or forum-recommended cryptographic identity mechanisms.
- Keep keys separated per identity; never use the same key across multiple accounts.
- Passwords must be generated via offline password managers with entropy > 20 characters.
- Use PGP keys or forum-recommended cryptographic identity mechanisms.
- Operational Discipline
- Disable all JavaScript, macros, or scripts unless sandboxed.
- Never download files or open attachments directly—use a sandboxed VM or automated analysis pipeline.
- Strip EXIF/meta-data before uploading or sharing any content.
- Disable all JavaScript, macros, or scripts unless sandboxed.
- Behavioral Anonymity
- Develop a writing style guide per persona to avoid stylometry tracking.
- Localize slang, grammar, and cultural context to match the forum’s demographic.
- Avoid patterns (e.g., always logging in at 8 AM your time zone). Randomize activity.
- Develop a writing style guide per persona to avoid stylometry tracking.
- Financial Obfuscation (if transactions occur)
- Launder crypto through mixers, privacy coins (Monero), or coin swaps before interacting.
- Maintain separate wallets per persona.
- Never cash out directly to personal accounts or KYC exchanges.
- Launder crypto through mixers, privacy coins (Monero), or coin swaps before interacting.
- Exit Security
- Always assume forums are being surveilled (LE, rival groups, automated crawlers).
- Do not reveal unnecessary operational details.
- Have an exit strategy for persona retirement if exposure risk rises.
- Always assume forums are being surveilled (LE, rival groups, automated crawlers).