Frequently Asked Questions

Torzon Market is a darknet marketplace accessible exclusively via the Tor network. Operating since approximately 2022, it has built a reputation as a technically sophisticated platform with a multi-signature escrow system, mandatory PGP encryption for vendor communications, and support for privacy-focused cryptocurrencies. The platform can only be reached through verified .onion addresses using the Tor Browser.

This website provides informational content about the marketplace based on open-source research and community-published information. We are not affiliated with the marketplace's operations.

The process involves several steps:

1. Download Tor Browser from torproject.org (official source only)
2. Verify the download's cryptographic signature
3. Install and launch Tor Browser
4. Set security level to "Safest" in Shield settings
5. Obtain a verified .onion address from a PGP-signed announcement
6. Navigate to the verified address, register an account, and add your PGP public key

For verified onion links, visit our marketplace access page. For the full security setup guide, see our OPSEC guide.

Some sections of the marketplace allow browsing without registration. However, purchasing any items, messaging vendors, or accessing account features requires a registered account. Registration typically requires only a username and password — no email address, phone number, or personal information is collected.

For maximum security, Tails OS is the recommended operating system. It's a live OS booted from USB that routes all traffic through Tor and leaves no trace on the host machine after shutdown. Download from tails.boum.org.

Whonix is another strong option — a two-VM setup where the workstation routes all traffic through a Tor gateway. At minimum, use the official Tor Browser on a dedicated device not used for everyday browsing.

This is the most critical security question. Steps to avoid phishing:

• Import the official marketplace PGP public key into GnuPG
• Only trust onion addresses from PGP-signed announcements (verify with gpg --verify)
• Never search for onion links on Google, DuckDuckGo, or any search engine
• Bookmark the verified address — never navigate from an external link
• Character-check the full onion address before logging in

See our full phishing protection guide for detailed instructions.

PGP encryption ensures that only the intended recipient (the vendor) can read your messages. When you send a physical delivery address to a vendor, that information is encrypted with the vendor's public key. Even if the marketplace server is seized, law enforcement cannot read your encrypted messages without the vendor's private key.

Plain-text messages are flagged by the platform. Never send sensitive information unencrypted — address details, real names, or anything identifying should always be encrypted with the vendor's PGP key.

Using a VPN before Tor (VPN → Tor configuration) is recommended for most users. This hides your Tor usage from your ISP and adds an additional layer of IP obfuscation. Recommended VPN providers with verified no-log policies: Mullvad (accepts XMR and cash), ProtonVPN.

Do NOT use Tor before VPN (Tor → VPN) — this introduces the VPN provider as a new trust point that can see your activity after Tor exit.

Yes. JavaScript on .onion sites can fingerprint your browser configuration (revealing unique identifiers), make clearnet network requests that expose your real IP address, exploit browser vulnerabilities, and reveal hardware information. The Tor Browser "Safest" security level disables JavaScript entirely and should always be set when accessing sensitive .onion sites.

Monero (XMR) is significantly more private and the recommended payment method. Key differences:

• XMR: Private by default. Ring signatures hide sender. Stealth addresses hide recipient. RingCT hides amounts. Fungible. Reduced fees on the platform.
• BTC: Public blockchain. All transactions permanently visible. Requires additional tools (CoinJoin, Wasabi Wallet) for partial privacy. Standard fees.

See our detailed guides: XMR Guide and BTC Privacy Guide.

XMR deposits require 2 network confirmations before they are credited to your marketplace wallet. Bitcoin deposits require 3 confirmations. Confirmation times vary with network congestion — XMR typically confirms in 2-4 minutes per confirmation (4-8 minutes total), while BTC can range from minutes to hours during high-congestion periods.

This is strongly not recommended. Exchanges perform KYC verification and maintain records of all withdrawals. A direct exchange → marketplace transaction creates a permanent, legally discoverable link between your verified identity and the marketplace. Always withdraw to a personal wallet first, then send to the marketplace. For XMR, consider adding an intermediate wallet hop for additional privacy.

Multi-signature escrow is a cryptographic system requiring agreement from 2 of 3 parties (buyer, vendor, market) to release funds. When you place an order, your funds are locked in a 2-of-3 multisig contract. If you confirm receipt, funds release to the vendor (buyer + vendor = 2 of 3). If there's a dispute and you escalate, the market moderator participates as the third key (buyer + market = 2 of 3 to refund, or vendor + market = 2 of 3 to release to vendor).

This is fundamentally more secure than traditional escrow because no single party — not the marketplace — can access funds alone.

Auto-finalize automatically releases escrowed funds to the vendor after a set period if the buyer takes no action. The default window is 14 days after the estimated delivery date. Buyers can configure this between 7 and 21 days at order placement. The timer pauses if a dispute is opened and only resumes after resolution. You receive notifications at 5 days, 2 days, and 24 hours before auto-finalization triggers.

Wait for the estimated delivery window to pass (usually 1-2 weeks for domestic, 2-4 weeks international). Then contact the vendor directly with a politely worded inquiry about shipment tracking, if available. If no satisfactory response within 72 hours, escalate to a marketplace moderator through the dispute system. Provide all relevant evidence: order details, communication history, and any tracking information. Do not finalize early before the dispute is resolved.

Finalizing early releases funds to the vendor before you confirm receipt, removing your only leverage if the order doesn't arrive. It is only available for Verified-tier vendors on the Torzon platform. Even for Verified vendors, FE carries risk — vendors who have built reputation may occasionally exit-scam. Exercise caution and only FE for genuinely trusted vendors with long, consistent track records.

Vendor registration requires: submitting a PGP public key, paying a refundable vendor bond (typically 150-300 USD in XMR), completing a probationary period with extended escrow on all transactions, and building a rating history. After probation with consistent positive ratings, vendors achieve standard status. Verified status requires 100+ transactions at 4.5+ average rating.

On the vendor's profile page, their PGP public key fingerprint is displayed. Import their key into GnuPG (gpg --import vendor_key.asc) and verify the fingerprint matches exactly. When sending messages containing sensitive information, encrypt with: gpg --encrypt --armor -r VENDOR_KEY_FINGERPRINT. Ask the vendor to sign their reply with their private key and verify with gpg --verify to confirm continuity of key ownership.