Thinking about making a purchase soon, pros then cons...
-Doing Evo on Tor -Buying btc with cash deposit -$40ish transaction of paper material -Putting in blockchain to evo
-No encrypted drive/txt files -No tumbling -No Tails -No separate laptop -Have accessed localbtc and this reddit on chrome, no tor
Am I safe enough?
The thing about operational security and the deep web is that the technologies and protocols involved are in a constant state of evolution, similar to an arms race, where markets (and users to some extent) need to employ security measures without having any true knowledge of LE's current abilities. It sounds like you are doing none of these. So much so that this almost comes off as a troll post as you seem to have market knowledge.
However, if you really do access dnms in that way, you should consider what other posters have suggested. But to be completely honest, if you are only making small personal purchases, you really only need the bare minimum while vendors and bulk buyers/resellers must practice a much higher level of security. That being said there is no such thing as "too many layers of security". Staying ahead of LE means responding to threats before they are well known throughout the security community. The FBI has no qualms in "hacking" markets with both technological exploits and long term social engineering campaigns. Throughout the Carding and now DNM history we know there are no bounds they will refuse to cross, sometimes outdoing the criminals themselves in pure disregard for laws and moral boundaries.
Who knows, maybe someday they'll see your blatant activities and decide to make an example out of a "Typical Buyer", hoping to dissuade the vastly growing masses from using dnms. Being that example (ie. Aaron Swartz and the battle for free access to scholarly information) would be really shitty.
Another angle you need to consider are all the scammers, phishers, and con artists out there hunting both beginner/ unknowlegable users and experienced buyers who have grown complacent in their precautions after so many months or years of non-issues. The darknet really must be traversed carefully to avoid getting your coins stolen, personal information found and used for blackmail, etc. Never become comfortable in regards to your operational security. Comfort leads to laziness which leads to mistakes or complete royal fuckups. One such example is telling someone some bit of identifying information, maybe even a vendor, and then coming into conflict with the individual months later. I see doxing threats to people regularly on the forums. Of course I've been perusing the meth forums so there is probably a little more craziness than most. Still, just as a simple early mistake brought down silk road, you should be frosty from the very beginning, starting by putting in research efforts before jumping into this venture.
So to try to quicken this comment up a bit following are my suggestions for avoiding LE detection while at the same time making becoming a smaller target for scam attempts:
Complex Passwords: One of the most important habits to pick up while using the dark net markets, reddit, and forums is to use a different account name and complex password with each new registration. There have been multiple stories of people getting accounts wiped out after getting phished on one site then getting locked out of multiple other accounts because of login reuse. Protip: Take the time to memorize one long complex password of letters, numbers, and special characters that looks like a random string but has some pattern to aide memorization (I use patterns on the keyboard) and then when a new password is needed simply add the marketplace or services name to the end. One password to memorize yet each is unique in a way that makes cracking very difficult. (memorization takes time, I keep mine written down and, probably unsafely, in text docs for copy paste laziness)
Avoid Username Reuse: Use a different username for each online activity while engaging in dnms or other illegal activities. For example, I was tempted to put "kirk" in my name for SR1 but luckily decided on a random string of letters that looked like a word followed by some numbers instead. Rather than getting overly complex for both the password and username, an easily recognizable username is probably not a bad idea as it will help you become part of each forum you use. However make sure there is no link between you and each new username. I used to make different usernames for the market and forum but now I use same name different password. If there is a security issue, like if the market gets seized but the forum is still active, you don't have that separation of activities and avoiding any connecting forums or wikis is probably the way to go if a market is unexpectedly butffucked right in the servers.
Become Active in Communities and Forums BEFORE Ordering: This goes for any accompanying forum to a market or service you plan to use. I don't know if the statistics are made public, but it must be something like 10 percent or less of buyers on large markets such as Evolution and Agora that regularly check in to the forums. Not only will you get up to the date reviews on current batches of product or processing times for vendors of your preferred drugs (reddit reviews are helpful to start with, but tend to be older and lots can change weeks and months) but it will also help you in general market activities and easily avoidable beginner mistakes. For example: There was a huge FE scam over (US) Thanksgiving break because of the rush of SR2 and other buyers who were unfamiliar with the differences in how transactions work and got talked in to FEing by a crafty mother fucker for double amounts and even more freebies than was logical. This was also at a time when some vendors went into vacation mode so Wingmanishere's listings rose more easily. Multiple pages of "FE will update but communication is great so far" just went to show that this guy had cast a net around a bunch of people who were easily talked into finalizing for all the promised goodies (for example after ordering 1 $20 30mg roxy he said if I fe'd he'd throw in a second, plus "some percs and vics I have lying around", a fentanyl patch, and DMT) because they thought they still had the power to change feedback. Not on Evo. You can finalize and hold off on feedback but once rated its set in stone. It was quite the event, ending with what I would consider an expensive lesson for a lot of people that seemed to have skipped their due diligence of researching what they were doing. Support also decided on some changed policies for FE orders, but not anything that would prevent a Wingman style attack. So don't fall for lofty promises and instead hop on the forums (Evo has a scam watchlist thread, along with the usual drug vendor threads). So one more tip and I'll stop:
Avoid Aimless Browsing for Listings: This can be dangerous especially for newcomers to a market but also to anyone who has coins buring a hole in their account. Hi Def pictures of basically drug porn can catch your attention, prices may be lower than average, tons of positive feedback (may end up all being recent FEs and some early small-item orders) and the vendor's profile well built. My only shitty orders (out of nearly 100 now) happened by doing exactly this late at night, stoned or drunk perhaps, with extra coin, thinking I had found a great deal. Instead it turned out I had just stumbled upon scam attempts before they were quite ready to go full blast. With the recent market closures many vendors required FE for a time, and some still use it as an excuse. Don't base your order decisions off market information alone, especially if FE is part of the deal. Hit the forums, search the Vendors PGP address on grams, and see if there is anything on them here yet.
Well that was longer than I set out to type up, but there you go. Oh! And one last thing, DO finalize as soon as you can after receiving and confirming the order has arrived. I totally understand why vendors prefer FE when so many people get high right away and don't finalize for days. Along with that leave a detailed review to help someone else out.
I could keep going but it's time to wrap it up.