I have been a long term DNM user, since the SR days. I wanted to share my OPSEC techniques with those who are interested. These techniques focus on Tor usage, password security, bitcoin security and physical security. This advice is aimed at buyers but can also be applied to vendors.
Physical Security
This is the first area you should think of before even touching Tor. Which device am I going to use Tor on?
My Advice: Buy a class 10 micro SD card (8GB is more than enough) with an adapter and install Tails. For even better security tape a piece of string long enough for you to use the keyboard to the adapter with a slipknot at the end, attach this to your wrist and if your door comes off the hinges or your laptop gets yoinked (a la Ross) your operating system and all Tor usage data will stay attached to your wrist and encrypted. If possible use a wired connection on a private network. You should never leave your computer unattended while using Tor.
Reasoning: Tails on a micro SD card is the smallest gateway to the Tor network possible and offers the most flexibility. You can keep all of your Tor usage to the micro SD and switch between your laptop and your desktop without to many risks. I advise using a private PC with a wired connection if possible and never use public wifi. The reasoning for the wrist band is obvious, if SHTF you can just recoil in fear and your whole Tails installation should come with you. If you know in advance you are getting a visit a micro SD can easily be swallowed or bummed.
Do not discuss Tor with anyone. If you are asked where you get your drugs say some guy you know from out of town, if you're asked if you've heard of Tor or the Silk Road say "yeah that was all over the news a few years ago, whatever happened with that?". Generally don't show interest, just operate as usual and you can enjoy the best drugs in the world for eternity.
Password Security
This is where things get slightly complicated but please bear with me, I have been honing this technique for several years now and I belief it to be the most resistant to hacking. I have devised a method whereby you only need to remember a sequence of 9 digits for effective password security. (Remember that all of the things I present below are hypothetical, I'm not dumb enough to give out my PII)
Step 1. Choose 6 or 7 individual passwords. Make them memorable but make them individual and then obscure them by replacing letters for numbers (e = 3, a = 4, 7 = t). Here are my 6 examples passwords.
First Car (Subaru) = Su84ru Mother's Name (Doris) = D0r15 Father's Name(Cuthbert) = Cu7h83r7 Place I was Born (Baghdad) = 84ghd4d First Child's Name (Winston) = W1n570n Favourite Drug (Cannabis) = M4r1ju4n4 *I do not advise using identifiable information, this is all for example.
Step 2. Assign your sequences. "What the fuck do you mean by sequences?!" I hear you say. Remember I mention you need to remember 9 digits for password security, here is how. Take the first digit of each password from step 1 and now create 3 passwords in a manner like this:
Encryption Password (first login to Tails/OS) Sequence = SDC - Password = Sub84ru#D0r15#Cu7h83r7!
KeePass/Password Database Password Sequence = C8W - Password = Cu7h83r7#84ghd4d#W1n570n!
PGP Encryption Password Sequence - DMS - Password = D0r15#M4r1ju4n4#Su84ru!
SDC C8W DMS
Tails comes preinstalled with KeePass, USE IT. The less passwords you know the better, generate the strongest passwords the DNMs will allow you to use and make sure that you include the correct URL in your database entry so you know you are always going to the right market.
Bitcoin Security
Bitcoin security is very important and obscuring your path is a valuable skill. If you plan on making a big DNM purchase then the most secure method is to purchase the BTC over a period of time or spread it over a few different exchange accounts by recruiting trusted friends to sign up and purchase BTC with your money. I try to keep BTC purchases from my bank below $500 each month.
Once you have purchased the BTC you have 2 options.
Most secure but biggest fees. Transfer your BTC to your chosen DNM through a trusted bitcoin tumbler. These services swap your BTC for other BTC essentially destroying the trail possible from the blockchain. Expect to pay 2.5% fees to the tumbler.
Least secure but smallest fees. Transfer your BTC to the wallet preinstalled on Tails and then to the DNM. This is less secure than tumbling but unless you are purchasing thousands of $ per month you shouldn't raise suspicion. I advise against transferring BTC directly from exchanges to your DNM accounts. This simplifies LEs job massively, don't make it easy for them!
If you plan on saving BTC there really is no more secure way than using a paper wallet. You can purchase tamper-proof seals and print very nice templates. With a strong password applied it doesn't really matter if someone gets the wallet. Always print off a duplicate for backup purposes and keep this away from the original; put it in a time capsule and bury it, ask your nan/parents to file it or put it in a bank lock-box.
When creating and printing paper wallets always ensure your PC is disconnected from the internet in every way to ensure keyloggers cannot record your desired password.
Tor Usage
Keep it private and to a minimum. Always ensure you are in a safe place before connecting and always operate alone. Always use trusted vendors and always order domestic. If you use Tor for DNM activity then do not use it for other browsing (even nefarious). Purchase a VPN with BTC and do your other activities through that.
*I do not condone any "nefarious" activities.
Conclusion
If you follow all of the above instructions and generally don't appear suspicious keeping your criminal activity to a minimum then I can guarantee you'll be as safe as I feel. I've been operating like this since 2011, I've been scammed multiple times with market and vendor exit scams but I do not believe I've ever made an operational security mistake.
Most of all be safe, the darknet markets are a gift from the Gods. We have all been given the freedom and ability to explore our minds and experience new chemicals safely with assurances about purity, don't be the twat that fucks it up for everyone!
"recruiting trusted friends to sign up and purchase BTC with your money."
BAD idea- even the most trusted friends can/ will flip to protect their own freedom.