Topic: Security & Verification

How do I verify a Tor market onion address is genuine?

Last reviewed: June 2026

Three checks, all of which should pass before you submit a password or fund an account.

1. Compare against a PGP-signed announcement

Every operator on this knowledge base pins a PGP-signed announcement on their Dread account that lists the current onion endpoints. Import the operator’s public key once, then verify the signature on the announcement. The endpoints in a successfully-verified post are the real ones; any address surfaced anywhere else (Telegram, Reddit, email) is not authoritative.

2. Compare against the page banner

Marketplaces in this segment reprint their canonical onion in the page header on every render. Compare what the page itself says it is against your browser address bar, letter by letter. The full string is 56 characters; partial-prefix matches are a known phishing pattern.

3. Check the captcha fingerprint

Several markets embed the canonical onion fingerprint into the login captcha image itself. A phishing clone cannot easily reproduce this. If the captcha fingerprint disagrees with your address bar, the clone is the address bar.

See also

Security & VerificationWhat is PGP and how is it used on Tor markets?PGP / GnuPG on hidden-service commerce: encrypting your shipping address, signing messages, verifying operator mirror announcements. Beginne…Read answer →Security & VerificationHow do I avoid Tor market phishing sites?Most money lost on Tor markets is lost to phishing clones, not exit scams. Concrete checks before logging in: signed announcements, page ban…Read answer →Security & VerificationWhat is a v3 onion address?A v3 .onion address is a 56-character ed25519 public-key identifier for a Tor hidden service. Structure, why partial matches are dangerous, …Read answer →