Dark Web Insight
markets

Osiris Market — Active Darknet Research Profile

Research profile of Osiris Market: wallet-less escrow, PGP-authenticated, BTC and XMR, launched 2025 with three verified onion mirrors.

By Dark Web Insight Research Desk6 min readUpdated

Osiris Market launched in 2025 as an active darknet marketplace built around wallet-less escrow and PGP-authenticated identity. It accepts Bitcoin (BTC) and Monero (XMR), operates a 2-of-3 multisig escrow model, and publishes three verified mirror addresses signed by a master PGP key. This profile documents its technical architecture, category structure, and the verification steps a researcher would use to authenticate the market's identity. All information here is provided for academic and investigative research purposes.

Market Overview

Osiris Market entered operation in 2025, distinguishing itself from older wallet-based markets through its commitment to wallet-less transactions. No funds sit in a standing account — every order generates a fresh, per-order payment address. This eliminates one of the largest attack surfaces in darknet market history: the standing wallet balance that made the Empire Market exit scam possible.

The market accepts both Bitcoin and Monero. XMR transactions offer enhanced on-chain privacy through Monero's built-in ring signatures and stealth addresses. Bitcoin transactions are handled through 2-of-3 multisig, distributing key control between buyer, seller, and market — a model explained in more detail in our guide to how darknet escrow works.

Three .onion mirror addresses are published and PGP-signed by a master key. Mirror redundancy protects against single-point takedowns and reduces the risk of a vendor or buyer landing on a phishing clone.

Mirror Links and PGP Verification

Three mirrors are currently published for Osiris Market:

http://osirisydmkcypvzpes7r5xllbwviuwsjjeordq5uckgvohxpjjuzwjqd.onion
http://osirisdaec7ufbb3sbe3r355b2s7lwvw726l4z4oumg6kdddnomht3qd.onion
http://osirisrihh33vlxagzaeajyfza2w5dzvm4zvt5ztxiy6s2w5u3yvddqd.onion

PGP verification is essential before trusting any mirror. Phishing clones of active markets are common. The Osiris master public key is reproduced below for reference:

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=BWQ1
-----END PGP PUBLIC KEY BLOCK-----

To verify a signed mirror list:

  1. Import the official Osiris public key: gpg --import osiris-pubkey.asc
  2. Download the signed mirror list from the market's canonical onion address
  3. Verify the signature: gpg --verify mirrors.txt.asc mirrors.txt
  4. Only use mirrors whose addresses appear in a verified, signature-passing list

The Osiris master PGP public key (fingerprint: C7D21BD3F1B2024B4AE080E122EB458CC058771 6) is reproduced in full in this profile's frontmatter. To verify any mirror link, import the key with gpg --import, then run gpg --verify against the signed mirror list. For broader context on how PGP-verified markets use this authentication model, see our dedicated guide.

Account & Sign-in

Osiris Market uses anonymous account creation. Registration requires only a chosen username and password — no email address, no phone number, no identity information of any kind. This matches the standard approach across darknet markets that prioritize operational security for their users.

Login credentials are transmitted over the Tor hidden service connection. The market does not log IP addresses, though users are advised that Tor itself provides the anonymity layer and no market-side assurance substitutes for proper Tor browser hygiene.

Osiris Market login screen showing anonymous account fields

Two-Factor Authentication

Osiris Market implements PGP challenge-response as its second authentication factor. After a user enters their password, the market encrypts a random string using the user's registered PGP public key. The user must decrypt the challenge using their private key and submit the plaintext back to the market.

This design means that even a fully compromised password provides no access to an account — an attacker without the private key cannot pass the challenge. It also prevents remote session hijacking, since each login produces a unique encrypted challenge. The private key never leaves the user's machine.

Osiris Market two-factor authentication PGP challenge

Users who have not yet set up PGP should consult our PGP-verified markets guide before registering, as the 2FA system requires an existing keypair to function.

Product Categories

Osiris Market lists nine product categories as of the date of this profile. These are documented here for research and harm-reduction awareness purposes only:

  1. Opioids — pharmaceutical and synthetic opioid listings
  2. Stimulants — amphetamines, cocaine, and related substances
  3. Cannabis — flower, concentrates, and edibles
  4. Steroids — anabolic steroids and related performance compounds
  5. Benzos — benzodiazepines and anxiolytics
  6. Prescription — prescription medications sold without prescriptions
  7. Counterfeit — forged documents, currency, and branded goods
  8. Carding — stolen payment card data and related services
  9. Other — miscellaneous listings outside the above categories

The presence of Counterfeit and Carding categories alongside substance listings is typical of markets that began as drug-focused platforms and expanded scope over time. Researchers studying the intersection of darknet drug markets and financial crime should note that Carding and Counterfeit categories represent distinct law enforcement priorities and different harm profiles.

Osiris Market category listing — drugs, counterfeit, carding categories

Escrow and Payment

Osiris operates a wallet-less escrow model. The distinction matters: in a traditional wallet-based market, buyers deposit funds into an account maintained by the market — a pool that can be stolen in an exit scam or seized in a single law enforcement action. In a wallet-less market, no such pool exists. Each transaction generates a unique payment address; funds flow directly into escrow for that specific order.

Bitcoin transactions use 2-of-3 multisig (BIP11). Three parties each hold one key: the buyer, the vendor, and the market. Releasing funds requires two of the three keys to sign. In a standard transaction, buyer and vendor both sign on completion. If a dispute arises, the market co-signs with whichever party its arbitration ruling supports. Neither party can steal funds unilaterally; neither can the market.

Monero is also accepted, offering an alternative for users who prefer XMR's privacy architecture. Monero's ring signatures obscure transaction amounts and sender identities at the protocol level, providing a different security model than Bitcoin multisig.

Security Practices

Several security conventions are documented for this market:

  • PGP encryption for all communications: messages between buyers and vendors should be encrypted using each party's public key. The market enforces or strongly encourages this.
  • Vendor bonds: vendors are required to pay a bond before listing — a standard mechanism to reduce the number of throwaway scam accounts.
  • Dispute resolution: unresolved transactions escalate to market arbitration, where a staff member reviews order evidence and co-signs the multisig release accordingly.
  • Mirror signing: all published .onion addresses are signed by the market's master PGP key, allowing users to verify they are connecting to an authentic Osiris mirror rather than a phishing clone.

Frequently Asked Questions

Is Osiris Market a legitimate darknet marketplace?

Osiris Market is an active darknet marketplace as of 2025–2026. Its onion mirrors resolve, its PGP signing infrastructure is in place, and vendor activity has been reported across darknet monitoring communities. "Legitimacy" in a legal sense does not apply — the platform facilitates illegal trade. This profile documents it for research purposes.

How do I verify Osiris Market's PGP key?

Obtain the PGP public key directly from the market's canonical onion address. Import it with gpg --import osiris-pubkey.asc, then use gpg --verify on any signed document the market publishes. Never trust a PGP key sourced from a surface-web aggregator or forum post without cross-referencing against the onion source.

What cryptocurrencies does Osiris accept?

Osiris Market accepts Bitcoin (BTC) and Monero (XMR). BTC transactions use 2-of-3 multisig escrow. XMR transactions provide enhanced on-chain privacy through Monero's ring signature protocol.

How does Osiris's 2-of-3 multisig work?

In a 2-of-3 multisig transaction, three parties each hold one cryptographic key: buyer, vendor, and market. Releasing the escrowed funds requires any two of the three to sign. In normal transactions, buyer and vendor co-sign on delivery confirmation. In disputes, the market co-signs with the party its arbitration ruling favors. No single party can move funds alone.