Unusual dark web FAQ: 50 strange questions and their real answers

The dark web fascinates, intrigues, and frightens in equal measure. Over twenty years of existence, it has generated a dense mythology, fueled by films, sensationalist YouTube videos, and digital playground rumors. Between Red Rooms, the mysterious "Mariana's Web," and sites supposedly selling absolutely everything, it is hard to know what is true, what is fantasy, and what is outright fraud.

⚫ This page is the showcase. The rest is elsewhere. Tor access →

This FAQ brings together the fifty strangest, most curious, or most surprising questions that internet users genuinely ask about the dark web, organized into seven themes. Each answer is written drawing on verifiable knowledge: public documents from the Tor Project, investigative journalism from the BBC, the New York Times, or ProPublica, reports from Europol and Interpol, and academic studies. When a question touches on a myth, that is stated clearly, along with the myth's origin and the factual elements that contradict it.

The goal is neither to dramatize nor to trivialize. The dark web exists; it is used every day by nearly three million people worldwide, for reasons ranging from reading a news article without ad tracking to genuinely criminal activities. Neither an absolute paradise of freedom nor a pit of horrors, it is a technical tool with its legitimate uses and its misuses. Let's start with the most common questions about surveillance, then move on to urban legends, unusual purchases, institutions, everyday life, technical topics, and finally the various curiosities people often hesitate to type into Google.

🔍 Surveillance and security: the real questions

Because using Tor intrigues, reassures, or worries people depending on the day, here is what the technology actually allows — and what it does not.

Does the FBI monitor me if I use Tor?

No, the FBI does not individually monitor Tor users — if only because the federal bureau has no legal jurisdiction outside the United States. More broadly, no intelligence agency, not even American ones, can maintain active and targeted surveillance over the two to three million daily users of the network.

Intelligence agencies do, however, take an interest in Tor traffic from a statistical standpoint and during specific investigations. Documents made public by Edward Snowden in 2013 revealed that the NSA had attempted to exploit vulnerabilities in Tor Browser (notably the operation codenamed "EgotisticalGiraffe"), but never managed to break the Tor network itself. Known attacks target the Tor Browser software or the end user — never the anonymization protocol.

In practice, if you use Tor to read an article from the New York Times or the BBC via their .onion version, you are simply one of the millions of internet users trying to escape advertising trackers. No agency has the resources to analyze that background noise. The real concern lies with Internet Service Providers, who can see that you are connecting to a Tor relay — but cannot see what you are doing once inside.

Can you be arrested simply for using Tor Browser?

No. In most Western countries, using Tor is perfectly legal and has never on its own been grounds for arrest. No law prohibits the use of anonymization technologies. What is penalized is illegal activity — not the tool used to access it.

The confusion often comes from media conflation: when a trafficker is arrested and happened to use Tor, headlines sometimes read "arrested thanks to Tor" — a misleading formulation. Tor was simply one of many tools used by the suspect, like a mobile phone or a laptop.

Some countries do have more restrictive legislation. China technically blocks access to Tor via its Great Firewall, Russia officially blocked tor.org in 2021, and Belarus, Iran, Turkey, and Saudi Arabia complicate its use. In France, Belgium, Switzerland, and Canada, Tor is fully legal. Journalists at major outlets use Tor daily to communicate with their sources.

Can my Internet Service Provider see that I am using Tor?

Yes. Your ISP can see that you are connecting to a Tor relay, but it cannot see what you do once inside the network. It sees the equivalent of a closed door: you entered, but the inside is invisible to it.

When you launch Tor Browser, your computer connects to a first relay called the "entry node" or guard node. This relay has a public IP address, often listed in the Tor relay directory, so your ISP can identify it. However, the layered encryption (the "onion") makes the content of your traffic and the addresses of the sites you visit completely unreadable.

If the idea of being visible to your ISP as a Tor user bothers you, you can use a "bridge" — a non-public relay — or combine Tor with a VPN. The obfs4 and meek bridges are designed to disguise Tor traffic as ordinary HTTPS traffic and are effective even in countries that practice Deep Packet Inspection.

Did the NSA actually break the Tor network?

No, and this is one of the most persistent myths in intelligence circles. The Snowden documents published by The Guardian in 2013 contain a famous slide titled "Tor Stinks," which explicitly admits that the NSA could not de-anonymize all users of the network, even with its considerable resources.

The NSA did develop several techniques to identify individual users — notably by exploiting flaws in Tor Browser via the FoxAcid framework, or by controlling a large number of relays to attempt traffic correlation attacks. These techniques work against specific targets, not against the network as a whole.

Tor's source code is open and regularly audited by cryptography researchers around the world. The Tor Project publishes annual security reports, audits by third-party firms such as Cure53, and collaborates with universities including Princeton, MIT, and KU Leuven. If a systemic flaw existed, it would be quickly discovered and fixed. Part of Tor's funding actually comes from the US government itself, via the Open Technology Fund — which illustrates the complexity of the relationship between agencies and the network.

Do French intelligence services (DGSI or DGSE) monitor Tor users?

French intelligence services have, like their foreign counterparts, surveillance capabilities over public Tor relays — but they cannot technically monitor the real-time activity of an isolated user. The DGSI focuses on domestic intelligence and counter-terrorism; the DGSE handles foreign intelligence.

Under article L811-3 of the French Internal Security Code, the services can request judicial authorization for targeted surveillance of an individual suspected of terrorist or criminal activities. That surveillance may include traffic analysis, but it remains individual and judicially supervised — not generalized.

No public document suggests that French services have a capacity equivalent to the NSA for breaking Tor. They rely instead on human intelligence, infiltration, and exploiting the operational security ("opsec") mistakes made by targets. A significant share of high-profile arrests linked to Tor rests on the fact that suspects, at some point, mixed their real identity with their Tor activity.

Can you be identified while using Tor from a hotel room?

Yes and no. Using Tor over a hotel's Wi-Fi offers no more anonymity than using it at home: the network encrypts your traffic, but the hotel can see that someone in the building is using Tor. If you checked in under your real identity, you are potentially linkable to that session.

The real identification risk does not come from the Tor network itself, but from peripheral metadata: the check-in timestamp, the MAC address of your device, lobby cameras, room-access card logs. A determined investigator can cross-reference this information to trace you — even if your activity on Tor remains unreadable.

Journalists working on sensitive files generally use Tails OS, an amnesic system launched from a USB drive that leaves no trace on the hard drive. Combined with using a public Wi-Fi that cannot be associated with them (a random café rather than their hotel), the risk of metadata-based identification becomes very low. But the real secret of anonymity remains discipline: never mix your real identity with a Tor session.

Is it safer to use Tor on a café's Wi-Fi than at home?

Not necessarily. A public Wi-Fi simply shifts the observer: your home ISP no longer sees anything, but the café — or rather the network providing its Internet connection — now sees that someone is using Tor on their network. If the venue has cameras, your physical presence is recorded.

The advantage of a public Wi-Fi is breaking the direct link between your named Internet subscription and your Tor activity. This is useful for circumventing surveillance in an authoritarian country, or for preventing an employer who provides your home connection (it happens) from detecting Tor use. The drawback is that public Wi-Fi networks are often poorly secured: the network operator can analyze incoming traffic.

In practice, for everyday Tor use (reading press articles via their .onion, using DuckDuckGo, browsing OnionDir), the comfort of home outweighs the marginal security gain of a café. For more sensitive uses (communicating with a source, whistleblowing via SecureDrop), a controlled environment like Tails on public Wi-Fi provides a real benefit.

Can my employer see that I use Tor at work?

Yes. Your employer can see that you are using Tor from its corporate network, because all outgoing traffic passes through the company gateway. IT teams generally have network monitoring tools that detect connections to Tor entry nodes, which are publicly listed.

In many companies, using Tor at work is explicitly prohibited by the IT policy, for security reasons (Tor can be used to exfiltrate data) or compliance reasons (regulated sectors such as banking, healthcare, or defense). Violating that policy can constitute a disciplinary offense, or even grounds for dismissal.

If you want to protect your privacy at work without taking risks, it is better to use your personal connection (4G/5G on your smartphone) for private browsing. For legitimate professional uses that require Tor — for example, a journalist who needs to contact a source, or a cybersecurity researcher studying threats — there are solutions coordinated with the IT team, such as dedicated machines isolated from the rest of the network.

👁️ Dark web urban legends: separating fact from fiction

Over twenty years, the dark web has generated a dense mythology, fueled by forums like 4chan, sensationalist YouTube videos, and movie screenplays. Here we address the most famous legends.

Does Mariana's Web really exist?

No, Mariana's Web does not exist. It is an urban legend born around 2011 on 4chan forums and massively recycled by sensationalist YouTube channels. According to the myth, Mariana's Web is a hidden "level 5" or "level 6" of the dark web, containing humanity's best-kept secrets, accessible only through advanced cryptographic methods involving mysterious "quantum computers."

Technically, the story falls apart immediately. The Tor network is flat: there are no successive "levels." Either a .onion site is accessible, or it is not. No mechanism in the Tor protocol provides for hierarchical access to deeper zones. .onion v3 addresses simply require the full public key of the hidden service — 56 characters — not a quantum machine.

The myth took hold because it satisfies a narrative need: imagining that there is always a deeper, more secret, more inaccessible layer of the Internet. In reality, what hides best is not "deeper" — it is simply what is not indexed and whose addresses are only shared between trusted parties. Military archives, corporate databases, and diplomatic networks exist, but they are not on the dark web — they are on their own private networks, completely inaccessible from the Internet.

Are Red Rooms real on the dark web?

No, no Red Room has ever been authenticated. The myth describes live rooms where spectators pay in Bitcoin to commission acts of torture on victims filmed in real time. Investigations conducted by investigative journalists, cybersecurity researchers, and law enforcement agencies (including Europol) have never found the slightest evidence of such a thing.

What is found instead are scams that exploit credulity: sites that promise access to a Red Room in exchange for several Bitcoins, then disappear with the money without ever broadcasting anything. Investigations by BBC, Wired, and Vice have documented these scams, some of which collected six-figure sums from individuals who thought they were buying privileged access.

Technically, live video streaming over Tor is difficult: the network's bandwidth is low, latency is high, and a live session would be far easier to trace than pre-recorded content. Police officers who track online criminal networks — which, unfortunately, do exist — confirm that the bulk of those activities takes place on hidden platforms but is not live-streamed. Red Rooms, as described in the mythology, remain a media fantasy.

Are there really 7 hidden levels of the dark web?

No. This eight-level pyramid that has been circulating since 2012 is a fictional creation. It presents the Internet as an iceberg cut into floors: Clearnet, Deep Web, Mariana's Web, Liminal, Virus Soup, Fog/The Quantum, Primarch System… Each version of the diagram differs, which is already a signal that nothing is standardized.

Technically, only two real layers exist on the Internet: the surface web, indexable by Google, and the deep web — everything that is not indexed (your emails, your bank accounts, internal databases, password-protected sites). The dark web, of which Tor is the best-known example, is a small portion of the deep web accessible via specific protocols. There is no "lower level."

The pyramidal diagram spread because it is visually appealing and flatters the imagination. It has been reproduced in countless clickbait videos accumulating millions of views. Some iterations even reference the "Primarch System," supposedly inaccessible to humanity, which secretly controls the Internet from a server in orbit. Pure science fiction. If you want to genuinely understand how the Internet is structured, the eight-level iceberg metaphor is one to forget.

Does the "Shadow Web" site exist?

No, the Shadow Web as described in online mythology does not exist. The legend claims it is a level above the dark web where one can pay to attend prohibited live events. The origin of the myth traces back to a viral video from 2014, presented as a documentary but later identified as staged fiction.

Several sites have called themselves "Shadow Web" at different times, but they were either ordinary blogs playing on the evocative name, or scams designed to extract Bitcoins from internet users fascinated by the idea of an ultra-secret level. No serious investigation has ever documented a platform matching the description of the legendary Shadow Web.

The term continues to circulate nonetheless, fueled by YouTube storytelling channels and Reddit threads. As with Mariana's Web, the narrative need is stronger than technical reality: internet users want to believe that a layer even more hidden than the one they know exists. The actual dark web is more prosaic: forums, independent media, encrypted messaging services, and yes, a share of illegal activity that remains concerning but documented.

Can you access top-secret CIA documents on Tor?

Yes, paradoxically, the CIA itself launched an official .onion site in 2019 (ciadnpp3lmtcpaf2td6247bgl66vmpulkxkh4p5q3mymy3kp6ghnkcid.onion) to receive communications from whistleblowers. But no, you will not find classified documents available for free download. That would be illogical: if they were accessible, they would no longer be secret.

The CIA's .onion site looks like its clearnet version and offers a secure contact form to reach the agency. The goal is to give potential informants — particularly those in authoritarian countries — a communication channel that escapes surveillance by their own government. Declassified CIA documents are publicly accessible via the online CREST library, but these are historical documents voluntarily made public, not leaks.

Real leaks of US government documents pass through whistleblowing platforms like SecureDrop, used by ProPublica, The Washington Post, The New York Times, and The Intercept. It was through this channel that Edward Snowden transmitted his NSA archives to Glenn Greenwald and Laura Poitras. The dark web is an instrument of secure communication, not a warehouse of downloadable classified documents.

What is the "Closed Shell System" and does it exist?

The "Closed Shell System" is an element of dark web mythology, often placed at "level 6" or "level 7" in fanciful pyramidal diagrams. It is described as a closed network, isolated from the Internet, where only certain initiates have access to hidden information. None of this corresponds to any documented reality.

There are, however, real closed networks — but they have nothing to do with the dark web: classified military networks (SIPRNet, JWICS in the United States), corporate intranets, secure diplomatic networks. These systems are physically isolated from the Internet ("air-gapped"), are not accessible via Tor, and form no part of any dark web hierarchy.

The success of the term "Closed Shell System" stems from its convincingly technical sound. It gives the impression of having computing legitimacy, when in fact it was invented from scratch to feed the myth of "hidden levels." If you read an article presenting the Closed Shell System as a fact, you can reasonably conclude that the entire source is fiction.

Is the "Quantum VPN" that grants access to level 8 real?

No. The "Quantum VPN" that supposedly allows access to the ultra-deep levels of the dark web does not exist. The concept mixes two unrelated things: quantum computers, which are very real research machines but incapable of such feats, and VPNs, which are ordinary encrypted tunnels. The association is purely narrative.

Current quantum computers (those from IBM, Google, or university labs) cannot break modern encryption algorithms, and above all they are neither portable nor installable on a personal computer. They require cryogenic infrastructure and weigh several tons. No "quantum VPN" is commercially available, and even if one were, there would be no "level 8" to reach, since that level itself does not exist.

This type of fantastical concept thrives because it ticks all the boxes of technological mystery: quantum + VPN + secret level = effective narrative. The actual reality of post-quantum encryption — which organizations like the American NIST are working on — concerns the resistance of algorithms against future sufficiently powerful quantum computers. That research is public, documented, and has nothing to do with any hierarchical access system on the dark web.

Are stories about "haunted" sites on the dark web true?

No. "Haunted" dark web sites belong to digital folklore rather than reality. Many YouTube videos present terrifying screenshots of alleged .onion sites that supposedly react to mouse movements, speak to the user, or reveal personal information. Most are staged productions created to generate views.

There are, however, a few .onion sites deliberately designed to unsettle the visitor, in an aesthetic close to "creepypasta" or experimental digital art. These sites are not haunted — they are simply artistically disturbing. Some artists and collectives use the dark web as an alternative gallery to display works that would not find a place on the clearnet.

The confusion between unsettling digital art and a "haunted site" stems from the general atmosphere of the dark web: minimalist interfaces, black visuals, raw typefaces, the absence of the reassurance typical of commercial Internet. In this context, a simple art site can seem supernatural. But none of that implies anything supernatural — it is HTML code, just like everywhere else.

🛒 Unusual purchases and strange services: what can you really buy?

The myth of the "dark web marketplace" where anything can be bought dies hard. Let us sort out the services that are genuinely offered (and often fraudulent) from those that are pure fiction.

Can you really hire a hitman on the dark web?

No. Sites that claim to offer hitman services on the dark web are all documented scams. Not a single verified case exists in which a client ordered an assassination via a .onion site and the act was actually carried out. On the other hand, dozens of scam cases — and even arrests of clients entrapped by fake sites operated by police — are publicly documented.

The most famous case is "Besa Mafia," a site that claimed to offer Albanian hitman services and collected the equivalent of several hundred thousand dollars in Bitcoin. The site was a total scam: no order was ever executed, and commissioners were identified and arrested — such as American national Beau Bryant in 2022, sentenced to ten years in prison for soliciting the murder of her stepdaughter.

The technical and human reasons why this "market" does not work are numerous. A real contract killer has no interest in meeting clients via a public site, even a hidden one: it exposes them to police infiltration. Organized violent crime operates through human networks, not online marketplaces. Sites displaying "price lists" (ten thousand dollars for a murder, fifty thousand for a politician) are honeypots. Paying means losing your Bitcoin and, increasingly often, ending up before a judge.

How much does a real counterfeit passport cost on the dark web?

Listings circulating on dark web marketplaces display prices between 800 and 5,000 euros for a counterfeit European passport, depending on the promised quality. But beware: the vast majority of these offers are scams. Honest sellers are rare in this market, and law enforcement has infiltrated several historically significant vendors.

Actual counterfeits, when they exist, fall into two categories. "Fantasy" documents look visually like a passport but pass no computerized check: they are registered in no official database. "Authentic fakes" are far rarer and more expensive — sometimes ten to twenty thousand euros — and originate either from thefts at official printing facilities or from inside accomplices in government agencies. These networks are regularly dismantled.

Buying or possessing a fake passport is a serious offense in every European country. In France, article 441-2 of the Penal Code punishes this with seven years of imprisonment and a 100,000-euro fine. Beyond the legal risk, the scam risk is massive: marketplace review forums are full of buyers who lost their money without ever receiving a document. The dark web is not an eBay for official papers.

Can you buy a kidney or human organs on the dark web?

No. No functioning human organ market exists on the dark web. Sites that claim to offer them are unanimously identified as scams by researchers who study dark web marketplaces. The idea of an online "organ market" belongs entirely to media fantasy.

Organ trafficking does unfortunately exist in the real world, but it operates through complex human networks involving complicit clinics, corrupt doctors, and physical intermediaries. No part of this market can operate via a website, even a hidden one: donor-recipient compatibility, procurement logistics, cold preservation, and surgery all require coordination that the dark web cannot provide.

.onion sites that present themselves as "organ markets" play on morbid fascination and scam naive visitors who send a Bitcoin deposit. In every documented case, no one has ever received an organ or even a serious follow-up after payment. The World Health Organization and Interpol, which combat real organ trafficking, confirm that the phenomenon takes place in the physical world, not online.

Does a dark web "Uber Eats" exist?

No. There is no operational food delivery service on the dark web. Some jokes and artistic projects have used the name, but no functioning commercial food delivery service offers a .onion version. The real logistics of such a platform require employees, partner restaurants, and identifiable delivery drivers — the very opposite of anonymity.

Curiously, some traditional delivery apps could technically work over Tor for a privacy-conscious user: simply switch Tor Browser to desktop mode and connect normally to Uber Eats or Deliveroo. But the experience would be poor (high latency, frequent geographic blocks, annoying cookies and fingerprinting) and the delivery address identifies you anyway.

This question illustrates an often-overlooked aspect of the dark web: it does not replace the Internet for everyday uses. Services that require a real identity, a physical address, a card payment, or a home delivery cannot exist in an ecosystem designed for anonymity. The dark web is a specialized tool, not a universal parallel Internet.

Can you hire a hacker on the dark web?

Listings offering "hacker for hire" services are abundant on .onion forums, but their credibility is very low. The vast majority are either scams or traps set by law enforcement agencies looking to identify those who commission them. The few real services almost exclusively involve already-automated attacks (DDoS, credential stuffing) available at low cost, requiring no particular skill from the "hacker."

Genuinely skilled hackers — whether working in offensive security research or organized cybercrime — do not advertise on public marketplaces. They are recruited through personal networks, in private invitation-only forums, or directly employed by structured groups. A qualified security researcher does not take random clients via a listing on Dread.

The services offered publicly — "Instagram account hack for 100 dollars," "hacked email recovery for 200 dollars," "fake grade on an exam" — are bottom-of-the-barrel. Pseudo-vendors pocket the Bitcoin and disappear. When a service is actually delivered, it is usually targeted phishing (sending a fake email to the victim), not real hacking. The average price of these alleged services — ranging from 50 to 500 dollars — is moreover inconsistent with the actual skills of a capable attacker.

Are yachts and luxury cars really sold on the dark web?

No. No market for real luxury goods operates on the dark web. Listings mentioning the sale of yachts, Ferrari or Lamborghini cars, or tropical villas are systematically scams. The reason is simple: these goods require official documentation, a registered property transfer, and physical delivery — everything the dark web cannot offer.

The myth originates from viral screenshots showing marketplaces with well-stocked "luxury categories." These pages do exist, but the transactions are fictional. No one has ever received a yacht after a Bitcoin payment on a .onion site. "Stolen vehicle resale networks," when they exist, operate locally with physical dealers, not via the Internet.

The dark web is, however, rich in digital products: Netflix accounts, hacked PayPal accounts, stolen credit cards, personal data. These markets work because delivery is instant and dematerialized — a simple username and password. As soon as physical logistics enter the picture (an object to ship, a license plate to transfer), dark web marketplaces lose their relevance.

Can you order firearms in France via the dark web?

Technically, weapon sale listings do circulate on some dark web marketplaces, but delivery to most countries is extremely risky and very often fraudulent. Customs agencies in many countries operate scanners and sniffer dogs in all international postal sorting centers, and regular operations intercept such packages.

French legislation on weapons is among the strictest in Europe. Possessing, buying, or importing a Category A or B weapon without authorization is a serious offense, punishable by at least five years of imprisonment and a 75,000-euro fine (article L317-1 of the Internal Security Code). Buyers identified via the dark web are prosecuted with the same severity as those using traditional channels.

In 2016, a joint Europol-DGSI operation dismantled a dark web weapons sales network in France, leading to the arrest of several dozen individuals. Since then, similar operations have multiplied. Alleged sellers on marketplaces today are mostly scams or undercover operations. Buying a weapon via the dark web is tantamount to ordering your own indictment.

Do "mystery boxes" exist for sale on the dark web?

Dark web "mystery boxes" have been a viral YouTube trend since 2018, with creators filming the opening of parcels ordered on Tor. In the vast majority of cases, these videos are staged commercial productions. Real dark web mystery boxes, when they exist, generally contain junk or nothing at all, and buyers lose their money.

The concept plays on morbid fascination: you pay between 50 and 500 dollars in Bitcoin, and receive a box whose contents are theoretically random and potentially dangerous. YouTube creators filming the opening regularly display unsettling objects: damaged dolls, mysterious handwritten notes, unidentified CDs. These productions serve to generate millions of views; the objects were purchased separately to build the narrative.

A few sincere buyers have reported less spectacular experiences: an empty box, a batch of infected USB drives, or basic contraband. But none of the viral stories featuring terrifying objects has ever been authenticated. Mystery boxes are 99% fictional content designed for social media — the remainder being classic fraud.

🏛️ Celebrities, institutions, and media: who has a .onion site?

Contrary to popular belief, many official institutions maintain .onion sites. Here is an overview of these legitimate presences and the rumors surrounding them.

Which celebrities have an account on the dark web?

No well-known celebrity communicates publicly from a .onion account. By nature, a public identity and an anonymization service are incompatible: the whole point of Tor is precisely not to be identifiable. Rumors claiming that this or that actor, musician, or athlete "operates a dark web account" are clickbait.

It is, however, plausible that public figures use Tor for privacy needs: checking email via ProtonMail's .onion, reading media via the BBC's or the New York Times' .onion, communicating with journalists via SecureDrop. These uses leave no public trace and are not the subject of testimonials.

In journalism and human rights circles, some figures have publicly mentioned their use of Tor: Edward Snowden obviously, but also Laura Poitras, Glenn Greenwald, Julian Assange, and Naomi Klein. In the technology world, Roger Dingledine and Jacob Appelbaum directly contributed to the project's development. But none of these people have a public "dark web account" — they simply use Tor as a tool.

Does the Vatican have a .onion site?

No, the Vatican does not have an official .onion site. No .onion address has ever been claimed by the Holy See or by the Vatican Information Service. Recurring rumors about an alleged "secret Vatican site" containing documents from the Apostolic Archives are unfounded: the Archives exist, but they are physical, located in Rome, and their partial digitization is accessible on regular websites, not on Tor.

That said, many religious institutions in persecutorial countries use Tor as a secure communication channel. Underground Christian networks in China, interfaith associations in Iran or North Korea, use Tor to exchange documents and organize meetings without being detected by state surveillance. These uses are documented by NGOs such as Open Doors and Christian Solidarity Worldwide.

The idea of a Vatican with secret documents on the dark web is fueled by popular culture (Dan Brown, Illuminati theories) rather than any reality. The Vatican has digitized part of its historical manuscripts and offers them freely on DigiVatLib. Nothing is hidden behind a .onion.

Do the Élysée Palace or the French government have .onion sites?

No. Neither the Élysée Palace, nor the Prime Minister's office, nor French ministries have an official .onion site. No central institution of the French Republic has, unlike American intelligence agencies or some public media, chosen to publish an onion address.

The CIA, the FBI, and other American agencies have opened .onion sites to receive communications from anonymous informants. The BBC launched its .onion to circumvent censorship in authoritarian countries. France has not taken this path, even though discussions exist within ANSSI and DINUM about possible uses of Tor for sensitive public services.

Some French government bodies do use Tor internally, particularly for intelligence or cybersecurity research needs. ANSSI regularly publishes technical recommendations that concern, among other things, anonymization technologies. Journalists at AFP, Mediapart, Le Monde, and Radio France have SecureDrop instances to receive documents from confidential sources; these instances work fine over Tor, but they belong to news organizations, not the state.

Does Facebook really have a Tor version?

Yes. Facebook launched in 2014 an official version accessible via Tor at the address facebookcorewwwi.onion (v2), then a v3 version (facebookwkhpilnemxj7asaniu7vnjjbiltxjqhye3mhbshg7kx5tfyd.onion) in 2021. It was the first major commercial platform to make this choice, to allow users in countries that censor the social network to access it regardless.

The move may seem surprising for a company whose model relies on personal data collection, but Facebook explains the presence by its desire to ensure connectivity in countries such as China, Iran, and Cuba. The .onion site applies exactly the same security rules as the clearnet version: you still need an account tied to an identity, and you still must accept the terms of service. The anonymity provided by Tor concerns only the act of accessing the service — not the data you share on it.

This initiative was followed by several major platforms: ProtonMail, Twitter (until the .onion was closed in 2022 after Elon Musk's acquisition), DuckDuckGo, GitHub, Reddit (partially), and WikiLeaks. In the media world, BBC, NYT, ProPublica, Deutsche Welle, and Radio Free Europe/Radio Liberty all have their .onion. This trend has considerably expanded the legitimate ecosystem of the dark web in recent years.

Do the BBC and Le Monde have .onion sites?

The BBC has maintained since 2019 an official .onion site (bbcnewsd73hkzno2ini43t4gblxvycyac5aw4gnv7t2rccijh7745uqd.onion) that offers exactly the same content as its clearnet version. The initiative was primarily aimed at circumventing censorship in China, Iran, and other countries where BBC News is blocked. The site is updated in real time and available in multiple languages.

Le Monde, however, does not have an official .onion for its editorial content. The French newspaper does have a SecureDrop portal for whistleblowers, accessible via Tor, which allows confidential sources to transmit documents securely. Mediapart offers a similar setup. AFP has explored these uses without yet making a .onion address public for its articles.

The major international outlets that maintain a .onion are numerous: The New York Times (since 2017), ProPublica (the first major newsroom to do so, in 2016), The Guardian (for SecureDrop), Deutsche Welle, Radio Free Europe, The Intercept, Forbes, Bloomberg (SecureDrop only), and others. This presence is becoming a standard for media outlets that champion an independent editorial policy and wish to remain accessible despite censorship.

Do intelligence services have their own sites on Tor?

Yes. Several Western intelligence agencies maintain official .onion sites, primarily as communication channels for potential sources. The CIA opened its .onion in May 2019, followed by the FBI a few years later. The stated goal is to allow informants — particularly those in authoritarian countries — to make contact without risking interception by the services of their own country.

The CIA's .onion site offers a contact form in about a dozen languages to allow people around the world to communicate with the agency. The approach is relatively transparent: the .onion presence is announced on the official clearnet site, and communication protocols are documented. Agencies such as the British MI6 do not have a public official .onion, but use other encrypted channels.

One might wonder at intelligence services using Tor — a tool they have simultaneously attempted to attack. The contradiction is only apparent: the Tor Project is funded in part by the US government via the Open Technology Fund, precisely because the network serves strategic interests of free information flow. The same technology that allows Chinese dissidents to circumvent censorship can serve foreign informants communicating with the CIA. Tor is a tool; its uses speak volumes about the complexity of the world.

☕ Everyday life on the dark web: unsuspected uses

Beyond the uses covered by the media, the dark web also hosts peaceful, ordinary, and sometimes entirely mundane activities. A brief tour of the services rarely talked about.

Can you play video games on the dark web?

Yes, but the offering is modest and primarily oriented toward minimalist games. .onion sites offer online chess games (TorChess, for example), versions of tic-tac-toe, checkers, or simple puzzles. A few MUDs (Multi-User Dungeons) — those collaborative text-based games that were the ancestors of MMOs — also run on Tor.

Bandwidth-hungry games, such as online FPS or modern MMORPGs, are technically unsuited to the Tor network. The high latency, variability in response times, and reduced bandwidth make these experiences unplayable. A ping of 500 ms to 2 seconds, common on Tor, is incompatible with competitive games that demand reaction times of a few tens of milliseconds.

An interesting niche involves turn-based, correspondence, or asynchronous games — perfectly suited to the technical constraints of the dark web. Some chess or go clubs use .onion sites to organize tournaments where participants wish to preserve their anonymity. There are also Tor servers hosting text-based role-playing games, direct heirs of the BBS culture of the 1990s, which maintain an active but discreet community.

Do radio stations broadcast on the dark web?

Yes. Several radio stations stream continuously on the dark web. The best known is "Deep Web Radio" (formerly "Radio Free Tor"), which offers several themed music channels accessible via Tor. The lineup includes alternative rock, electronic music, jazz, and royalty-free podcast programs.

The appeal of a dark web radio is not technical but philosophical: it offers broadcasting that requires no tracking, no account, no advertising cookie, and that remains accessible in countries where free radio is censored. Listeners tune in with total anonymity — something impossible on Spotify, Deezer, or YouTube Music.

Other initiatives explore audio on Tor: independent political programs, investigative journalism podcasts, and readings of public-domain works. Some cybersecurity podcast creators systematically publish a Tor-accessible version alongside their regular channels. The niche remains small, but it illustrates the diversity of legitimate uses on the dark web.

Can you watch Netflix via Tor Browser?

Technically yes, but the experience is so degraded that there is no point. Netflix regularly blocks the IP addresses of Tor exit nodes, which its anti-VPN system considers high-risk. Even when the connection goes through, the bandwidth available on Tor is insufficient for high-definition video: dropouts and buffering are near-constant.

More broadly, major streaming platforms (Netflix, Disney+, Prime Video) have implemented very effective VPN and Tor detection systems. Geolocated content is strictly filtered, and access from a Tor node most often returns an error page. This commercial ecosystem is incompatible by design with anonymity.

For occasional and legal video viewing over Tor, a few alternatives exist: PeerTube (the federated, open-source version of YouTube) works well via Tor, with some instances even accessible via a direct .onion. LBRY and Odysee are also usable. For editorial content from major outlets, the .onion versions of the BBC or Deutsche Welle stream video reports without restriction, even at reduced quality.

Are there dating sites on the dark web?

Yes, a few dating sites operate on the dark web, but their audience is very limited and their reliability questionable. These platforms primarily attract users seeking total anonymity — either for personal security reasons (people in hostile domestic situations, persecuted political activists) or for more troubling motivations.

The major mainstream dating apps (Tinder, Bumble) cannot function on Tor for the same reasons as social networks: they require a real identity, photos, and geolocation — all of which are fundamentally at odds with anonymity. The .onion sites that do exist are therefore very specific niches: activist networks seeking like-minded partners, LGBT communities in countries where homosexuality is criminalized, or purely text-based encounters where photos are prohibited.

Warning: these sites are frequently used by scammers specializing in romance fraud. The modus operandi is classic — building an emotional relationship via messages, then requesting money in Bitcoin. Victims, sometimes vulnerable and isolated individuals, can lose considerable sums. If a dating platform on Tor exists, it should be approached with far greater caution than any clearnet application.

Does the dark web have its own influencers?

Yes and no. The dark web has its figures, but in the traditional sense of the word "influencer" (a content creator followed on social media), the answer is no: by definition, anonymity makes it impossible to build a monetizable public persona. The most visible users are so under pseudonyms and have no real commercial audience.

That said, certain pseudonyms have become well known within their ecosystem. On Dread, a few administrators and moderators — "HugBunter," the platform's founder, or "Paris" — are known throughout the community for their longevity and contributions. In technical forums, former Tor developers, some investigative journalists, and security researchers participate regularly under pseudonyms. Their contributions carry weight in discussions.

The real influence on the dark web therefore plays out in the parallel universe of YouTube, TikTok, and X content creators who talk about the dark web from the clearnet. Some channels have millions of views on their darknet videos, and they exercise genuine influence over public perception of the subject — even though they do not operate from Tor themselves. This is a paradox: the influencers of the dark web are never actually on the dark web.

Can you do regular shopping on the dark web?

No. Legitimate e-commerce sites do not offer a .onion version, with rare exceptions. Amazon, major retailers, and fashion platforms are not officially accessible via Tor, and connecting to clearnet sites through Tor Browser is often blocked or met with repeated CAPTCHAs. Data collection and card payment are fundamentally incompatible with anonymity.

There are, however, a few interesting niches. Some alternative vendors (independent bookshops, music labels, digital artisans) occasionally offer a .onion address to sell their products with cryptocurrency payment. Goods are delivered to a standard postal address, which partially breaks anonymity, but allows privacy-conscious customers to buy without leaving a banking trace.

The only truly "normal" products that sell in volume on the dark web are digital goods: software licenses, audiovisual content, ebooks, and online service accounts. Unfortunately, the vast majority involve piracy or the proceeds of cyberattacks: stolen Netflix accounts, Windows keys generated by keygens, hacked PayPal credentials. The market for legally sold goods remains marginal.

Is there advertising on .onion sites?

Yes, but in a very limited form very different from the clearnet. Dark web advertising cannot rely on the usual mechanisms (Google Ads, Facebook Ads, third-party cookies, behavioral tracking) because Tor Browser specifically blocks these technologies. The ads found there are closer to the static banners of the Internet of the 2000s.

Some dark web directories and search engines monetize their traffic through simple banners: an image, a link, a fixed price per thousand impressions. Advertisers are mainly dark web services themselves: marketplaces, Bitcoin mixing services, .onion hosting providers, privacy tools. Some clearnet advertisers (VPN providers in particular) occasionally appear.

This system presents a delightful paradox: advertising on Tor, by technical necessity, respects users' privacy more than advertising on the ordinary web. No tracking pixel, no fingerprinting, no retargeting. It is in some ways a return to the roots of online advertising, before the industry became a surveillance machine. The model remains marginal: most .onion services operate without advertising, often out of ideology or because their traffic is too low to justify monetization.

Can you have a personal blog on .onion?

Yes, absolutely. Many people maintain personal blogs on the dark web, often under pseudonyms, to write freely without fear of surveillance, censorship, or social pressure. Technically, creating a .onion blog requires only a simple setup: a web server such as nginx, the Tor software configured in hidden service mode, and a few minutes of configuration.

The topics covered are varied: anonymous personal diaries, political commentary from authoritarian countries, mental health narratives, testimonies on sensitive subjects (addictions, sexual identity in hostile contexts, victims of violence). Some technical bloggers in the Tor community also maintain .onion blogs to publish their cybersecurity analyses.

Specific platforms make hosting blogs on Tor easier. OnionShare even allows publishing a static site directly from one's personal computer, without a dedicated server. A tool like Ricochet Refresh offers instant messaging entirely on Tor that complements a blog well. The dark web ecosystem thus includes dozens or even hundreds of individual voices, each writing for a few dozen or hundred readers — far from the forced virality of commercial social networks.

⚙️ Curious technical questions: understanding how it works

The dark web raises many technical questions. Here are clear answers about what actually happens under the hood.

Why are .onion addresses so long?

Because they are actually cryptographic public keys encoded in base32, not human-readable domain names like those on the clearnet. A .onion v3 address contains 56 random characters followed by the .onion suffix, which corresponds to the encoded representation of a 256-bit Ed25519 public key. The length is not an aesthetic choice — it is a security constraint.

This architecture has a major advantage: there is no centralized system equivalent to DNS for registering and resolving .onion addresses. The key itself is the address, and the authenticity of the connection is proven mathematically. No one can redirect you to a fake BBC.onion without holding the corresponding private key — which remains cryptographically impossible.

Version 2 addresses, used until October 2021, were 16 characters long but were deemed insufficiently secure against tomorrow's quantum computers and certain collision attacks. Version 3 triples the size to achieve a security level equivalent to several thousand years of brute-force computation. Some projects are already exploring post-quantum versions that could make addresses even longer, but nothing is deployed yet. Length, here, is the price of mathematical anonymity.

Why do .onion sites look so outdated?

Because the majority of .onion sites prioritize security and performance over aesthetics. On the dark web, every external resource (CSS, image, font, JavaScript) is a potential vector for attack or fingerprinting. Designers therefore strip out almost everything: the result is sober, black-and-white pages with minimal styling, visually very close to the web of the 1990s.

Tor Browser's highest security mode ("Safest") disables JavaScript, WebGL, custom fonts, HTML5 audio, and SVG images. A design-heavy site will work poorly in this mode. Far-sighted creators therefore design their sites to be usable without JavaScript and with minimal resources — which means returning to simple HTML-CSS pages comparable to what webmasters built in 1998.

The second factor is bandwidth. The Tor network routes your traffic through several relays around the world, which inevitably slows downloads. A .onion site that loads quickly is one with few heavy images and few third-party resources. Dark web webmasters have therefore long embraced performance principles that would only come back into fashion on the clearnet with Core Web Vitals and green computing. The brutalist aesthetic of the dark web, before being a choice, is a technical necessity.

How many active .onion sites exist today?

Official Tor Project statistics indicate that several hundred thousand unique .onion v3 addresses are observed each month by relays, but the number of sites actually accessible at any given moment is much lower. Serious estimates cluster around 30,000 to 80,000 active sites, depending on the period and the measurement method.

The gap between observed addresses and genuinely accessible sites is explained by several factors. Many addresses correspond to internal services of applications (for example, OnionShare generates a temporary address with each share) and are not "sites" in any meaningful sense. Others are test addresses, mirrors, or ephemeral services that appear and disappear within a few days. The stable core of the dark web — what one might call "the durable ecosystem" — likely represents a few thousand sites.

These figures should be compared to the 1.8 billion sites on the regular web counted by Netcraft. The dark web, in volume, represents a tiny fraction of the Internet. This disproportion explains why most Tor users primarily consult the .onion versions of well-known clearnet sites (BBC, New York Times, Facebook), and secondarily a few directories like OnionDir or The Hidden Wiki. Services exclusive to the dark web remain a minority in terms of users.

Does the Tor network consume a lot of electricity?

No. The Tor network consumes very little electricity compared to the Internet as a whole. The network relies on approximately 7,000 volunteer relays distributed around the world, each often being a modest server or even a Raspberry Pi drawing a few watts. The total energy footprint is estimated at a few hundred thousand kilowatt-hours per year — equivalent to a few hundred households.

By comparison, a single Amazon Web Services data center consumes more than the entire Tor network. Major video streaming platforms (Netflix, YouTube) each consume hundreds of thousands of times more energy than Tor. The dark web, in terms of ecological impact, is negligible.

The confusion sometimes comes from associating the dark web with cryptocurrencies, particularly Bitcoin, whose electricity consumption is indeed massive (over 100 TWh per year). But Bitcoin is not the dark web, and most .onion sites do not use a blockchain. Cryptocurrency transactions conducted via Tor pass through the standard Bitcoin or Monero networks, whose consumption is independent of whether the user is on Tor or not. The Tor network itself is one of the most energy-efficient infrastructures on the Internet.

Can you create a .onion site from your personal computer?

Yes. Technically, this is one of the most original characteristics of the dark web: anyone can host a hidden service directly from their own computer, without a domain name to buy, without a hosting provider, without an SSL certificate. You simply install Tor, configure a few lines in the torrc file, and your machine becomes a website accessible to anyone who knows the generated .onion address.

The basic procedure takes less than ten minutes. Install Tor, launch a local web server (nginx, Apache, or even Python's built-in HTTP server), add two lines in torrc to point to that server, and restart Tor. The software then generates a cryptographic key pair: the public key becomes the .onion address, and the private key must remain on your machine (it is what guarantees that no one can impersonate your address).

In practice, however, hosting a .onion site from a personal computer raises reliability issues: your site is unreachable when your machine is off, your IP address must remain stable, and your bandwidth is limited. For serious uses, a small dedicated server or VPS from a privacy-respecting hosting provider (Njalla, 1984 Hosting), located in a favorable jurisdiction, is preferred. For one-off sharing, the OnionShare tool allows publishing a folder in a few clicks without technical configuration.

Why is Tor so slow compared to a regular browser?

Because Tor traffic travels through at least three relays spread around the world before reaching its destination, which mechanically increases travel time. Your request leaves your machine, crosses an entry node (often in Europe), an intermediate node (possibly in Asia or America), and then an exit node, before the response travels back the same way. This onion architecture sacrifices speed for anonymity.

Speeds on Tor depend on the overall capacity of the network, which is limited compared to the Internet as a whole. Seven thousand volunteer relays cannot compete with the massive infrastructure of a major ISP. Average latency on Tor falls between 200 ms and 2 seconds, and maximum throughput is a few Mbps per circuit — compared to several hundred on a standard fiber connection.

The Tor Project continually works to improve performance. More recent protocols (KIST, Conflux) have already brought noticeable gains. Browsers that use "padding machines" reduce vulnerability to correlation attacks while improving the user experience. But the very nature of onion routing imposes a trade-off: the more anonymous you want to be, the longer the path. For reasonable use (reading articles, checking email), Tor's slowness is perfectly manageable. For streaming or gaming, it is a dealbreaker.

Is there a "dark web" specific to mobile phones?

No. There is no separate "mobile dark web" distinct from the regular dark web. The same .onion sites are accessible from a smartphone as from a computer, provided you use a suitable application. On Android, Tor Browser for Android is the Tor Project's official app, available on Google Play and F-Droid, and works like its desktop equivalent. On iOS, Onion Browser (based on WebKit) is the recommended alternative.

The mobile experience has specific technical characteristics. Smartphones have more variable bandwidth (3G/4G/5G depending on location), and the battery drains faster when Tor is active. Navigation is also more exposed to fingerprinting by the app itself: mobile applications collect enormous amounts of data about the device (model, sensors, advertising identifiers). For serious use, Tor from a computer is preferable.

Some projects aim to improve the mobile experience. Orbot is a Tor router for Android that allows any application to run through Tor. ProtonMail, Signal, and a few other applications have integrated native Tor support. For strictly sensitive uses, advanced users generally prefer a computer running Tails, or a dedicated phone with GrapheneOS, rather than a smartphone used for everyday tasks.

Can .onion sites be hacked like a regular site?

Yes, absolutely. A .onion site is not an "invulnerable" site: it is an ordinary website (often running WordPress, Apache, nginx, or PHP) whose distinctive feature is being accessible via Tor. Classic vulnerabilities — SQL injections, XSS flaws, poor server configurations, weak passwords — affect .onion sites exactly as they do the clearnet.

Many documented cases of .onion site hacks exist. In 2017, a group took control of several thousand sites hosted on Freedom Hosting II, revealing the contents and administrators. Dread, the community forum, suffered several massive denial-of-service attacks. Several marketplaces were compromised either by rivals or by law enforcement agencies that exploited server flaws to identify administrators.

The key difference from the clearnet lies in the traceability of the attacker. When a clearnet site is hacked, server logs often reveal the attacker's IP address, enabling prosecution. On Tor, logs show only the IP of an exit node, which is of little help. This asymmetry encourages some cybersecurity researchers to conduct aggressive penetration tests on .onion sites they suspect of being illegal, with the relative assurance that their action will remain anonymous. But this ethical and legal gray area remains a sensitive debate in the community.

🎭 Miscellaneous curiosities: the questions nobody dared ask

To close this overview, a few lighter questions that come up regularly in search queries.

Are weddings celebrated on the dark web?

Yes, though it remains anecdotal. A few symbolic ceremonies have been organized on the dark web — cryptographic or spiritual weddings, obviously with no legal standing, between people who met through .onion forums and wished to mark their commitment while preserving their anonymity. Some community forums have hosted such textual "ceremonies," with witnesses under pseudonyms and an equally anonymous "officiant."

These practices are more akin to community rituals than to civil marriage. No state recognizes a wedding conducted over the Internet, let alone over Tor. But for the people involved — often cypherpunks or anonymity advocates — the gesture carries real symbolic value. PGP keys are sometimes exchanged as one would exchange rings; shared cryptographic documents are signed as one would sign a civil registry.

A few more unusual cases have emerged. In 2014, a forum organized a purely textual "collective wedding" to celebrate the anniversary of a community. LGBT NGOs in countries where same-sex unions are criminalized have used Tor to celebrate symbolic commitments they could not hold publicly. These practices illustrate that the dark web is not solely a criminal or technical tool, but also a space of human expression for needs that find little room elsewhere.

What happens if I search for my own name on Ahmia?

In 99% of cases, nothing. Ahmia and other dark web search engines primarily index active .onion sites, which almost never contain the personal data of ordinary individuals. If you search for your name, your usual username, or your email, you will most likely get zero results, or unrelated false positives.

In the remaining 1% of cases, you might discover that your name appears in a publicly released data breach. Specialized forums (which we do not recommend visiting) sometimes aggregate databases from hacks: Yahoo, LinkedIn, Facebook, Twitter, Dropbox, and many other platforms have had their databases exfiltrated over the years. To properly check whether your credentials have leaked, it is better to use HaveIBeenPwned.com, a clearnet service run by a recognized expert, which does exactly this job without the exposure risks of the dark web.

If you are set on searching for yourself on Ahmia, do so via Tor Browser, do not click on any suspicious result, and be prepared to be a little underwhelmed. In the overwhelming majority of cases, the dark web is completely unaware of your existence. That is, in fact, rather reassuring: unless you have been the victim of a major breach, your personal data is not circulating in this ecosystem.

Do schools or universities exist on the dark web?

Yes. Several educational initiatives have existed or still exist on the dark web, even if they remain a minority. Courses on cryptography, cybersecurity, programming, and political philosophy are offered by volunteer contributors, in the form of texts, videos, or organized Q&A sessions. A recurring motivation is reaching learners in countries where these subjects are censored or poorly taught.

Massive "libraries" host royalty-free educational documents, digitized university courses, school textbooks from various countries, and works in the public domain. The Imperial Library, for example, is one of the best known. These resources do not replace a university, but they provide considerable educational material to those without access to a traditional academic library.

A few more structured experiments have attempted to reproduce a university format: synchronous class sessions, coursework via encrypted correspondence, and the award of symbolic "diplomas" recognized by the community. These initiatives are generally short-lived and depend heavily on the individuals who drive them. They nonetheless illustrate a little-known dimension of the dark web: it is not solely a transactional or criminal space, but also, in part, a place of educational and community experimentation.

Does the dark web have its own memes and visual culture?

Yes. The dark web has developed over the years a recognizable aesthetic and humor, heavily influenced by cyberpunk culture, the hacker imagery of the 1990s, and the codes of 4chan. Pseudonyms, ASCII art signatures, repurposed emoji, quotes from Richard Stallman or Aaron Swartz as slogans: all of this constitutes a visual culture distinct from the rest of the Internet.

Memes specific to the dark web often revolve around self-deprecating humor about anonymity ("I'm not the FBI, obviously"), paranoia ("There's definitely an exit node reading this message"), Tor's slowness ("loading… since 2019"), or classic scams (the "Besa Mafia" jokes continue circulating as running gags). This culture is expressed mainly on Dread, on dark web imageboards, and in the comment sections of technical forums.

The paradox is that this culture — born in a space that champions anonymity — is massively consumed by clearnet internet users who discover it through YouTube, TikTok, and X. Clearnet creators popularize, translate, and amplify the codes of the dark web for an audience that will never set foot there. This is how an ultra-confidential technical subculture feeds, through influence channels, global Internet culture. The dark web is, in the end, a counterculture like any other: marginal in size, influential in imagination.

Going Further

This FAQ covers the fifty most frequently asked questions, but the dark web is a constantly evolving ecosystem. The articles on our blog go deeper into each theme covered here: the technical workings of the network, news about .onion services, investigations into major myths, and practical guides for using Tor safely.

Looking to explore the dark web concretely? Browse our OnionDir directory, which lists only verified and legitimate .onion sites: major media outlets accessible without censorship, privacy protection tools, specialized search engines, and encrypted email services. The rest is a matter of culture and curiosity.

An unusual question not covered here? Write to us — we regularly add new entries to this FAQ based on the questions we receive. The goal is to make it the most comprehensive English-language resource on the curiosities of the Tor network.