Simple PGP Guide

xenxra

V.I.P Member
V.I.P Member
EMERALD SPONSOR
Joined
Dec 2, 2023
Messages
581
Preface
you MUST include the header and footer segments containing ----begin/end public key block---- when saving keys to file or else you will encounter an error with importing (file extension doesn't matter, you could just use none)


MAKE SURE YOUR PUBLIC KEY IS SENT SEPARATE OUTSIDE THE ENCRYPTED TEXT (SAME EMAIL), YOU WILL ONLY NEED TO INCLUDE THE KEY FOR YOUR FIRST EMAIL SO THE VENDOR IS ABLE TO ENCRYPT COMMS BACK TO YOU



iOS
1)
download PGPro - App Store
2) locate and save vendors pgp key to file

(i dont have an iPhone to test so these steps are assumed from app store screenshots)

3) navigate to "keychain" tab in pgpro, then tap the + button at top right and import your key file(s)
4) navigate to "encryption" tab → "select contacts" and pick vendor's key from keychain
5) type message and copy encrypted text to clipboard
6) send email to vendor with encrypted text AND your public key (i would assume you can get this in PGPro by selecting your key in keychain tab and then tapping the share button in the top right — i typically include the full text appended but you could just attach a file with your key)



Android
1)
download OpenKeychain - F-Droid / Google Play
2) locate and save vendors pgp key to file
3) navigate to "keys" tab on sidebar, then tap the + button at bottom right and import key file(s)
4) navigate to "encrypt/decrypt" tab on sidebar
5) select "encrypt text", select vendors key, type message, then tap the copy icon at the top right
6) send email to vendor with encrypted text AND your public key (to locate this in openkeychain, select your own key entry from the "keys" tab and then use the copy button located on the left side of the QR code)



Windows + MacOS/Linux
1) download Kleopatra
— a) For Windows - Gpg4win (contains Kleopatra as add-on)
b) MacOS/Linux - App Store (alternatively, you could run the command sudo apt install kleopatra from terminal

2) locate and save vendors pgp key to file
3) open kleopatra, then select the "import" button on the top ribbon bar and import key file(s)
4) open a text editor (any will work), type out the message you want to send and copy it to your clipboard in clear text
5) in your taskbar, right click the kleopatra icon, navigate to "clipboard" then select "encrypt..."
6) in the encrypt window, select "add recipient...", select your vendor's key and then toggle the "openpgp" option (if it isn't done automatically)
7) send email to vendor with encrypted text AND your public key (to locate this in kleopatra, right-click your own key entry from the main window, select "details", then select "export" at the bottom and copy all the text that appears in the new pop-up window (you can remove all the lines containing "Comment: ...")



Stay safe out there! :ninja:
 
Last edited:
Thanks for writing up this guide Xenxra.

I'm new to PGP and using OpenKeychain. I have been sending messages between two burner phones.

Is it normal for decrypted messages to say "signed by an unconfirmed key" ?

It shows up on both phones when I decrypt the messages.

Anytime I add/save a PGP key it's always "unconfirmed" so I'm assuming it's normal?

I'm able to encrypt and decrypt messages successfully . It just the "unconfirmed key" that confuses me. Thanks

Edit: nvm, figured it out. I confirm fingerprint.
 
Last edited:
Legit the best thing to do for your opsec over email.

Idk why people think this is hard and don't do it, it should be standard. In fact, I would say that if you communicate with me via email, I will not respond to any non-pgp emails.
 
Def good guide thanks @xenxra

Generally it is frowned upon in the security community to use pgp on phones unless it’s a graphene etc.

I totally understand why the option is being given though. Bc people just just won’t use desktop lol. I’m not sure if I read it but remember never to use your real email address or have any identifiers to lead back to you.

-----BEGIN PGP PUBLIC KEY BLOCK-----


Comment: User-ID: WopWop <Daddy@Aol.com>

Comment: Valid from: 11/1/24 8:40 PM

Comment: Valid until: 11/1/27 12:00 PM

Comment: Type: 255-bit EdDSA (secret key available)

Comment: Usage: Signing, Encryption, Certifying User-IDs

Comment: Fingerprint: 2B4B7C439DE2F22FA698BA115CC3DD7EB0414DCF



mDMEZyV0+xYJKwYBBAHaRw8BAQdAeGcMrYBw4UiZADVavM8UhQ7eY25rImMT96U6

/E+MVxS0FldvcFdvcCA8RGFkZHlAQW9sLmNvbT6ImQQTFgoAQRYhBCtLfEOd4vIv

ppi6EVzD3X6wQU3PBQJnJXT7AhsDBQkFoyCFBQsJCAcCAiICBhUKCQgLAgQWAgMB

Ah4HAheAAAoJEFzD3X6wQU3P9LcBAPObyH4KqLLM0vFu8Nd2FAMC+UVF+FEj7+Cu

b3HfyEBBAP0XheQOTPUdbM634O/pxZWaldlp3OixpoXsVUSNsddAAbg4BGcldPsS

CisGAQQBl1UBBQEBB0B0ThQ/2Eovro9Ba09AsqZG8qHUlDD+MTy2Rib2BvqSXgMB

CAeIfgQYFgoAJhYhBCtLfEOd4vIvppi6EVzD3X6wQU3PBQJnJXT7AhsMBQkFoyCF

AAoJEFzD3X6wQU3PkacBAPal025eWPmo1hgjmMwfod35QmM1XZubVn0pVecxygSx

APsGoGWdCF7y0AlSOXd0wjV93dzooaD3zE/dRAtvDsPHDA==

=YIKT

-----END PGP PUBLIC KEY BLOCK-----

Like obv this is not my real email right? Lol

Thanks @xenxra good work
 
I hope this isnt a super dumb question but what does "in clear text" mean specifically? like see through font? or just not a jumbled up hard to read message? Im guessing that this is a dumb question seeing how no one else has asked it lol
 
I think in this context it is pretty much synonymous with 'plain text'. It just means "everyday" text that is unencrypted and without any special formatting like RTF (Rich Text Formatting).

I don't how necessary it was to word it this way because anytime text is copied to the clipboard using right-click>copy (for example on Windows), it is stored in memory as un-formatted and unencrypted WYSIWYG (What You See Is What You Get) text. ...Nonetheless, an excellent how-to by xenxra.
 
Drugbuyersguide Shoutbox
  1. st1ckyf1ng4z @ st1ckyf1ng4z: @eswen444 might be a little more difficult and involve a little more planning, as well as price increases on certain items, but all of those will still be available, trust.
  2. st1ckyf1ng4z @ st1ckyf1ng4z: @MorfineOrfan i’m sure they made good money off of it and took the shit off the shelves, but I bet you it’s still available if you ask for it upon request especially if they know your regular buyer. I, like you, just bought kilos online to save money back in the day. I would only buy your shit from the smoke shops if I was that desperate.
  3. st1ckyf1ng4z @ st1ckyf1ng4z: @MorfineOrfan like I said before I’m a recovering opiate addict so I choose not to touch the shit at all but I’ve been to smoke shops because I buy disposable vape products and other accessories, but every smoke shop I’ve been to over the last few years have had kratom “front and center” and easy to see. About 2/3 years ago 7oh products began appearing and it got completely out of control. I remember telling one of the owners of my regular shop that 7oh it’s not gonna end well
  4. E @ eswen444: *or post here. Holy spelling problems....but also for everyones info what im told is as of 8/1/2026 7oh, MIT, MGM, and other concentrates will be scheduled 1. Its an emergency schedule which lasts TWO YEARS and they can request an additional if needed. I feel horrible for all the homie/homettes who have to deal with this.
  5. E @ eswen444: @MorfineOrfan do you have a link to the chems the DEA blans to emergency schedule? If so please pm it to me or lost here. From what im told from my corporate over seers everything BUT raw leaf, and capsuled leaf will be removed from shelves 7/31/26
  6. MorfineOrfan @ MorfineOrfan: We made it to another Friday ladies and gents. Hope everyone has a wonderful weekend, be safe out there.
  7. MorfineOrfan @ MorfineOrfan: @st1ckyf1ng4z i have no clue what the supply and demand is like for brick and mortar shops, i havnt been in a smokeshope in 15-20years and back then none of them had or even knew what kratom was. Ive always bought kratom from vendors online, back in tge day we would use babel fish translator to haggle with vendors on kilo prices lol. But you dont need to worry mit will always be available if leaf is.
  8. MorfineOrfan @ MorfineOrfan: @nameofuser11 its not just 7/mgm/psuedo and sr, the dea has a huge list of compounds its banning with this ban. Odsmt is one, all the orphines and a ton more.
  9. MrFuszy @ MrFuszy: Lole onion sites?
  10. MrFuszy @ MrFuszy: @eiffraffca what ya mean
  11. R @ Riffraffca: Has anyone used and markets on the Dark Web?
  12. st1ckyf1ng4z @ st1ckyf1ng4z: @nameofuser11 Lol, happens to the best of us my friend. I think plain leaf will remain pretty easy to access, and prices shouldn’t fluctuate too much. Read up on how to use btc if you don’t know already. It’s not rocket science :)
  13. nameofuser11 @ nameofuser11: I donated and I forgot how to get the password. I am a moron. Don't worry I have no plans on becoming a vendor with my stupidity
  14. nameofuser11 @ nameofuser11: @st1ckyf1ng4z you're right of course. But being able to purchase with a debit card on a clearnet site with quality labs and low prices will be gone.
  15. st1ckyf1ng4z @ st1ckyf1ng4z: Especially if they’re using mitragynine as the parent alk to make substitutes. I think it will affect plain leaf too at the very least it will not be as available as it’s been.
  16. st1ckyf1ng4z @ st1ckyf1ng4z: @MorfineOrfan @nameofuser11 That’s wild. But basic supply/demand tho, right? In my area all the leaf has been pulled off shelves,
  17. J @ j00ciiez: It sucks they're banning sr17. It seems to be a holy grail for many ppl.
  18. nameofuser11 @ nameofuser11: To clarify plain leaf kratom is not a part of this ban. Mitragynine might be fine. 7, psuedo,mgm15 and sr1708 are what are on the table to be banned most likely but hopefully just regulated.
  19. MorfineOrfan @ MorfineOrfan: @st1ckyf1ng4z and yes , there are already indole alkoloids with tweaked scaffolding ready to take the place of 7/mgm, all with mitragynine as their parent alkoloid. The game of wack a mole starts the minute 7 is officially banned. Its 2013 K2 all over
  20. st1ckyf1ng4z @ st1ckyf1ng4z: @MorfineOrfan Also, it’s just a matter of time before another alternative pops up on the market anyway….
Back
Top