Man
Professional
- Messages
- 3,006
- Reaction score
- 531
- Points
- 113
Let's start with why this question is asked by beginners at all, it would seem that there are many directions, choose what you like - and try. But... Naturally, everything comes down to money, namely the costs of tests before receiving the first results. It is from this side that I will consider this question today.
Let's go through the most popular directions, with my brief assessment of each.
What is BRUT?
Brute is an automated method of extracting accounts by trying login
assword combinations in the database. The result of brute force is loginassword + additional information from the checker about the account from a specific store (shop), I will give examples later.
What for? What to do with it?
Most shops have a personal account, the ability to link a CC (card) so that you do not have to enter its data every time you make a purchase, various loyalty cards and bonus programs. Brute accounts from shops with such parameters are what we are interested in. The fundamental difference between brute force and clothing is that the CC (credit card, debit card, bonus card) is already linked to the shop account, the account itself was not registered yesterday or today, and perhaps the CH (card owner/cardholder) even made purchases from this account. What does this give us? Of course, the loyalty of the anti-fraud system is exactly what beginners need at the start. After all, in the shop's face, you are no longer Vasya, who just registered in the shop, dug around for an hour in categories and is trying to enter $500-1000 from a random bin. For the shop, you are already a specific John Welly, living on Wall Street, with such and such a number of successful purchases in their shop.
The main difficulties and nuances of the direction
It is worth noting right away that not everything is so simple and you will have to work. The main problems when working with brute force:
How and where to start studying this direction?
While you are only at the beginning of your path - I do not advise trying to bruteforce something yourself. In the long term - it is profitable and cheap, but not at the start. Therefore, I advise you to start working with ready-made options.
First of all, visit the shops with bruteforce presented on our forum. Study the accounts of which shops and services sellers most often upload for sale. Be guided by the logic - "if they buy it, it means it can bring money." Next, choose for yourself several links (references) that you will test. Do not take expensive accounts, look at the price range of $ 2-15. Buy one or two accounts for the shops and services that interest you. After the purchase, you will receive approximately the following data
After the purchase, we begin to conduct tests. Remember that, unlike the usual carding, here we are not a new user, so the system needs to be configured for the account we bought. At a minimum, select an IP for the ZIP CH. In some cases, the account may contain additional data, such as screen resolution, installed plugins, etc. (but this is rare, if the account is not from brute force, but from a stealer - applies only to some services and shops) - if such information is available, we use it in configuring the machine for CH.
After configuring the machine, we try to log in to the shop / service. Logged in? - first success. Not logged in? - we figure out what the problem is, most likely it requires either confirmation from mail or from a phone (2FA). In this case, we try to configure the machine for another account and log in - Logged in? - then the problem with the first account is fraud, the shop did not believe you and threw 2FA, although it usually does not do this. Not logged in? - then we put the shop or service aside and write down the information about it, you can only log in if you have access to your email or phone - if we don't have this data, we go test another service. It is also always necessary to try to log in to the CH mail, using the same password as the shop. Even if the account is lost on an invalid base, there is a chance to log in to the mail. According to my statistics, this is 5-10 percent.
What am I getting at? The first newbie from one account will not log in to the shop, will throw it in the trash and move on. The second newbie will try to log in to the mail, log in from a different IP, in a different way - and maybe he will log in, and maybe it will turn out to be a service that will feed him for a very long time. Always turn on your brain, logic and work on the purchased account to the maximum.
Next. If you logged in to the shop, start mastering it. Inspect your personal account, inspect what cards are linked to the account, what cards can be linked. Read the shop's rules and FAQ, about reroute, pickup, shipping - information from the shop can be very useful and can tell you what to do with this account and extract the coin.
Next, we try to make an order. Three possible results:
The second option is to find your shop/service
If you couldn't find something suitable for yourself on the services - no problem. Look for any shop, make a self-registration, link any liquid processing (LP) to it, because it is important for you to look at only the technical part. After preparing the self-registration, imagine that our self-registration is a brute. We make a new system and go to the self-registration on behalf of the buyer of the brute, and see what can be done with it. Found something interesting - contact the logo owners/bruters, buy your link and start working.
What's the result?
As a result, we have a direction in which tests cost pennies (accounts cost an average of $2-10) + additional attempts of $3-4. In total, the price of testing one shop/service is about $10. Accordingly, when you find a shop, service that suits you. We order a brute force program + checker for our link and receive valid material for your resource at a cost of about $1-3. Do you feel the difference in costs compared to regular gear? I think so.
Additional tips on stuff
Often, beginners manage to enter something 1-2 times, and then they can’t do it for a long time. This happens because anti-fraud systems can also fail, and, for example, give you 1-2 packs even with an incorrectly configured machine. In this regard, I recommend not giving your first packs for pennies to a scoop, but immediately trying to forward them. Doing this is not much more difficult than giving to a scoop, but longer. Create accounts for yourself in panels of those who only forward from scam drops, carefully study the reviews. Although the drops are scams, the chance of losing a pack is very small for good services. Next, create an account on the intermediary, now most people use Polyanka (polexp), remember that for the intermediary - you are a white buyer, so we make an account from a separate device from work, and the IP address of the country where your goods will go. On the intermediary, indicate either your data (I do not really recommend) or the real data of your drop (I recommend this), since Polexp services must be paid for from the card of the person to whom the delivery will be made.
From the divorced drop, the pack goes to Polexp and from there wherever your heart desires. That is, the chain is short and not complicated, and the difference in money is colossal. Having carded illiquid goods for $ 800, you will give about $30 to the forwarding service, $50-70 for delivery and sell in your country for the same $800 or even more. And having given such illiquid goods to a buyer (drop service for stuff) - you will receive $160-190.
I hope the article was useful for you!
Let's go through the most popular directions, with my brief assessment of each.
- Cashing out - it would seem the most "fat" direction, but not for a beginner. There are a lot of subtleties and pitfalls. Tests can take tens of thousands of dollars - and not give a result. I do not recommend it to beginners.
- Enroll - average level of complexity of mastering, at the start put aside several thousand dollars for tests. If the budget allows and the direction arouses interest - of course you need to try, but we are not here today for this, because we start with minimal budgets.
- Gifts, E-gifts - I do not recommend this direction to beginners, Antifraud always looks closely at this category of goods, a lot depends on the bins, a lot of testing is needed before getting results.
- Amazon, Facebook and other giants - I categorically do not recommend to beginners. Dynamic and the most advanced AF. Old-timers on Amazon are forced to regularly adapt to antifraud updates, innovations. Attempts to test by carding into giants in their "monthly" - will lead to draining the entire budget.
- Clothing (stuff carding) - On average, one attempt to carding will cost you $30-50, depending on the cost of the card, the system chosen for work, the use of additional services (checks, calls, floods). Incorrectly selected BIN, incorrectly selected merch for your BIN, the slightest error in setting up the system - all this each time deprives you of about $50, when trying to enter illiquid assets for $500, which the stingy will take from you for 20-25% of the cost if successful.
- Brutus is, in my opinion, the cheapest and most profitable way for a newbie to start today. And I will tell you more about this direction in this article.
What is BRUT?
Brute is an automated method of extracting accounts by trying login
assword combinations in the database. The result of brute force is loginassword + additional information from the checker about the account from a specific store (shop), I will give examples later.What for? What to do with it?
Most shops have a personal account, the ability to link a CC (card) so that you do not have to enter its data every time you make a purchase, various loyalty cards and bonus programs. Brute accounts from shops with such parameters are what we are interested in. The fundamental difference between brute force and clothing is that the CC (credit card, debit card, bonus card) is already linked to the shop account, the account itself was not registered yesterday or today, and perhaps the CH (card owner/cardholder) even made purchases from this account. What does this give us? Of course, the loyalty of the anti-fraud system is exactly what beginners need at the start. After all, in the shop's face, you are no longer Vasya, who just registered in the shop, dug around for an hour in categories and is trying to enter $500-1000 from a random bin. For the shop, you are already a specific John Welly, living on Wall Street, with such and such a number of successful purchases in their shop.
The main difficulties and nuances of the direction
It is worth noting right away that not everything is so simple and you will have to work. The main problems when working with brute force:
- It is not possible to log into an account using only a login and password; for example, you need an email, which we usually don’t have.
- When changing the shipping address or any other information in the account, the shop asks to enter the CVV or the full number of the linked CC
- The shop cancels your orders, it declines
How and where to start studying this direction?
While you are only at the beginning of your path - I do not advise trying to bruteforce something yourself. In the long term - it is profitable and cheap, but not at the start. Therefore, I advise you to start working with ready-made options.
First of all, visit the shops with bruteforce presented on our forum. Study the accounts of which shops and services sellers most often upload for sale. Be guided by the logic - "if they buy it, it means it can bring money." Next, choose for yourself several links (references) that you will test. Do not take expensive accounts, look at the price range of $ 2-15. Buy one or two accounts for the shops and services that interest you. After the purchase, you will receive approximately the following data
Code:
USERNAME: nicole.yorgason@gmail.com
PASSWORD: yorgason1
SHOP: link na shop
PHONE: 8014048379
BALANCE: 0.0
POINTS: 119.0
COUNTRY: US
ADDRESS: 670 COOKE ROAD, CENTERVILLE NC 27549
CREDIT CARD: VISA ****1797 9/2028 |
BANK ACC: N/A
LAST ORD: N/A
LAST ORD 2: N/A
ADDITIONAL INFORMATION: N/AAfter the purchase, we begin to conduct tests. Remember that, unlike the usual carding, here we are not a new user, so the system needs to be configured for the account we bought. At a minimum, select an IP for the ZIP CH. In some cases, the account may contain additional data, such as screen resolution, installed plugins, etc. (but this is rare, if the account is not from brute force, but from a stealer - applies only to some services and shops) - if such information is available, we use it in configuring the machine for CH.
After configuring the machine, we try to log in to the shop / service. Logged in? - first success. Not logged in? - we figure out what the problem is, most likely it requires either confirmation from mail or from a phone (2FA). In this case, we try to configure the machine for another account and log in - Logged in? - then the problem with the first account is fraud, the shop did not believe you and threw 2FA, although it usually does not do this. Not logged in? - then we put the shop or service aside and write down the information about it, you can only log in if you have access to your email or phone - if we don't have this data, we go test another service. It is also always necessary to try to log in to the CH mail, using the same password as the shop. Even if the account is lost on an invalid base, there is a chance to log in to the mail. According to my statistics, this is 5-10 percent.
What am I getting at? The first newbie from one account will not log in to the shop, will throw it in the trash and move on. The second newbie will try to log in to the mail, log in from a different IP, in a different way - and maybe he will log in, and maybe it will turn out to be a service that will feed him for a very long time. Always turn on your brain, logic and work on the purchased account to the maximum.
Next. If you logged in to the shop, start mastering it. Inspect your personal account, inspect what cards are linked to the account, what cards can be linked. Read the shop's rules and FAQ, about reroute, pickup, shipping - information from the shop can be very useful and can tell you what to do with this account and extract the coin.
Next, we try to make an order. Three possible results:
- Request to enter CVV or card number. In 90% of cases - nothing can be done about it and you will not get anything from the shop. BUT. There are shops with their own bugs and errors, and various manipulations, turning on logic and brain - sometimes you can bypass the request to enter this data, and hang the order. If you found such a way - consider that you have found gold, such shops with holes can work for years without fixing them, respectively - you will feed from this.
- Confirmation by mail or phone. Here is the same picture as described above. We try to enter the mail - there are no other options. If you think that the shop is worthy of attention - look for accounts of log-guides with access to email.
- Decline, order canceled. If you saw that the order was created and fell into cancel - congratulations. You found a shop without entering cvv and card number, without 2fa. All that remains for you is to work and study the Antifraud of this shop. Here the choice of methods and possibilities is already unlimited. Different machines, different methods of proxying, different techniques of social engineering, your imagination, logic and so on - the main task is completed, you found a service in which you can beat with brute force. Bypassing antifraud is already a matter of technology.
The second option is to find your shop/service
If you couldn't find something suitable for yourself on the services - no problem. Look for any shop, make a self-registration, link any liquid processing (LP) to it, because it is important for you to look at only the technical part. After preparing the self-registration, imagine that our self-registration is a brute. We make a new system and go to the self-registration on behalf of the buyer of the brute, and see what can be done with it. Found something interesting - contact the logo owners/bruters, buy your link and start working.
What's the result?
As a result, we have a direction in which tests cost pennies (accounts cost an average of $2-10) + additional attempts of $3-4. In total, the price of testing one shop/service is about $10. Accordingly, when you find a shop, service that suits you. We order a brute force program + checker for our link and receive valid material for your resource at a cost of about $1-3. Do you feel the difference in costs compared to regular gear? I think so.
Additional tips on stuff
Often, beginners manage to enter something 1-2 times, and then they can’t do it for a long time. This happens because anti-fraud systems can also fail, and, for example, give you 1-2 packs even with an incorrectly configured machine. In this regard, I recommend not giving your first packs for pennies to a scoop, but immediately trying to forward them. Doing this is not much more difficult than giving to a scoop, but longer. Create accounts for yourself in panels of those who only forward from scam drops, carefully study the reviews. Although the drops are scams, the chance of losing a pack is very small for good services. Next, create an account on the intermediary, now most people use Polyanka (polexp), remember that for the intermediary - you are a white buyer, so we make an account from a separate device from work, and the IP address of the country where your goods will go. On the intermediary, indicate either your data (I do not really recommend) or the real data of your drop (I recommend this), since Polexp services must be paid for from the card of the person to whom the delivery will be made.
From the divorced drop, the pack goes to Polexp and from there wherever your heart desires. That is, the chain is short and not complicated, and the difference in money is colossal. Having carded illiquid goods for $ 800, you will give about $30 to the forwarding service, $50-70 for delivery and sell in your country for the same $800 or even more. And having given such illiquid goods to a buyer (drop service for stuff) - you will receive $160-190.
I hope the article was useful for you!
