Man
Professional
- Messages
- 3,070
- Reaction score
- 606
- Points
- 113
MY ENGLISH IS PURE CHAOS SO FORGIVE ME THAT, WARNING AFTER READING YOU CAN BE MORE CONFUSED NOT FROM INFORMATIONS BUT FROM MY CUSTOM ENGLISH, EVERYTHING IS WRITTEN BY MYSELF, NOTHING ON THIS POST I NOT COPY/PASTE FROM ANOTHER SOURCE, ENJOY.
Because people share knowledge and users help each other so I want too bring something useful to community and its be just my experience and knowledge.
Please don't expect any methods I just want update some information what you could find in guides.
Also I am not expert there I just want help and share my experience.
I know we cannot share together working methods because its be fast burned but i think people must have valid information from which can learn so lets go start.
Carding is not same like vendors, scammers present to You.
A lot information what you could find on clear net or even on other forums is outdated.
1. EASY/SIMPLE BASIC INFORMATION
Few example what I found on outdated or even forums, guides.
- use Firefox and extension (for example to load PayPal account with cookies)
That's was probably work few years ago but now its anti-fraud system more better and extension could be detected.
Anyways Mozilla Firefox have high Spyware level so I think its not safe like people say.
- use Virtual Machine
Again that's was probably work few years ago but now its can be again detected (check attach file to proof my information).
Also its you can setup VM to not be detected but that's nobody cannot know when people don't tell you that.
Also maybe a lot people don't know how dangerous is Mozilla Firefox (check attach file to proof my information).
You can easily solved use arkenfox (https://github.com/arkenfox/user.js)
I can continue more because there is many things but I don't want waste your time and I just want proof my information.
Don't forget check attachment.
I remember times when people on Carding groups on Telegram don't care about security and OpSec everyone want just fast money but nobody want learn.
So let me tell you few basic problem with carding and payments what people have.
1 - CARD IS DEAD
2 - BAD PROXY
3 - BAD SETTING/SETUP
1 - CAN BE EASILY SOLVED OVER VERIFIED CHECKER FOR CARDS
2 - ITS MORE COMPLICATED FOR THIS REASON CHECK ( check attach file to proof my information )
a) You must always check anti-fraud score under 0-20 is okay that was you see on screenshot its bad and never works for payment
b) DNS LEAK MUST MATCH WITH ISP
EXAMPLE: COMCAST CABLE ( SOCKS5 ) MUST HAVE COMCAST CABLE (DNS) THAT'S CORRECT
COMCAST CABLE (SOCKS5) HAVE GOOGLE OR ANOTHER DNS IS WRONG AND AGAIN NEVER WORK PROPERLY FOR PAYMENTS.
3 - ITS MOST COMPLICATED AND ITS BE VERY HARD FOR ME DESCRIBE AND EXPLAIN WHAT I CURRENT MEAN
Now i don't want immediately jump how properly setup your device but I want write my theory with some examples (some information can be repeated).
- like i said its most complicated thing and for me its hard describe in this post but let me start from begin.
When i was start with carding i was read guides where vendors write "use Firefox and use extension" now we know its bad because its can be detected.
For example do you know what is device fingerprints or even browser fingerprints/canvas fingerprints
Do you know webGL could detect your GPU?
Do you know TCP/IP could detect your real OS ? (so when spoofing from Linux to Windows over some anti-detect browser TCP/IP could be problem).
I am pretty sure some things you don't know before that you read this and don't worry its not reason to be shamed,
this problematic about browser I be explain more and when you have over 20 reactions on your account you can check it.
- many people tell you use RDP and there can be again some problem because many vendors sell VM RDP and that's real problem.
be honest i know how its be flustered why payments not work and you just read again outdated guides and think what you was doing wrong.
Now be honest and buy physical RDP can be for many us problem and expensive as hell,so for this reason I was start from Begin and that was download Linux and try hack owns RDP.
Because my theory is carders want fast and easy money but they don't start from begin but somewhere from middle.
Simple who hack RDP (hackers) vendors just sell they.
Who phish cards (phishers) and again vendors many times don't have any idea how use they just sell.
So I think its perfect and fine to download some Linux and start from begin and try hack own RDP or even get some experience about phishing.
Now another example many scammers sell method+bin but let me tell you secret and that's every site is cardable You need always just non-vbv bin.
but also I want say its can be true and some sites is more hard to card than others.
now my personal experience when I was bought gift cards.
on sites egifter,dundle I maked purchase 50$ Steam gift card and after I try bought another they want DL FRONT+BACK (maybe selfie) what must match with victim on card and for that i was not ready.
So that's another problem You was come to do carding and you never think about (like make digital DL over photoshop and PSD templates).
And be honest that's fucking hell because every state in USA have different PSD template and different PDF417 barcode
Yes i know its better ways how cash out card but everyone tell you buy gift cards or even crypto (its same difficult)
simple to say I recommend to use android phone rooted,custom rom and etc.
- FLASH TWRP
- CUSTOM ROM WITHOUT GAPPS
- FLASH MAGISK
- MOST IMPORTANT IS USE XPOSED MODULES
2. EXAMPLE OF CARDING/BASIC INFORMATION
EXAMPLE OF CARDING IN REAL LIFE.
CHECK WHOER.NET MUST HAVE EVERYTHING GREEN 100%
CHECK PIXELSCAN.NET MUST BE HAVE EVERYTHING GREEN
CHECK ANTI-FRAUD SCORE 0-20
CHECK DNS LEAK MUST COME FROM ISP
HAVE EVERYTHING DONE ? OKAY PERFECT SO NOW LETS TEST YOUR SETTING AND YOUR CARD BEST IS FOR ME BUY.
SPOTIFY PREMIUM,HULU,PORNHUB PREMIUM AND ETC (SOMETHING WHAT NOT CHARGE YOUR CARD).
WHEN PAYMENT WORKS WITHOUT PROBLEM CONGRATULATION.
NOW YOU MUST COLLECT COOKIES AND SOME BROWSER HISTORY (YOU CANNOT USE FRESH CLEANED BROWSER BECAUSE ITS RED-FLAG).
I RECOMMEND 15-20 MIN SEARCHING (FOR EXAMPLE VICTIM FLORIDA SO YOU READ NEWS FROM FLORIDA).
BE LIKE REAL PERSON NOT FRAUDER THATS IMPORTANT.
AFTER THAT'S ITS READY SO FOR EXAMPLE WE WANT BUY GIFT CARD EMAIL DELIVERY AND HAVE NON-VBV BIN
SEARCH BUY GIFT CARDS EMAIL DELIVERY (GOOGLE.COM) DONT PASTE LINKS, ALWAYS SEARCH.
Anyways when I searching for e-shop I recommend use google dorks or even your target shop scan with nmap -script vuln,nikto and etc.
Because when site have some critical vulnerabilities or another issues its big chance be payment gateway weak.
3. ADVANCED KNOWLEDGE/INFORMATION
NOW BIGGEST MISTAKE WHAT ROOKIES DO THEY IMMEDIATELY PICK PRODUCT TO CARD AND CHECKOUT ORDER THAT'S UNDER ONE MINUTE.
THATS NOT SPEEDRUN,TAKE YOUR TIME MAN.
YOU MUST LOOK LIKE REAL CUSTOMER AND ITS MEAN SPEND SOME TIME ON SITE (CHECKING PRODUCTS AND READ DESCRIPTION).
MAYBE FOR YOU CAN SOUNDS FUNNY ? BUT JAVASCRIPT DETECT HOW LONG YOU SPENT ON SITE HOW FAST YOU SCROLLING AND ETC.
PERSONALLY I COME ON SITE CLICKING ON RANDOM PRODUCTS ADD TO CARD AFTER THAT LEAVE DEVICE FOR ONE HOUR CAN BE LONGER.
AND AFTER THAT i COME BACK MAKE FIRST PAYMENT OVER $25-$50.
its something else when your payment is declined (problem is with card, setting, proxy)
or even when your order be canceled (you have successful payment but you get on email "Your order was canceled for fraud suspicious" (card was charged).
Don't do first payment under 25$-50$ buy something cheap on e-shop (for example game key and etc).
For example i do under 15$ buy something what has email delivery (when its successful wait don't rush it).
Take your time and think it seriously few couple minutes when you again scrolling e-shop or even leaved device for one hour its optimal and can be many times solution.
Why orders are canceled (not declined).
Look another example when real customer visited first time some e-shop he never checkout product under one minutes
please read carefully "first time" when you re maked purchase before its something else because you have cookies,browser history and site simple know you.
Very important because of many of don't live at USA we don't know one important think what can be reason to canceled order
every state in USA have different number area local code ( what is it and what is means) some example from state Georgia USA
let me explain you that when you have for example card from Georgia and e-shop or etc ask you on phone number its must match where victim live.
Imagine victim live in Reidsville so number must starting with 912.
when you use for example number on Florida but you have card from Georgia its good reason to be canceled order
also be aware dont use VoIP number that's again red flag.
RANDOM INFORMATION'S WHAT COULD HELP NOVICES AND ROOKIES.
NEVER BUY GUIDES/METHOD BECAUSE I AM SURE THEY NOT BE WORK 99% ITS JUST BUSINESS FOR SCAMMERS, VENDORS ON TELEGRAM FROM MY EXPERIENCE IS ALMOST ALWAYS SCAMMER.
REMEMBER EVERY SITE IS CARDABLE YOU NEED JUST NON-VBV BIN AND PERFECT SETUP.
I USE FOR SEARCHING RESEARCHING INFORMATION JUST UNGOOGLED CHROMIUM OR TOR BROWSER (MEAN SEARCHING E-SHOPS,INFO AND ETC NOT FOR CARDING).
DON'T TRUST ANYONE WHO SELLING EASY/SIMPLE CASHOUT METHODS BECAUSE ITS ALWAYS SCAM
GOLD RULE: WHEN ITS SOUNDS EASY ITS NEVER WORKS.
Maybe you want know how much carding cost and everything what you need:
- NON-VBV CARDS YOU CAN UNDER $30
- SOCKS $10
- PURCHASE PHYSICAL NUMBER $10
-----------------------------------------------------------
TOTAL AROUND $50
but in reality its be more because probably you will not cash out first card in your live and you will many burns so its can be over $200-300
When person know exactly what he doing its can be literally under 50$ but that's be professional.
And because we are humans its always chance to make some mistake or forget on something so simple to carding/fraud its not cheap.
In this business without money you cannot make money.
SOME ANOTHER REQUIREMENTS (PC OR MOBILE)
- HAVE SOME OLDER ANDROID DEVICE (SAMSUNG IS MOST SIMPLE FOR ROOT AND ETC)
- WHEN YOU PREFER COMPUTER,USE THAT BUT PERSONALLY I RECOMMEND TWEAKED ROOTED ANDROID
- WHEN YOU WANT COMPUTER YOU PROBABLY NEED RDP (CAN COST 30-40$ PHYSICAL RDP NOT VM) DONT RECOMMEND.
THAT'S PROBABLY EVERYTHING WHAT YOU NEED,TO BE CARDER i WAS SHARE NON-VBV BIN FREE SO CHECK IT FOR FREE.
CARDING IS NOT EASY LIKE PEOPLE PRESENT YOU ITS FUCKING HARD FOR AND COST A LOT TIME,MONEY LEARNING AND MISTAKES.
I WAS COME ON DARKWEB BECAUSE I WAS BROKE IN REAL LIFE AND I WAS THINK CARDING/FRAUD BE SOLUTION,BUT FOR ME NEVER WAS.
IT WAS TAKE LONG TIME AND ALMOST ONE YEAR MORE I GO ON SHIFT AND MONEY FROM JOB USE FOR CARDING/FRAUD.
WHEN YOU WANT FAST AND EASY MONEY BE HONEST AND I DON'T JOKE NOW I RECOMMEND SOMETHING ON SOCIAL MEDIA ( LIKE AFFILIATE MARKETING ) USE DARKWEB OR ETC TO BUY BOOSTED ACCOUNTS,FOLLOWERS AND ETC OR EVEN CREATE WEBSITE,GET TRAFFIC AND GET SOME ADS WHAT YOU MAKE SOME PROFIT (THERE IS UNLIMITED METHODS AND WAYS).
I AM SURE OVER SOCIAL MEDIA YOU CAN MAKE MORE MONEY AND SIMPLE,INVEST ITS ABOUT 20-30$
EXAMPLE : BUY INSTAGRAM ACCOUNT +20-50K FOLLOWERS,OR EVEN TIKTOK VPS,DOMAIN AND TAKE CARE ABOUT YOUR AND RUN SOME PROJECT.
BUT BE HONEST I WAS NOT LEARN 2 YEARS AND SPEND A LOT TIME, MONEY AND EFFORT TO BE JUST INFLUENCE BECAUSE FOR ME ITS SIMPLE AND DON'T IN LONG TERM WHAT I WANT LEARN,GET KNOWLEDGE AND BE BETTER AND NOT DO SOCIAL ACCOUNTS.
SO WHEN YOU DO FRAUD/CARDING YOU WILL LEARN EVERY NEW DAY AND ITS LIKE ENDLESS JOURNEY.
ANOTHER GOLD RULE IN LONG TERM.
REMEMBER MOST IMPORTANT IS SECURITY AFTER MONEY,NEVER RISK OR EVEN DO SOMETHING WHAT COULD PUT YOU IN JAIL.
FOLLOW THIS FEW STEPS AND I AM SURE YOU BE SAFE.
1. SECURED VPN (MULLVAD FOR EXAMPLE) DONT USE NORD VPN AND ETC
- and use tor socks when you re paranoid or even some ssh server
2 - LINUX IS MORE SECURED AND FOSS THAN WINDOWS IN LONG TERM
- i am lazy now find some relative information how Microsoft collecting your data and etc (biggest problem it was on Windows 10+)
- there is some tools on github what you could fix security and opsec on Windows but i recommend learn on Linux
3 - LUKS/PASSHARE
- its basic rule but many people don't follow it,encrypt your hardisk protect you more than you can imagine
- again basic rule but use strong password for encrypt ( few examples )
- never write this password on piece of paper and etc its can compromised your security,just in your head and remember it
(combination of favorite songs and etc be creative special symbols and etc)
be sure you use special symbols,length more than 20-30 characters and this password for encrypt hardisk don't use anywhere else ( just can be for PGP )
4 - STORAGE SENSITIVE INFORMATION'S/DATA AND DIFFERENT PASSWORDS
maybe you asking how you can remember passwords like:
eYai1hizEas3eng0
Yeiqu8cheiHuboh3
uG1phaPhohsh6Ph
Simple bro I too don't remember that I encrypt that with PGP like message and storage somewhere like on jabber and etc
example of PGP messages what encrypt sensitive information,upload on your hosting,mega.nz or email, again be creative.
-----BEGIN PGP MESSAGE-----
hQIMA2E5kD5ZWMXoARAAvL2qDQv0bOgVDjdsgy+sA9HTaYDF5ekza7hGipZY3tB7
tGRXwVjbn8f1K7t9Wsw0ksTGJgeNcSlKdaspcCx/xPz4Eyth5MDP7EtdCmgPm7cg
t1pG2aHALo7NM1sKjvyr3t0LkV6Q+yRgS8TyG4YIgiz5SsVF1kO0NQTUoS1NO4Kw
HHA4qjKI+4IA1yrjbyPQ0iZRJIUfHG90WLchazgu7gmWiilyZzgn8YjBPmoR+trg
W3TeXjLhiYtUrdAq24Uo6kXGs+TeZNTCwHCb7vcZtQ+Ns4BRo0y+jIGdPlJM8FMs
8uIvPVua2pLW5EzLxb12CkWj5MQpeHfF9S3FR8+Z+g6tW+H0OseF57BTmzOuUtFr
NxgMUcGLS8JYUPEARWV/f3vQe/IHIAfKrQRpo930q44xhdkTjQF0iiGwA5ZyBmab
fPgJyqUq/92omq3SB9+hv1lPvX7c/fwq993RbZA71oJ8hbE51Q3bk4ZRvzT3Cu+4
VDww45l1TE7zWS+6AvfSqI4i3fmsd+PRJVs0cjSRpMKxNzDhk0kcmrkSuCNcfdtG
7l28hoYP4yrBnG04FOGkG2QBD5LFUqHyAIrWcq817QfoDlSsuEZoQku3Y83EiiMo
gy20W/Cqwb7lEkygRSovLDQUndlavnGfZnAqu+yhHHJwEAJOg6cE5Uwpsxd3S6XS
6QGFthYSQQuLgSeCYRXz4cQ5t8rr72x4u65bjb0zVUbO2OjgVVY9hGoDjlApoaYt
Hme48nN4co2FPirDPdms3b3KZuh5Hn3x36+BgTNpk9kMYtkhG7FzxsNQnKRaWiaG
aym0IFKG+1u6N+I7ZRwmGNsYjAQq5Pqjk3HVgl7ZHwfWLyrIbRSpU/XXi4GuQiw6
/Kzh4CxdEJ9DxjRE2VvRQkDp+hXu7DfjEr9wuVxBJy/CnysIsmKWbsPcdpxBzM/R
PCxLuFame2kMWKg6l/X8A5jAjDAbvr25W+PoSLe4LG64g3rygs4rCabcwqiWo87k
q/pEjEoXDeo62lo9Tw3W7jX88v1TGHqL8L91du7eWymwS77+MMUH7baooEXkXynW
7vhCmdPwWxjq0HlyvTVOr1QAXFOasnL8ReO63k/dppLAFzHxLRiQ8hJiyz5OXMEN
78dH8FDP5LpeXaH4gHZ4piVAFo7kwonpQUNqF6ndMgc3ZGGlrrjelzHZfuZmspDg
ozGcVIc8GWCKAzvk9JoyEFza+0hPfo4fj1KpulBsIMcRFyy3+vQjnZc4UJDc1iwz
VNCBoLntYhOHBjNlW+VDV1HgWiipwVt5g02I30weTGTle5PEGeVXHh0CeAKUyO04
uF80EsUp+taVOMlIdn+/AMY1n+lHbF5gfB+EyGd3KYbEkWZT7p2+OoVq8n+cNAyk
HoahHHcQ0DTHq1zg8qtqUrA74/k7kwQszsMrGaOX3HUjfLfH84TRSbLeltSCQ6IE
RjIh4xg933URZzZS+mOUyEOwX0AVT45JbhE71vH1H59UnBV/u1aIuJ16krFDlaw
KBwjd7UNGB/OCBzm6W9BThg0+iC6pUVAYSjtx6iGXlGSXD0=
=Fve5
-----END PGP MESSAGE-----
5 - DIFFERENT PASSWORD EACH SITE
I think that's default think and hope everyone do it.
For users what not have experience with Linux I recommend to download Linux mint,Parrot OS and simple stay on debian
when you re new on linux but you re interested about malwares or phishing and too dont know coding and etc you can simple go on https://github.com there you can find many open source tools and help you with begins.
Be inspired and motivated.
Now fast something about me i was start like carder after few months i start do digital driver licenses and not be successful jump on first Linux and starting watching videos,leaked courses and etc.
Start first phishing on Facebook when i over Social engineering tricked people and over few minutes take over account and Share phish link over victim account.
maybe you think and did you earn something ? nah it was just experience and that's important bro
i was create first malware what 16/26 used some tools and decreased that on 6/26 (for hacking company and etc its not working but when you hack people on internet or even kids its be works).
Look i am not professional about hacking or coding that,but about security and carding and fraud I know a lot because i was focused on that on begins.
Many times when i read this forum and checking for example vulnerabilities i don't understand that many times or even when i check how make malware never possible for me at this moment.
And be honest when i was did carding long time i just bought some stuff on P2W games and was best on server because i was not possible to buy some gift card and etc.
anyways that can be too ca-shout method like have League of Legends older account and top-up riot points for example and sell that somewhere.
I never bought something with physical delivery because that's something what i am most afraid,I recommend stay on digital sphere.
And I think many times earn money its not about experience and knowledge but how good you use your current knowledge And etc its not mean exactly now carding
we are more lucky than our parents what lived without internet,because internet could give you so much power
i hope this post and article was helped because that's i want.
reason why I limited some information with requirements reaction its simple because i don't want some people start selling this information copy/paste post or even present like carders.
because I am not Russian (probably you know that) i was long time on English forums and people was present my post like their knowledge.
Something similar was happened me on Telegram carding groups where,they kicked from group and start scam people and bait over advanced information so that's reason why I was did that and I hope you understand that.
Over few days I be re-edited this post and add more information,make better style of text and etc after I be make some videos, screenshots.
I be appreciate comment or even when you disagree with something,just write in comment and we can start discuss.
And once again I want thanks for community,forum,where people help each other, be safe everyone.
I can guaranteed its really non-vbv bin from United States Texas 467010
but you must know its can triggered OTP password when you maked big payment or even anti-fraud system flagged you on security.
Look i was never successful with Mastercard (MSC) always triggered with OTP/3D secure so always stay on Visa.
ADVANCED INFORMATION WHAT CAN BE JUST INTERESTING.
I can guaranteed you more successful payment you get over Mobile phone than Computer but be careful its can be dangerous in hands of novice who dont root his device and use stock rom where is pre-installed gapps.
When you use Mobile phone dont use DSL SOCKETS.
DSL IS CABLE CONNECTION ON MOBILE DEVICE CANNOT CONNECTED OR I WAS NEVER SEE THAT BEFORE SO JUST WIFI/LTE.
When you don't want use Mobile phone but instead Linux or Windows.
I can recommend puppeteer (sudo apt install npm, nodejs) and with coding knowledge and experience you can manipulate with javascript and make secured browser
but unlucky for me over https://abrahamjuliot.github.io/creepjs i was always detected and I litteraly spend with puppeteer few days anyways with anti-detect browser I don't have good experience many of they are build for affiliate marketing ,so when you have own source or even something not publicly available its can works.
I was spend many days and weeks to prepared setup on Linux or Windows but always I get some complications and anyways my payments not was always successful.
For this reason I use rooted android device with custom rom and few xposed modules.
But I am sure its not still secured,because without Gapps, google my device still ping and I dont know why, so I always over carding, flash custom rom again because sometimes I am paranoid when its there someone experienced, please could you me explain how its that possible device not have any google app and have custom rom but google pinged me.
i was blocked that over iptables but not help after reboot.
4. PERSONAL CHOICE
SITES FOR CHECKING SETUP/SETTING (MY PERSONAL CHOICE)
https://whoer.net/ (MOST COMMON SITE WHEN YOU DONT HAVE EVERYTHING GREEN AND 100% YOU CAN START AGAIN)
https://www.dnsleaktest.com (DNS LEAK TEST)
http://pixelscan.net/ (FOR FRAUD/SCAM EVERYTHING MUST BE GREEN)
https://browserleaks.com/ (BROWSER INFORMATION,JS,WEBGL,CANVAS AND ETC)
https://abrahamjuliot.github.io/creepjs/ ( ADVANCED SCANNER OF BROWSER)
https://scamalytics.com/ (CHECK ANTI-FRAUD SCORE OF PROXY)
METHOD HOW CHECK SETTING/SETUP AND CARD
https:/spotify.com/ - BUY PREMIUM,CARD NOT BE CHARGED FIRST MONTH
https://www.hulu.com/welcome - CARD NOT BE CHARGED FIRST MONTH
there is more sites what provide some trial features,be creative
Why I use this for checking setup and card?
Because this payment never be red flagged when you check your setting with some low payments like $1-3 can be sometimes red flagged when you have bad setup and etc
And anyways who don't want spotify premium for free?
With spotify you get simple result when its not work there cannot be different problems like i said on begin
1 - CARD IS DEAD, 2 - BAD PROXY, 3 - BAD SETTING/SETUP
PLEASE DON'T SHARE PUBLIC BROWSER CHECKER BECAUSE I GATHER THIS SITES OVER TWO YEARS
THANKS FOR RESPECT MY EFFORT AND WORK WHAT I PUT ON THIS POST.
WHEN YOU DO FRAUD/CARDING CHECK ALL SITES THEY WORK BEST TOGETHER.
TOMORROW WE CONTINUE, SEEYA
us 100% noVBV bin: 467010
Links for open source scripts for spoofing vm? I wanna tr There you have nice article with example how do that, Evasions technique for Virtual Machine.
Because people share knowledge and users help each other so I want too bring something useful to community and its be just my experience and knowledge.
Please don't expect any methods I just want update some information what you could find in guides.
Also I am not expert there I just want help and share my experience.
I know we cannot share together working methods because its be fast burned but i think people must have valid information from which can learn so lets go start.
Carding is not same like vendors, scammers present to You.
A lot information what you could find on clear net or even on other forums is outdated.
1. EASY/SIMPLE BASIC INFORMATION
Few example what I found on outdated or even forums, guides.
- use Firefox and extension (for example to load PayPal account with cookies)
That's was probably work few years ago but now its anti-fraud system more better and extension could be detected.
Anyways Mozilla Firefox have high Spyware level so I think its not safe like people say.
- use Virtual Machine
Again that's was probably work few years ago but now its can be again detected (check attach file to proof my information).
Also its you can setup VM to not be detected but that's nobody cannot know when people don't tell you that.
Also maybe a lot people don't know how dangerous is Mozilla Firefox (check attach file to proof my information).
You can easily solved use arkenfox (https://github.com/arkenfox/user.js)
I can continue more because there is many things but I don't want waste your time and I just want proof my information.
Don't forget check attachment.
I remember times when people on Carding groups on Telegram don't care about security and OpSec everyone want just fast money but nobody want learn.
So let me tell you few basic problem with carding and payments what people have.
1 - CARD IS DEAD
2 - BAD PROXY
3 - BAD SETTING/SETUP
1 - CAN BE EASILY SOLVED OVER VERIFIED CHECKER FOR CARDS
2 - ITS MORE COMPLICATED FOR THIS REASON CHECK ( check attach file to proof my information )
a) You must always check anti-fraud score under 0-20 is okay that was you see on screenshot its bad and never works for payment
b) DNS LEAK MUST MATCH WITH ISP
EXAMPLE: COMCAST CABLE ( SOCKS5 ) MUST HAVE COMCAST CABLE (DNS) THAT'S CORRECT
COMCAST CABLE (SOCKS5) HAVE GOOGLE OR ANOTHER DNS IS WRONG AND AGAIN NEVER WORK PROPERLY FOR PAYMENTS.
3 - ITS MOST COMPLICATED AND ITS BE VERY HARD FOR ME DESCRIBE AND EXPLAIN WHAT I CURRENT MEAN
Now i don't want immediately jump how properly setup your device but I want write my theory with some examples (some information can be repeated).
- like i said its most complicated thing and for me its hard describe in this post but let me start from begin.
When i was start with carding i was read guides where vendors write "use Firefox and use extension" now we know its bad because its can be detected.
For example do you know what is device fingerprints or even browser fingerprints/canvas fingerprints
Do you know webGL could detect your GPU?
Do you know TCP/IP could detect your real OS ? (so when spoofing from Linux to Windows over some anti-detect browser TCP/IP could be problem).
I am pretty sure some things you don't know before that you read this and don't worry its not reason to be shamed,
this problematic about browser I be explain more and when you have over 20 reactions on your account you can check it.
- many people tell you use RDP and there can be again some problem because many vendors sell VM RDP and that's real problem.
be honest i know how its be flustered why payments not work and you just read again outdated guides and think what you was doing wrong.
Now be honest and buy physical RDP can be for many us problem and expensive as hell,so for this reason I was start from Begin and that was download Linux and try hack owns RDP.
Because my theory is carders want fast and easy money but they don't start from begin but somewhere from middle.
Simple who hack RDP (hackers) vendors just sell they.
Who phish cards (phishers) and again vendors many times don't have any idea how use they just sell.
So I think its perfect and fine to download some Linux and start from begin and try hack own RDP or even get some experience about phishing.
Now another example many scammers sell method+bin but let me tell you secret and that's every site is cardable You need always just non-vbv bin.
but also I want say its can be true and some sites is more hard to card than others.
now my personal experience when I was bought gift cards.
on sites egifter,dundle I maked purchase 50$ Steam gift card and after I try bought another they want DL FRONT+BACK (maybe selfie) what must match with victim on card and for that i was not ready.
So that's another problem You was come to do carding and you never think about (like make digital DL over photoshop and PSD templates).
And be honest that's fucking hell because every state in USA have different PSD template and different PDF417 barcode
Yes i know its better ways how cash out card but everyone tell you buy gift cards or even crypto (its same difficult)
simple to say I recommend to use android phone rooted,custom rom and etc.
- FLASH TWRP
- CUSTOM ROM WITHOUT GAPPS
- FLASH MAGISK
- MOST IMPORTANT IS USE XPOSED MODULES
2. EXAMPLE OF CARDING/BASIC INFORMATION
EXAMPLE OF CARDING IN REAL LIFE.
CHECK WHOER.NET MUST HAVE EVERYTHING GREEN 100%
CHECK PIXELSCAN.NET MUST BE HAVE EVERYTHING GREEN
CHECK ANTI-FRAUD SCORE 0-20
CHECK DNS LEAK MUST COME FROM ISP
HAVE EVERYTHING DONE ? OKAY PERFECT SO NOW LETS TEST YOUR SETTING AND YOUR CARD BEST IS FOR ME BUY.
SPOTIFY PREMIUM,HULU,PORNHUB PREMIUM AND ETC (SOMETHING WHAT NOT CHARGE YOUR CARD).
WHEN PAYMENT WORKS WITHOUT PROBLEM CONGRATULATION.
NOW YOU MUST COLLECT COOKIES AND SOME BROWSER HISTORY (YOU CANNOT USE FRESH CLEANED BROWSER BECAUSE ITS RED-FLAG).
I RECOMMEND 15-20 MIN SEARCHING (FOR EXAMPLE VICTIM FLORIDA SO YOU READ NEWS FROM FLORIDA).
BE LIKE REAL PERSON NOT FRAUDER THATS IMPORTANT.
AFTER THAT'S ITS READY SO FOR EXAMPLE WE WANT BUY GIFT CARD EMAIL DELIVERY AND HAVE NON-VBV BIN
SEARCH BUY GIFT CARDS EMAIL DELIVERY (GOOGLE.COM) DONT PASTE LINKS, ALWAYS SEARCH.
Anyways when I searching for e-shop I recommend use google dorks or even your target shop scan with nmap -script vuln,nikto and etc.
Because when site have some critical vulnerabilities or another issues its big chance be payment gateway weak.
3. ADVANCED KNOWLEDGE/INFORMATION
NOW BIGGEST MISTAKE WHAT ROOKIES DO THEY IMMEDIATELY PICK PRODUCT TO CARD AND CHECKOUT ORDER THAT'S UNDER ONE MINUTE.
THATS NOT SPEEDRUN,TAKE YOUR TIME MAN.
YOU MUST LOOK LIKE REAL CUSTOMER AND ITS MEAN SPEND SOME TIME ON SITE (CHECKING PRODUCTS AND READ DESCRIPTION).
MAYBE FOR YOU CAN SOUNDS FUNNY ? BUT JAVASCRIPT DETECT HOW LONG YOU SPENT ON SITE HOW FAST YOU SCROLLING AND ETC.
PERSONALLY I COME ON SITE CLICKING ON RANDOM PRODUCTS ADD TO CARD AFTER THAT LEAVE DEVICE FOR ONE HOUR CAN BE LONGER.
AND AFTER THAT i COME BACK MAKE FIRST PAYMENT OVER $25-$50.
its something else when your payment is declined (problem is with card, setting, proxy)
or even when your order be canceled (you have successful payment but you get on email "Your order was canceled for fraud suspicious" (card was charged).
Don't do first payment under 25$-50$ buy something cheap on e-shop (for example game key and etc).
For example i do under 15$ buy something what has email delivery (when its successful wait don't rush it).
Take your time and think it seriously few couple minutes when you again scrolling e-shop or even leaved device for one hour its optimal and can be many times solution.
Why orders are canceled (not declined).
Look another example when real customer visited first time some e-shop he never checkout product under one minutes
please read carefully "first time" when you re maked purchase before its something else because you have cookies,browser history and site simple know you.
Very important because of many of don't live at USA we don't know one important think what can be reason to canceled order
every state in USA have different number area local code ( what is it and what is means) some example from state Georgia USA
- 229 – Albany, Thomasville, Valdosta, Tifton, Cairo Georgia, Fitzgerald and Americus (southwest Georgia)
- 404 – Atlanta and immediate environs (central Fulton and DeKalb counties)
- 470 – Atlanta and its suburbs, overlay area code that covers same area as 678, 770, and 943
- 478 – Macon, Forsyth, Fort Valley, Warner Robins, Dublin, Eastman and Milledgeville (central Georgia)
- 706 – Columbus (west-central Georgia);
Rome, Dahlonega, Toccoa, Athens and Augusta (northwest, northeast, upper east-central Georgia) - 678 – Atlanta and its suburbs, overlay area code that covers the same area as 404, 470, 770, and 943
- 762 – same boundaries as 706
- 770 – Atlanta suburbs, overlay area code that covers the same area as 470, 678, and 943
- 912 – Savannah, Reidsville, Vidalia, Waycross, Brunswick, Douglas, and coastal Georgia
- 943 - Atlanta and its suburbs, overlay area code that covers same area as 470, 678, and 770.
let me explain you that when you have for example card from Georgia and e-shop or etc ask you on phone number its must match where victim live.
Imagine victim live in Reidsville so number must starting with 912.
when you use for example number on Florida but you have card from Georgia its good reason to be canceled order
also be aware dont use VoIP number that's again red flag.
RANDOM INFORMATION'S WHAT COULD HELP NOVICES AND ROOKIES.
NEVER BUY GUIDES/METHOD BECAUSE I AM SURE THEY NOT BE WORK 99% ITS JUST BUSINESS FOR SCAMMERS, VENDORS ON TELEGRAM FROM MY EXPERIENCE IS ALMOST ALWAYS SCAMMER.
REMEMBER EVERY SITE IS CARDABLE YOU NEED JUST NON-VBV BIN AND PERFECT SETUP.
I USE FOR SEARCHING RESEARCHING INFORMATION JUST UNGOOGLED CHROMIUM OR TOR BROWSER (MEAN SEARCHING E-SHOPS,INFO AND ETC NOT FOR CARDING).
DON'T TRUST ANYONE WHO SELLING EASY/SIMPLE CASHOUT METHODS BECAUSE ITS ALWAYS SCAM
GOLD RULE: WHEN ITS SOUNDS EASY ITS NEVER WORKS.
Maybe you want know how much carding cost and everything what you need:
- NON-VBV CARDS YOU CAN UNDER $30
- SOCKS $10
- PURCHASE PHYSICAL NUMBER $10
-----------------------------------------------------------
TOTAL AROUND $50
but in reality its be more because probably you will not cash out first card in your live and you will many burns so its can be over $200-300
When person know exactly what he doing its can be literally under 50$ but that's be professional.
And because we are humans its always chance to make some mistake or forget on something so simple to carding/fraud its not cheap.
In this business without money you cannot make money.
SOME ANOTHER REQUIREMENTS (PC OR MOBILE)
- HAVE SOME OLDER ANDROID DEVICE (SAMSUNG IS MOST SIMPLE FOR ROOT AND ETC)
- WHEN YOU PREFER COMPUTER,USE THAT BUT PERSONALLY I RECOMMEND TWEAKED ROOTED ANDROID
- WHEN YOU WANT COMPUTER YOU PROBABLY NEED RDP (CAN COST 30-40$ PHYSICAL RDP NOT VM) DONT RECOMMEND.
THAT'S PROBABLY EVERYTHING WHAT YOU NEED,TO BE CARDER i WAS SHARE NON-VBV BIN FREE SO CHECK IT FOR FREE.
CARDING IS NOT EASY LIKE PEOPLE PRESENT YOU ITS FUCKING HARD FOR AND COST A LOT TIME,MONEY LEARNING AND MISTAKES.
I WAS COME ON DARKWEB BECAUSE I WAS BROKE IN REAL LIFE AND I WAS THINK CARDING/FRAUD BE SOLUTION,BUT FOR ME NEVER WAS.
IT WAS TAKE LONG TIME AND ALMOST ONE YEAR MORE I GO ON SHIFT AND MONEY FROM JOB USE FOR CARDING/FRAUD.
WHEN YOU WANT FAST AND EASY MONEY BE HONEST AND I DON'T JOKE NOW I RECOMMEND SOMETHING ON SOCIAL MEDIA ( LIKE AFFILIATE MARKETING ) USE DARKWEB OR ETC TO BUY BOOSTED ACCOUNTS,FOLLOWERS AND ETC OR EVEN CREATE WEBSITE,GET TRAFFIC AND GET SOME ADS WHAT YOU MAKE SOME PROFIT (THERE IS UNLIMITED METHODS AND WAYS).
I AM SURE OVER SOCIAL MEDIA YOU CAN MAKE MORE MONEY AND SIMPLE,INVEST ITS ABOUT 20-30$
EXAMPLE : BUY INSTAGRAM ACCOUNT +20-50K FOLLOWERS,OR EVEN TIKTOK VPS,DOMAIN AND TAKE CARE ABOUT YOUR AND RUN SOME PROJECT.
BUT BE HONEST I WAS NOT LEARN 2 YEARS AND SPEND A LOT TIME, MONEY AND EFFORT TO BE JUST INFLUENCE BECAUSE FOR ME ITS SIMPLE AND DON'T IN LONG TERM WHAT I WANT LEARN,GET KNOWLEDGE AND BE BETTER AND NOT DO SOCIAL ACCOUNTS.
SO WHEN YOU DO FRAUD/CARDING YOU WILL LEARN EVERY NEW DAY AND ITS LIKE ENDLESS JOURNEY.
ANOTHER GOLD RULE IN LONG TERM.
REMEMBER MOST IMPORTANT IS SECURITY AFTER MONEY,NEVER RISK OR EVEN DO SOMETHING WHAT COULD PUT YOU IN JAIL.
FOLLOW THIS FEW STEPS AND I AM SURE YOU BE SAFE.
1. SECURED VPN (MULLVAD FOR EXAMPLE) DONT USE NORD VPN AND ETC
- and use tor socks when you re paranoid or even some ssh server
2 - LINUX IS MORE SECURED AND FOSS THAN WINDOWS IN LONG TERM
- i am lazy now find some relative information how Microsoft collecting your data and etc (biggest problem it was on Windows 10+)
- there is some tools on github what you could fix security and opsec on Windows but i recommend learn on Linux
3 - LUKS/PASSHARE
- its basic rule but many people don't follow it,encrypt your hardisk protect you more than you can imagine
- again basic rule but use strong password for encrypt ( few examples )
- never write this password on piece of paper and etc its can compromised your security,just in your head and remember it
(combination of favorite songs and etc be creative special symbols and etc)
be sure you use special symbols,length more than 20-30 characters and this password for encrypt hardisk don't use anywhere else ( just can be for PGP )
4 - STORAGE SENSITIVE INFORMATION'S/DATA AND DIFFERENT PASSWORDS
maybe you asking how you can remember passwords like:
eYai1hizEas3eng0
Yeiqu8cheiHuboh3
uG1phaPhohsh6Ph
Simple bro I too don't remember that I encrypt that with PGP like message and storage somewhere like on jabber and etc
example of PGP messages what encrypt sensitive information,upload on your hosting,mega.nz or email, again be creative.
-----BEGIN PGP MESSAGE-----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=Fve5
-----END PGP MESSAGE-----
5 - DIFFERENT PASSWORD EACH SITE
I think that's default think and hope everyone do it.
For users what not have experience with Linux I recommend to download Linux mint,Parrot OS and simple stay on debian
when you re new on linux but you re interested about malwares or phishing and too dont know coding and etc you can simple go on https://github.com there you can find many open source tools and help you with begins.
Be inspired and motivated.
Now fast something about me i was start like carder after few months i start do digital driver licenses and not be successful jump on first Linux and starting watching videos,leaked courses and etc.
Start first phishing on Facebook when i over Social engineering tricked people and over few minutes take over account and Share phish link over victim account.
maybe you think and did you earn something ? nah it was just experience and that's important bro
i was create first malware what 16/26 used some tools and decreased that on 6/26 (for hacking company and etc its not working but when you hack people on internet or even kids its be works).
Look i am not professional about hacking or coding that,but about security and carding and fraud I know a lot because i was focused on that on begins.
Many times when i read this forum and checking for example vulnerabilities i don't understand that many times or even when i check how make malware never possible for me at this moment.
And be honest when i was did carding long time i just bought some stuff on P2W games and was best on server because i was not possible to buy some gift card and etc.
anyways that can be too ca-shout method like have League of Legends older account and top-up riot points for example and sell that somewhere.
I never bought something with physical delivery because that's something what i am most afraid,I recommend stay on digital sphere.
And I think many times earn money its not about experience and knowledge but how good you use your current knowledge And etc its not mean exactly now carding
we are more lucky than our parents what lived without internet,because internet could give you so much power
i hope this post and article was helped because that's i want.
reason why I limited some information with requirements reaction its simple because i don't want some people start selling this information copy/paste post or even present like carders.
because I am not Russian (probably you know that) i was long time on English forums and people was present my post like their knowledge.
Something similar was happened me on Telegram carding groups where,they kicked from group and start scam people and bait over advanced information so that's reason why I was did that and I hope you understand that.
Over few days I be re-edited this post and add more information,make better style of text and etc after I be make some videos, screenshots.
I be appreciate comment or even when you disagree with something,just write in comment and we can start discuss.
And once again I want thanks for community,forum,where people help each other, be safe everyone.
I can guaranteed its really non-vbv bin from United States Texas 467010
but you must know its can triggered OTP password when you maked big payment or even anti-fraud system flagged you on security.
Look i was never successful with Mastercard (MSC) always triggered with OTP/3D secure so always stay on Visa.
ADVANCED INFORMATION WHAT CAN BE JUST INTERESTING.
I can guaranteed you more successful payment you get over Mobile phone than Computer but be careful its can be dangerous in hands of novice who dont root his device and use stock rom where is pre-installed gapps.
When you use Mobile phone dont use DSL SOCKETS.
DSL IS CABLE CONNECTION ON MOBILE DEVICE CANNOT CONNECTED OR I WAS NEVER SEE THAT BEFORE SO JUST WIFI/LTE.
When you don't want use Mobile phone but instead Linux or Windows.
I can recommend puppeteer (sudo apt install npm, nodejs) and with coding knowledge and experience you can manipulate with javascript and make secured browser
but unlucky for me over https://abrahamjuliot.github.io/creepjs i was always detected and I litteraly spend with puppeteer few days anyways with anti-detect browser I don't have good experience many of they are build for affiliate marketing ,so when you have own source or even something not publicly available its can works.
I was spend many days and weeks to prepared setup on Linux or Windows but always I get some complications and anyways my payments not was always successful.
For this reason I use rooted android device with custom rom and few xposed modules.
But I am sure its not still secured,because without Gapps, google my device still ping and I dont know why, so I always over carding, flash custom rom again because sometimes I am paranoid when its there someone experienced, please could you me explain how its that possible device not have any google app and have custom rom but google pinged me.
i was blocked that over iptables but not help after reboot.
4. PERSONAL CHOICE
SITES FOR CHECKING SETUP/SETTING (MY PERSONAL CHOICE)
https://whoer.net/ (MOST COMMON SITE WHEN YOU DONT HAVE EVERYTHING GREEN AND 100% YOU CAN START AGAIN)
https://www.dnsleaktest.com (DNS LEAK TEST)
http://pixelscan.net/ (FOR FRAUD/SCAM EVERYTHING MUST BE GREEN)
https://browserleaks.com/ (BROWSER INFORMATION,JS,WEBGL,CANVAS AND ETC)
https://abrahamjuliot.github.io/creepjs/ ( ADVANCED SCANNER OF BROWSER)
https://scamalytics.com/ (CHECK ANTI-FRAUD SCORE OF PROXY)
METHOD HOW CHECK SETTING/SETUP AND CARD
https:/spotify.com/ - BUY PREMIUM,CARD NOT BE CHARGED FIRST MONTH
https://www.hulu.com/welcome - CARD NOT BE CHARGED FIRST MONTH
there is more sites what provide some trial features,be creative
Why I use this for checking setup and card?
Because this payment never be red flagged when you check your setting with some low payments like $1-3 can be sometimes red flagged when you have bad setup and etc
And anyways who don't want spotify premium for free?
With spotify you get simple result when its not work there cannot be different problems like i said on begin
1 - CARD IS DEAD, 2 - BAD PROXY, 3 - BAD SETTING/SETUP
PLEASE DON'T SHARE PUBLIC BROWSER CHECKER BECAUSE I GATHER THIS SITES OVER TWO YEARS
THANKS FOR RESPECT MY EFFORT AND WORK WHAT I PUT ON THIS POST.
WHEN YOU DO FRAUD/CARDING CHECK ALL SITES THEY WORK BEST TOGETHER.
TOMORROW WE CONTINUE, SEEYA
us 100% noVBV bin: 467010
Links for open source scripts for spoofing vm? I wanna tr There you have nice article with example how do that, Evasions technique for Virtual Machine.
