Oct 24
1 January 1970
01:00
Deleted Account
21 October 2024
CrdPro Class has set messages not to auto-delete
C
16:41
CrdPro Class
Welcome to everyone who decided to become a part of our family! Wish you to spend this time in a smart way. Don't be lazy if you want result.
Now 2 things:
1) Please send your time zone in UTС format to find the most comfortable mutual time for lessons.
2) Join our premium tg chat https://t.me/+1hfBOZYw_nJiMDYy
CrdPro Class pinned this message
A
16:42
Al Paco
Gmt+6
KT
16:42
King Themes
Gmt+7
l
17:12
lalkin
utc+1
P
17:34
Prometheus
Gmt+2
MR
18:35
Mr Rain
Hi, guys
I'll send schedule later today and we start tomorrow
KT
18:36
King Themes
Yes sir.
S
19:29
SKYTRAVEL
Utc +3
MR
23:53
Mr Rain
Okay
Our schedule:
Monday Tuesday Wednesday Thursday 18:00 utc+3
❤
A
Mr Rain pinned this message
22 October 2024
A
04:06
Al Paco
is it possible to do sooner? like 14 utc +3
❤
KT
A
04:45
Al Paco
of course if that works for the others as well
A
09:32
ACAB
Hello everyone :) Im GMT+2
❤
KT
Hansen Club joined group by link from Group
KT
16:57
King Themes
In reply to this message
It's time, sir!
❤
A
A
16:59
Al Paco
is there a link? or?
MR
17:00
Mr Rain
Hi guys
17:00
Starting in few mins
17:02
#lesson (Introduction and security)
17:03
I'll mark every lesson with hashtag #lesson and so u always can find it here
also I'll add tag #useful to posts with useful links and contacts
So, our first #lesson is about what is carding and about some important terms for our next work, then we'll talk about security
Also please ask any questions after lesson, so if anybody missed lesson he could read it and then read other questions and answers
17:04
There Is a delusion about carding that carding is very easy and very profitable, just like the money button
and it's not exactly, because carding is really profitable, but not so easy, it's real work, but just not legal
17:06
From the term "carding" I think you all understand that we'll work with cards, which doesn't belong to us :)
And maybe some of you worked with cards earlier, but if not, it's okay, we'll have training practice for beginners and also today we'll talk about some important terms
So let's Imagine that we bought a credit card and here is the example how it usually looks like:
4393598220284327|11\21|041|Somebodys Name|3109 Forest Drive|Washington|VA|20005|703-
871-1263
We've got there:
NAME: Somebodys Name
ADDRESS: 3109 Forest Drive
CITY: Washington
STATE: VA=Virginia
ZIP CODE: 20005
TEL. BILLING NUMBER: 703-871-1263
CARD NUMBER: 4393598220284327
CARD EXP DATE: 11\21
CVV CODE: 041
Also it can be in another format, but the point is the same
And sometimes there is Middle name in name, it's okay, we may not use it, because shops don't check it
17:14
Some cards beside this info can contain ssn and dob (social security number and date-of-birth) and rarely mmn (mother's maiden name), it can be useful in some cases such as enrolling cards or for additional verifications, we'll talk about that
And now let's take a look at the card number, there is a very important thing - BIN number
bin is the first 6 numbers in card for example 400395, it can give us a lot of information
17:19
At first, we can check emitent, it can be AmericanExpress, MasterCard, Visa, Discover and many other companies that we don't care cause they are unuseful for us (for example in Russia we have МИР and it's piece of shit, really, I don't recommend to use it for carding too)
We usually work with Visa and MasterCard because Discover processes payments slowly and Amex cards have fast chargebacks, it's not good for us
👍
KT
17:21
So, chargeback is when cardholder calls to his bank and says that his money was stolen from card and after that bank calls to shop and says the same shit and after this shop usually cancels our orders and we don't get our money
Amex and Discover have fast chargebacks so we usually don't work with them
17:25
We may use bindb.com or bins.su to check info about bin, and it's really easy to differ companies which made card by bin:
-CC's that start with number 3 such as 3xxx-xxxx-xxxx-xxxx are AMEX
-CC's that start with number 4 such as 4xxx-xxxx-xxxx-xxxx are VISA
-CC's that start with number 5 such as 5xxx-xxxx-xxxx-xxxx are Mastercard
-CC's that start with number 6 such as 6xxx-xxxx-xxxx-xxxx are Discover
17:29
To get payments shops usually have payment system. Also some payment systems can be e-commerce platform too, I mean beside getting payments they can process orders and hassle shop's manager if something is wrong with our card or ip address, or browser and so on
BUT
Sometimes there are exceptions, which we'll talk about
Especially in Asian shops
Also there is antifraud system beside payment system, it's not the same, but they are usually used together, we'll talk about antifraud, it's very important thing in carding
17:31
Using checkers such as bins.su we also can check what bank issued out the card (Bank-emitent), what is it's level and type
So, Card can be of two types - debit and credit, and also it has a lot of levels (and debit with overdraft sometimes)
debit card resembles the credit card by the method of using, but it realizes direct buyer account debiting at the moment of the payment. And credit card has credit limit so we can spend additional money, it depends on the size of the credit limit
this size depends on card level. There are a lot of levels - classic, standard, prepaid, platinum, gold, premium, premier and so on
17:35
You don't really need to know about each level for now but I recommend not to use debit classic, debit electron, debit standard and debit prepaid, because almost always they have about 100$-150$, it's not worth our time
Also there are such levels as business, world, reward etc
I recommend not to use it when it's possible
It can have additional restrictions
And some useful things for our next work
our team have two main boards — procrd.org and crdpro.cc
here u can find useful contacts and vendors
but always check if it's trusted and if admin checked it and verify contact in personal message on forum
17:37
And now let's talk about security etc
So, we should differ privacy from security and also from pretending to be a holder, first of all privacy ≠ anonimity ≠ security, all of them have differences
Privacy is when anyone can find out who you are in internet but "they" don't know what are you doing here
Security is just when it doesn't matter if anybody knows who you are and what do you do, but it's secure, because can't be watched
17:39
When we do something not really legal like carding, we need privacy and anonimity and security as well and it's not so hard to set it up and keep
First of all when we surf some darknet sites and just not legal sites as procrd or crdpro, home provider can see our dns-requests and direct IP requests
17:44
DNS is system which connect domain and server
So any website is stored on server, but it has domain to connect to it
So when we put google.com for example to address bar dns system search dns-record for google.com, then give us the server's IP
So providers can see it and it's too suspicious when we surf any illegal sites
Also they can use DPI, but i'll show how to bypass it
17:45
Also sometimes you can read about changing Mac address
But it's senseless
Because mac address is local network identificator
17:47
We must keep our sites in secret from other people especially from home internet provider as well as our internet traffic, and so we may use vpn or tor
we can use TOR or I2P for surfing forums. It's a good way to keep privacy and anonimity, by the way you can use tor browser as well as tor proxy
If you want to use tor proxy, just start tor and put 127.0.0.1:9050 as socks-proxy in your any program or any browser, for example you can use it for your wallets
17:50
Also I recommend to use personal vpn and we'll make our own VPN on the first practice. I really not recommend to use any VPN services. They can log us. It's absolutely not safe, so it's better to make own VPN without logs
17:52
The next important point is payments
17:57
First of all, obviously, never pay for any dark services with your own card or PayPal
17:57
Pay using crypto
17:58
Secondly, never use Binance or other services like that
It requires kyc and they control your money, also they send your info to police without any doubts
18:00
I recommend to use exodus or trustee or any other free wallets with no kyc
And changelly or changenow for money exchange
18:01
Also it's better not to use usdt, because it's observed by CIA
Monero is the very best crypto if we talk about anonymity
18:04
The next very important thing - security of our own data and how to keep it
So let's imagine that all of our data keep on our hard-disk unencrypted and some script kiddy schoolboy hacks us and get it
It's really bad cause after that he can blackmail us. also guys from police can do the same in fact
18:05
So, we need to protect our personal data, the best way is to encrypt it, I mean not all data but just tutorials, any files with bins, ccs and other work stuff
But before it let's talk some about OS
Windows is insecure, it's a fact
The best way is to use Linux systems, there are a lot of it:
Home systems such as Ubuntu, Debian, Fedora etc
Strongly secure systems: Qubes, Whonix
and many others
18:07
It's not necessary for now, but If you'll want to start learning Linux, I recommend to try Ubuntu on virtualbox at first, it looks like windows and it's pretty easy for new users, or debian, or fedora
And there is one big problem in linux systems — some tools don't work there correctly
For example some antidetects, in that case I recommend to use it on Windows VM or just on other PC with Windows
18:12
And for encryption i recommend to use VeraCrypt (https://www.veracrypt.fr/) for this purpose because it's strong and easy to use
It can create a small disk partition just in file and after that you can mount it and save your files to this partition and also it can make hidden partition, nobody can prove that it even exists because it's really hidden under the first encrypted partition
18:14
Another thing is fingerprinting. Today almost each modern site has fingerprinting system, it collects information about your browser type and version, as well as your operating system, active plugins, timezone, language, screen resolution and various other active settings
So we should use browsers which can prevent it, there are many antidetect-browsers, we'll talk about it on next lessons when we'll talk about how to be disguised as holder, but there is newest version of Mozilla, which also can prevent fingerpring leakage. I strongly recommend to use it as well as vpn to surf websites
18:15
Also there is free version on dolphin, it can be used for personal security , and we'll use it on training practice (BUT I don't recommend to use it for carding usually)
That's all for today, feel free to ask any questions
We'll have practice with setting up VPN tomorrow, I'll send homework soon
KT
18:38
King Themes
Thank you, sir! Could you recommend the best antidetect as well as proxy services?
18:41
And do you think email service is big thing can impact to carding? And this course available how to check a blacklist email address, sir?
MR
18:42
Mr Rain
In reply to this message
Sure, I'll send it on next lessons
I recommend to start with Che antidetect
18:42
In reply to this message
Depends on shop
For some of them it's really important
18:43
First homework for you is to buy server and download tools:
You need these tools to connect to server from windows
#useful_info
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html
and Servers
https://www.vps.ag/
https://csrdp.host (best)
https://yourserver.se (the best)
https://itldc.com (the best)
I recommend to buy server with the last version of Ubuntu or Debian without RDP installed on it
A
18:44
Al Paco
In reply to this message
Che antidetect?
KT
18:47
King Themes
Homework is carding these sites, right?
MR
18:51
Mr Rain
In reply to this message
No, homework is to buy server from one of them
18:51
In reply to this message
Che Browser
👍
A
A
19:06
Al Paco
In reply to this message
So I can buy server from either ubuntu or debian with the latest version, but how do I know if has RDP installed or not? also can you explain a little bit more about the tools and the chiark link, I am not sure I understand
P
19:31
Prometheus
Please tell more about these servers and how to use it. We need them to store carding tools, etc or for what exactly we are going to use it?
MR
19:53
Mr Rain
In reply to this message
There is only one tool
Putty
Download it from link
Regarding server, just buy the cheapest one with Ubuntu installed on it
19:53
In reply to this message
For setting up own secure vpn
19:53
We'll do it tomorrow on practice
P
20:08
Prometheus
Okay. Im using windows 11, that is still okay?
MR
21:00
Mr Rain
In reply to this message
Yes
23 October 2024
MR
16:52
Mr Rain
Hi guys
Please send + to chat, who did homework
A
16:52
ACAB
+
16:55
btw. Cyprus have got the lowest % vat its the chepest price ^^ if u buy on vpsag.com its fews $ chepest ^^
16:57
Lol, I just realized you said it was the best one, but I actually picked the worst one?! :(
MR
16:58
Mr Rain
In reply to this message
It's okay
A
16:59
ACAB
uff great
16:59
tomorrow morning: knock knock FBI please open the door **
😁
MR
16:59
haha 🤣 joke before next lesson
😁
KT
KT
17:02
King Themes
Hi sir! Own vpn for what? Hidden identity to suft some dark websites or carding?
MR
17:03
Mr Rain
In reply to this message
For websites and for first step in chain: vpn+antidetect with socks
👍
KT
KT
17:04
King Themes
I understand, sir
MR
17:07
Mr Rain
Okay, if you already have server, let's start
17:07
17:07
First of all, let's open Putty
Put IP to the field and click open to connect to server
17:08
It asks for login
Login is 'root'
17:08
Then it asks for password
It will be hidden while you type it
17:10
After connection please send screenshot here
A
17:10
ACAB
In reply to this message
.
👍
MR
MR
17:17
Mr Rain
Okay
First of all let's update the server
Type:
apt update && apt upgrade -y
A
17:18
ACAB
Progress: 8%
Edit: Rdy
👍
MR
MR
17:28
Mr Rain
Good
Now let's download Amneziavpn from it's official site
A
17:37
ACAB
Ok downloade on Windows and also on Linux ^^
MR
17:37
Mr Rain
Okay
Open it and choose add new self hosted server
And then choose protocol
17:37
If your country has strong firewall, then choose amneziawg
Else choose wireguard
A
17:40
ACAB
MR
17:43
Mr Rain
Okay
Try to connect and check IP in browser
A
17:43
ACAB
yes its working ^^ but Can I remove one application so that it never uses this VPN? Playstation REMOT PLAY .. i need it on my normall internet :P
👍
KT
17:44
but np i find info about it :)
MR
17:44
Mr Rain
You can use spliit connection or just switch off VPN when you doesn't need it
17:45
Okay, let's go back to putty and switch off logs
17:45
First of all let's go to logs folder:
cd /var/log
A
17:46
ACAB
MR
17:48
Mr Rain
Okay
First of all let's switch off tools which write logs:
systemctl disable rsyslog
systemctl disable syslog.socket
A
17:50
ACAB
A
17:50
Al Paco
In reply to this message
It says invalid operation upgrade
MR
17:51
Mr Rain
In reply to this message
Send screenshot
A
17:51
Al Paco
MR
17:51
Mr Rain
In reply to this message
Good
It's already doesn't work
Secondly let's erase existing logs:
echo -n > lastlog
echo -n > btmp
echo -n > wtmp
17:51
In reply to this message
You typed it wrong
A
17:53
ACAB
MR
17:55
Mr Rain
Good
And now we should deny any changes in these files:
chattr +i lastlog
chattr +i wtmp
chattr +i btmp
A
17:56
ACAB
17:56
and everytime when we change vps or something, every time do this configuration yup?
MR
17:57
Mr Rain
Right
17:58
And now let's erase other files in folder
rm -r /var/log
A
17:59
Al Paco
is this good?
MR
18:00
Mr Rain
Yes
A
18:01
Al Paco
ok waiting for amneziawg installing
👍
MR
18:04
18:07
18:14
like this? im not susre if this is right
A
18:14
ACAB
MR
18:14
Mr Rain
In reply to this message
Yes, it's right
18:15
In reply to this message
That's because we blocked any changes in these three files
It's okay
👍
A
A
18:15
Al Paco
A
18:16
ACAB
the same like on my its ok
A
18:16
Al Paco
ok good finally caught up, thanks
👍
A
MR
18:18
Mr Rain
Good
So that's all for today
Now it's done
A
18:19
Al Paco
cannot make it 100%?
A
18:20
ACAB
we add proxy socks5 and be 100% i thinking ^^
18:21
Ok Thanks for today see u tomorrow
MR
18:21
Mr Rain
In reply to this message
You don't need 100% here
It's not for carding, it's for security
A
18:22
Al Paco
Ok mate thanks, what's next for tomorrow?
MR
18:23
Mr Rain
We'll have lesson about antifraud
A
18:25
Al Paco
weird
18:26
I just tried disconnecting amnezia and reconnecting just now, I cannot connect it back
18:27
is there an explanation?
MR
19:16
Mr Rain
Do you get any error?
24 October 2024
A
02:52
Al Paco
no, its just loads for like 1 milli second and get back to connect again without connecting
A
03:41
Al Paco
is there a way to reset everything and start from scratch? I rebooted servers and am able to connect to amnezia but cannot improve anonymity back to 90% stays at 70% like first run
KT
05:05
King Themes
70% is okie sir, this vpn for suffer websites like: crdpro, cc shop… it doesn’t matter, for carding you will use proxies, you will have 100%
A
09:50
Al Paco
A
16:53
Al Paco
have something wrong ?
16:53
MR
17:10
Mr Rain
Hi
We start in few mins
17:10
In reply to this message
No, it's okay
A
17:11
Al Paco
ok thanks
MR
17:15
Mr Rain
#lesson (Antifraud)
17:15
At first - what is antifraud
antifraud is the system which checks different parameters in our browser and connection and then add fraud scores if it find something strange and often it causes to decline our payment
17:18
So, beside that, of course, every time when we card, we need to be like a holder
because otherwise bank-emitent, merchant and af-system just decline our payment
So we can't use only VPN or Tor when card some stuff
VPN and tor are just for private security, but when we card, we need to use something that can make our connection and it's location closer to holder billing address and also it must be clear (I'll talk about it later today)
17:20
So we can use:
- SOCKS
- SSH-tunnels
- Home dedicated servers (RDP or VNC)
- OpenVPN home configs
Socks is stable and fast way to connect to other server and use it's ip for hide us and mask us as holder, but It can die very fast
so I don't recommend to use Socks for enrollment, we'll talk about it on one of the next lessons
17:23
Ssh tunnel is connection when we connect to server and then proxify our system
So when we buy ssh-tunnels we connect to home servers, after that we can proxify our traffic and use ssh as the way to mask our connection
17:26
Dedicated servers are real home PCs which we can use for carding but often it has dirty IP, it's not good because we'll get additional fraud scores
It can be used via RDP protocol or VNC
17:27
And home OpenVPN config is when somebody set up vpn on home router in USA or in other country, then we can use such VPNs for carding because it has pretty clean ip
it's nice way but sometimes it's difficult to buy such configs
IT'S NOT THE SAME AS VPN ON VPS
17:29
Always check contacts of sellers on forums, it's better to always use only trusted services, and there a lot of it on crdpro.cc
And now let's talk about one of the most important thing in carding
After we buy any of these things (SSH or Socks or Dedic) we need to check some very important things and check it's clearance
17:31
So at first - black lists
Let's check our current connection, it's safe, just for example, just imagine that we connect to ssh or socks
so, go to https://dnschecker.org/ip-blacklist-checker.php and let's check if our IP is in black list just for example (we don't need to check it later, just for example now, the same thing we always do with socks or ssh or rdp before carding some stuff)
17:37
If ip for carding (not vpn) has more than 2 blacklists then it's not good
so it should have 2-3 black lists max and If more then we usually have to buy another ssh or socks
After that we always need to check score here http://getipintel.net/free-proxy-vpn-tor-ip-lookup/
17:43
If it's more than 0.6-0.7 then we should change ssh or socks to another and check it
so if our ip (of our SSH or Socks) is in more than 2-3 black lists or it's score more than 0.6-0.7, then we have to buy another one
After that we should sign up here https://www.ipqualityscore.com
Then we should go there https://www.ipqualityscore.com/user/proxy-detection-api/lookup and check our ip using 2nd method
17:45
So here we need to check:
Proxy/VPN Detection: ___
VPN: ___
TOR: ___
Fraud Score ___
The first three should be False, it's important
Fraud Score should be less than 65-70, 70+ is really bad because antifraud mark it as fraud IP
17:46
Also there are two bots @ipscorebot @zpcny_bot
They also can check it
Also they can check ASN, it's pretty important thing for large shops
17:48
So, ASN is an ID of group of IP addreses
Some companies thought that it's too difficult to check IPs and they decided to group it and give a number to each of groups, so if this group in black list, then all IPs in black list
They also can check ipqualityscore but not good, so we need it firstly for checking asn, don't use it instead of other checkers
17:50
So we always should check our IP using these checkers
That's all for today, feel free to ask any questions
For proxy I recommend:
https://piaproxy.com
https://faceless.cc/
https://spaceproxy.net
That's all for today
👍
A
P
17:56
Prometheus
In reply to this message
So we just have to choose one of them like socks proxy, and use it with an antidetect browser after we checked ip blacklist?
17:57
And the own vpn we dont need to use in the same time for carding?
A
17:59
Al Paco
In reply to this message
Which one is best to use?
MR
18:01
Mr Rain
In reply to this message
Yes
18:01
In reply to this message
It's under the socks, the first step
18:01
In reply to this message
Socks
P
18:01
Prometheus
In reply to this message
How do you mean its under the socks?
MR
18:02
Mr Rain
Your pc —> vpn —> antidetect+socks
A
18:03
Al Paco
In reply to this message
Didnt you say, that you dont recommend using socks because it can die very fast?
P
18:04
Prometheus
The own vpn will run in the background while we are using antidetect and socks? And its only need to set up once in the beginning? The vpn?
18:05
The own vpn shoud be set up in the same location like the socks in the antidetect browser? Its not going to mess up the socks connection? I had this problem before and i couldnt use the socks with antidetect while the vpn was on.
A
18:16
Al Paco
Also are we up tomorrow to catch up for this monday or next monday?
18:23
@crdpro_class We Finish today ?
C
18:50
CrdPro Class
In reply to this message
i am not your teacher, bro 😄
A
18:51
ACAB
In reply to this message
"So we always should check our IP using these checkers
That's all for today, feel free to ask any questions
For proxy I recommend:
https://piaproxy.com
https://faceless.cc/
https://spaceproxy.net
That's all for today"
ye finish for today
25 October 2024
MR
02:27
Mr Rain
In reply to this message
Yes, bro
❤
A
A
16:13
Al Paco
Is mean we still learn to day ?
A
17:08
Al Paco
MR
17:20
Mr Rain
Sup guys
17:20
Very sorry for being late
17:20
Let's start
17:20
#lesson (Carding basics)
17:21
So, when we gonna card something we buy ssh or socks first, before buying card and we buy card just before the payment, so in that case we'll be able to refund it if it's dead, the best way is to get ssh just near the holder, but if we have not such ssh we can use with the same city or the same state
So let's imagine how holder usually buy something online
17:23
1. He just open any shop
2. Chose some stuff
3. Then he use his billing address and shipping address
4. Then he enters card's details and makes a payment
So he can easily do it and he doesn't care about his IP address or other things, but we must think about many things before making payment, because holder has real setup, but we just try to mask as holder
17:26
At first before we buy CCs we need to find SOCKS or SSH with ip near the billing address
Then we should check if it's pretty clean using checkers and then we should get some cookies
because holder has cookies in his browser so any shop will see that he is an active user
17:29
And so when we gonna card we have to collect some cookies too, so we can just surf some news or shops and then open the shop which we wanna use
After we get cookies and go to shop we just choose some stuff and then when we gonna use shipping we must consider very important thing which is in most shops in USA - AVS. Its Address Verification System
AVS can check only numbers but if shop has this system (most of USA shops has it) then we must enter real billing address of card holder or we'll get decline, for example if address is 1212 Street Road, it'll check only 1212 and so, there are some another things that u should know
17:31
At first we can card some "not liquid" stuff such as blenders, hunting stuff etc, not large shops may ship it even if shipping address isn't the same as billing
or we can try to find shops without AVS and use it, but it's really difficult in USA (we'll talk about EU and Asian shops later, on next lessons)
17:33
Also we can use CCs of countries which don't have AVS, but many shops can see it when process order and it would raise questions, so it's good way but just for not large shops with "non-liquid" stuff
"Liquid" it's stuff which is easy to sell, iphones, mac and other electronics
"Non liquid" are blenders, hunting stuff etc
17:42
Regarding liquid stuff, we can use Enroll, or such ways of carding as pickup and redirect, we'll talk about it later on lessons
And now let's talk about where to buy CCs and how to choose the right CCs
17:43
There are many cc shops and I recommend to use only trusted vendors, because besides good shops there are resellers and other scam, expecially sometimes a lot of resellers appear on forums
17:52
At all times carders sometimes have troubles with quality of ccs and if anybody says that his shop has 100% validity, just know that it's bullshit
17:54
Some shops have not much filters, just base, bin, type
These filters are really not enough because we can't choose types of levels for example, but it helps to save some good ccs for those who search by bins
17:55
So I recommend to collect your personal notes and write any bins that you'll buy and use
but let's imagine that we don't know any bins but we really need to buy good ccs
In that case we should go to bins.su and find there some bins and then search by them in shop for example
17:57
Other shops have more filters, you can choose level and type there
But if you'll choose cards only by level and type, it's not the right way, because there are banks which I strongly recommend not to use
18:01
I recommend not to use these banks:
1. JP Morgan Chase
2. Bank of America
3. Citi Bank
4. Wells Fargo
5. US Bancorp
6. HSBC North America Holdings
8. PNC
9. Capital One
10. TD Bank US
11. BBDT
12. Barclays
13. Suntrust
18:10
And regarding homework
On Monday we'll have practice
It will be training practice just for getting the way of carding and get basic skills
It's for beginners, so if you already worked with cc you may skip it
So, we'll practice with two pretty easy sites Netflix and tunnelbear, it has not so strong antifraud
Then we'll talk about how to find shops and about more advanced methods
We'll need free version of sphere antidetect (or paid) for practice and also we'll need socks or ssh with location near billing address
Regarding IP, it's better to take an IP near the cardholder for now
So
For practice u need:
1. Free Sphere (or paid)
2. Add funds to shop with CC
3. Buy ssh or socks
4. FIND CARD BUT DON'T BUY IT
5. Sign up new e-mail
We'll buy card just before paying, because if it's dead we should have enough time to make a refund in this case, so you should just find good card and then, after we fill all fields in shop u'll buy it and pay
Please, carefully read the rules in shop, regarding refunds
SO DON'T BUY IT BEFORE PRACTICE
And never check the card before payment, it may kill the card
For email I recommend hotmail or gmail or yahoo, gmail and yahoo ask for SMS but u can use services for getting sms, I'll give it later
And Hotmail allows to sign up email without sms
Also please download sphere or any other antidetect and try to connect to SSH or socks which u should buy before practice and before practice check that ip is clear or socks
Also there is very important thing - timezone
When u connect to SSH or Socks, go to whoer.net after checking that ip is clear, it shows if there are any problems with browser such as dns leakage or different timezone
And if dns leaks, you may put custom dns server (you may take it from public servers of country)
So u should set timezone exactly the same as on ur SSH or Socks, whoer.net shows it as Local Time, just Timezone, NOT time itself, but timezone
Also of course ur language in system must match the language of the country of shipping address, sphere masks it
Those 5 things is homework for Monday
That's all for today, guys
And you can get free version of sphere here https://sphere.tenebris.cc/
Or you can buy full version and download it where u bought it
Also you can use https://dolphin-anty.com/, it's free antidetect, and for practice it's better
P
18:15
Prometheus
Please answer this sir!
P
18:15
Prometheus
P
Prometheus 24.10.2024 18:05:39
The own vpn shoud be set up in the same location like the socks in the antidetect browser? Its not going to mess up the socks connection? I had this problem before and i couldnt use the socks with antidetect while the vpn was on.
KT
18:15
King Themes
In reply to this message
Can you explain shouldn’t use these banks?
P
18:18
Prometheus
And also when we try to find the good bins, how shoud we know if its vbv or non vbv? And also when i try to find cards everybody asking for binlist, i think to start we shoud get some good bins to use, or from where shoud we get them in the beginning? I have some experience and also some recommended bins, but they are always changing and sometimes are just not working because of vbv.
18:22
I see on this link you sent to buy binlist. But they are updated last year only.
MR
18:23
Mr Rain
In reply to this message
No, it shouldn't be the same location
18:23
In reply to this message
They have strong antifraud system and a lot of fraud triggers
18:24
In reply to this message
Well have lesson about it later
18:24
For now we work only with US cc
P
18:24
Prometheus
And i dont see non vbv eu bins. :(
MR
18:25
Mr Rain
In reply to this message
Don't buy binlists, it doesn't have any sense
P
18:26
Prometheus
So from where shoud we know the good bins then?
18:27
For me in the EU will be difficult to order something with an US card and ship it since im far away.
18:27
If its a phisical product. Takes too long to ship.
MR
18:38
Mr Rain
In reply to this message
If you want to order something to you it's very bad idea
18:38
Always order to drop to sell the stuff
Don't use carded stuff
18:38
In reply to this message
On next lessons
A
18:45
Al Paco
One more question. Why I have conected when I use Ameneziavpn and piasock on the same time
P
19:53
Prometheus
In reply to this message
I dont want to order anything to myself.
26 October 2024
MR
02:20
Mr Rain
In reply to this message
What do you mean?
A
02:22
Al Paco
In reply to this message
Can not use Amenezia vpn and piasock on the same time
it makes it impossible to connect to the network. can only use one at a time
A
04:03
ACAB
frends vpn its only secure for u , for u connecting ur computer with dark forums, dark shops, all other pages (remember owner's also have got problems with police, fbi, etc if u connecting every day with yours normal ip "you welcome"
socks5 its for carding or other illegal working (its like one time gloves, after work u burn it and u are clean)
COMPUTER »»> VPN »»»> CC SHOP/ FORUMS/ ETC ILLEGAL PAGE (ALWAYS ITS YOURS SECIURYTY) if u want start carding »»» BROWSER ANTIDETECTED »»» SOCKS5 or other proxy »»» FRAUD / CARDING ETC
04:03
sorry for my bad english
04:04
friend u mast remember VPN its for u and u seciuryty
socks5/proxy its for ur cards/ for ur works / and also for next u seciuryty
❤
A
04:19
the black guy with a phone and computer is you (you are in a bank that protects you every time and it is a VPN - blue circle)
you visit various websites, forums with carding, hacking, you buy CC cards, you use Telegram, you leave a trace everywhere, but not your own trace, only your VPN
and now there is work, i.e. fraud and theft
, mapping or anything else, then you put on top of your blue bubble another bubble which is anti detected browser (red circle) and this red circle is also connected to socsk5/proxy (green circle) so you add further layers of protection, masking... when you finish work, you take off the green and red bubbles...
you sleep in the blue one, you shit, you are in the blue one 24/7
🔥
MR
A
08:22
Al Paco
hah amazing explanation thank you, so basically when carding I turn vpn off and start using socks and proxis
08:25
but from your drawing it's possible to have all of them on at the same time, but my issue is that I cannot have VPN (bleu) and green red on all at the same time @Al13ka12
28 October 2024
A
06:28
Al Paco
@hckdozhd or anyone, can help? I understand all this you explained ACAB. but why can I not connect to them both at the same time? since you say it's possible from your explanation
MR
13:02
Mr Rain
In reply to this message
Do you have socks on virtual machine or on host machine?
And what error do you get?
A
13:06
Al Paco
sock on host machine bro.
MR
15:58
Mr Rain
try to use vpn on host machine and socks on virtual machine
also what socks do you use? pia? with local address (127.0.0.1)?
16:01
guys
please send + to chat who did homework and will practice today?
KT
16:18
King Themes
Next lessons, sir
16:18
I think all people are skipped
MR
16:18
Mr Rain
okay, got it
starting in few mins
👍
KT
A
16:22
Al Paco
+
MR
16:23
Mr Rain
In reply to this message
+ you mean ready or you mean want to continue with next lessons?
A
16:24
Al Paco
Almost finish homework
MR
16:25
Mr Rain
okay
so you want to do beginners practice today or to skip it?
A
16:28
Al Paco
yes
16:28
lets do it
16:28
practice is the most important brother
MR
16:29
Mr Rain
okay
let's open antidetect and connect to socks
A
16:30
Al Paco
In reply to this message
I am trying to connect with RDC to virtual machine to use socks but its not allowing me to connect for some reason
MR
16:31
Mr Rain
In reply to this message
your host machine is windows or linux?
A
16:31
Al Paco
16:31
windows
16:33
ok we can do this later, we can practice now
MR
16:37
Mr Rain
okay
16:37
In reply to this message
so let's do it
A
16:37
Al Paco
awesome lets go bro
MR
16:38
Mr Rain
okay, have you connected?
A
16:39
Al Paco
yes
MR
16:42
Mr Rain
okay
let's check IP on checkers
16:50
bro?
A
16:52
Al Paco
yes done need screenshot?
MR
16:52
Mr Rain
yes
A
16:55
Al Paco
MR
17:03
Mr Rain
okay, send screenshot of checkers
17:03
not whoer
A
17:04
Al Paco
ahh one min
17:06
17:07
MR
17:09
Mr Rain
okay
what about getipintel and ipqualityscore?
A
17:12
Al Paco
17:14
MR
17:14
Mr Rain
In reply to this message
oh, seems bad
what about getipintel?
A
17:15
Al Paco
ok wait me change
A
17:23
ACAB
hello today we working something or easy day?
A
17:25
Al Paco
MR
17:26
Mr Rain
In reply to this message
oh, very dirty IP
A
17:28
Al Paco
May we skip and start new lesson now?
MR
17:29
Mr Rain
why? we already started practice
17:30
but okay we can skip if you want
17:31
and start lesson
❤
A
A
17:32
Al Paco
OK thanks, maybe come back to this practice later. Is this practice show us how to card on netflix for exemple?
KT
17:47
King Themes
In reply to this message
Because he's using VPN, not socks5. Dirty is right.
MR
17:48
Mr Rain
In reply to this message
yes
17:48
#lesson (Drops and pickup)
17:50
These are two advanced methods in carding as well as enroll, which we'll talk about and it allows us to ship liquid stuff and deal with antifraud
17:50
The first one is pickup — pickup is when we make an order on cardholders address, then we hold it on local carrier station and then drop with fake ID go there and pick up our package and after that we get money from pickup-service for stuff
17:52
So if order will have cardholder's addresses, name and phone number in all fields, shops should ship your stuff more easy because it looks less fraudulent
17:54
Also it solves the problem with AVS system, because our billing address matches with the ones in bank file because we put cardholder's real address as billing
P
17:55
Prometheus
Its possible to order to another adress or dropbox for example? Billing adress will be the cardholders adress but shipping is different. Where i can pick up more easily and dont need fake id.
MR
17:56
Mr Rain
When we want to use pickup, we:
1. Ship package
2. Hold package on local carrier
3. Text pickup service
4. Get money
17:56
In reply to this message
please don't interrupt
P
17:56
Prometheus
If i give cardholders phone number, they will inform him about the order so how it will work?
MR
17:56
Mr Rain
all questions after lesson
P
17:56
Prometheus
Sorry
MR
17:56
Mr Rain
In reply to this message
it adds a lot of fraud score to order
17:57
So at first we should find Pickup-service, there are many such services on forums
just for example let's look at this one https://procrd.org/threads/drop-servis-usa-pod-pick-up-na-fake-id.6003/
17:58
All pickup services including this one has list of stuff that they want to get and also pickup-zone map
17:59
Pickup-zone is very important because pickup-service can get the package only in that zone, so when we want to work with them we'll check zone and look for CCs with ZIPs in this zone
A
18:00
Al Paco
link doesnt work redirects to website
MR
18:02
Mr Rain
Also there are blacklisted zips, you can see it on map, we mustn't ship anything to these zips because pickup-service will not be able to get it
18:02
In reply to this message
wait a sec
18:03
https://procrd.mx/threads/drop-servis-usa-pod-pick-up-na-fake-id.6003/
18:04
So when we look for CCs we should take only CCs with zip in pickup zone, then after package are shipped we text any call-service (u can find them on forums) and ask them to call to the post-office and hold the package until holder gets it and then drop takes it and we get our money
P
18:05
Prometheus
Everything is russian here not english. :(
MR
18:06
Mr Rain
In reply to this message
it's just an example
you can use any other service on crdpro for example
18:08
Usually there are 3 methods of work with drop and pickup services
1 - 50/50 (not really often)
2 - stuff for % (in most cases)
3 - reshipping (sometimes)
A
18:09
Al Paco
stuff for %?
MR
18:11
Mr Rain
yes
A
18:11
ACAB
Gentlemen, don't interrupt with trivia... and stupid questions... all questions after the lesson!
-In Russian? hmmm, then use a translator?!
-Does a link to www redirect you to a website? Hmm, it's strange that he would redirect it somewhere else...
gentlemen, I don't think we have 15 years to write such nonsense...
I'm sorry for the interruption, but this kind of thing is exhausting me..
MR
18:11
Mr Rain
you order stuff to drops, they sell it and you get %
18:11
So, 50\50 is when we ship two items, for example
pickup-service gets one on them and the second reships to us
18:14
When we get cc, we may check (it's optional) all the information about cardholder using BG services like instantcheckmate.com - just take any cc and pay for subscribtion there (30$) and u can have background reports with actual addresses, phone numbers, emails etc, it may help if we buy CC with wrong billing
A
18:15
So, if we use big popular shop for pickup-carding I recommend to put cardholders phone number (the oldest one from background report just not to let shop gave a call to him, but this phone will be on file and it's okay for shop) and e-mail address which cc shop gave u with cc (when we get to checkout just spam it via flooding services)
and also for smaller shops you may use google voice number instead of cardholder's one
18:19
And when we card little shops we can put google voice number for example instead of real one
18:22
After checkout and successful order sometimes we may call to shop and get order info, because some shops usually calls us so we may call them first, usually some shops call to verify the order, but sometimes they may ask additional info about cardholder which we can get from BG, but it's not often, if everything is allright - you will have tracking number on the next day or later
18:22
VERY IMPORTANT THING:
We can use only UPS and FEDEX for pickup, packages of other delivery services can't be holded
18:24
When we get tracking number we should check it and wait untill it will be at last post office, after that we text to call-service and ask it to call and to hold our package
After that we send data about order to pickup-service and wait when they get it
18:26
When we work with regular drop-service, not with pickup-service, we can work in three ways:
ship non-liquid stuff to drop,
change billing address to drop's one and send bill=ship (using enroll)
and use rerouting
18:28
Drop-service also has list of stuff which they can get and which they can buy and pay us, so we check this list and then send stuff to the drop
18:29
The process is the same
we need browser, CC and SSH or socks and also we should use UPS, FEDEX and sometimes we may reroute DHL
18:32
So we also ship to holder's address and then when we get tracking number we should wait and after one or two days (DON'T USE FAST DELIVERY) we should give the info to call service and try to redirect package to drop's address (we should get it before, in drop-service)
18:34
#useful_info
You can use for rerouting these call-services for example:
@fbi_call
@Nika_Nikola
Also you can find another callers on forums
That's all for today
Feel free to ask any questions
P
18:36
Prometheus
In reply to this message
Wich big shops for example where i cant use different andress? And how do you mean spam it via flooding services?
MR
18:37
Mr Rain
In reply to this message
there are no such shops
any big shop will block your order
18:37
In reply to this message
I mean email spam
P
18:37
Prometheus
In reply to this message
Like i create another similar email adress like the holder?
MR
18:38
Mr Rain
No
18:38
You send a lot of spam to holder's address
P
18:39
Prometheus
Even if i use a different but similar email and phone number for the order, the shop will block it?
MR
18:40
Mr Rain
In reply to this message
you said about address, not email or phone
A
18:40
Al Paco
So if I understand correctly drop services have addresses which we send to directly, and pick up services they pick up the package for us at the post office before it gets to the CC holder address, and in both cases we should only use fedex or UPS and for drop cam use DHL. is that it?
MR
18:40
Mr Rain
different email or phone are okay usually, if shop doesn't have strong manual orders management
18:40
In reply to this message
right
A
18:41
Al Paco
but for drop services most of the time we can only use address from CC holder or its will raise antifraud system no?
MR
18:43
Mr Rain
yes
P
18:43
Prometheus
It just feels like there is a lot of hassle if i order an item, i have to use all details from the cardholder, also i have to spam his email and use his old phone number from the record, then call the shipping service to redirect the order and store it, and then tell the pickup service to go there and pick up and after get the money.
A
18:44
Al Paco
So in what cases do we use drop services and we're able to put different address from CC holder's one?
MR
18:45
Mr Rain
In reply to this message
depends on shop, but yes, something like that
18:45
In reply to this message
with very small shops for example
P
18:46
Prometheus
That a lot of effort to order some non liquid stuff for example. There is no other way to order things somehow a little more easy way?
A
18:46
Al Paco
Is there a list of shops categorized by any chance on the forum or something? like big cardable shops, smalls ones, impossible to bypass antifraude system ones etc?
MR
18:47
Mr Rain
In reply to this message
these steps are for liquid stuff
you can order unpopular stuff from small shops more easier
18:47
but it's hard to sell
18:47
In reply to this message
no
but we'll have lesson about finding shops
❤
P
A
P
18:49
Prometheus
And what if for example i order some stuff in my country from a small electronic shop with other country cc, and ship it to the drop boxes and pick up?
18:49
Then sell after
MR
18:50
Mr Rain
In reply to this message
you can try, it's not the worst way
but in fact it's bad idea to have any connection with ordered stuff
if you'll sell it, it sometimes can be tracked
P
18:51
Prometheus
We will learn giftcard methood too?
MR
18:51
Mr Rain
Yes
❤
P
P
18:53
Prometheus
And if i use different phone mumber for example for order, it has to be the same country phone number or doesnt matter? And also the email if a create a similar email like cc holders email, with hotmail, will work?
A
18:56
Al Paco
quick question, do we have to wait until the items gets to the last post office before reaching out to the calling service? or can we do it beforehand?
19:00
In reply to this message
and please what do you mean by using enroll, and rerouting?
MR
19:00
Mr Rain
In reply to this message
Yes, same country code
19:00
In reply to this message
Rerouting is redirecting packages
19:00
And regarding enroll we'll have lesson about it soon
19:01
In reply to this message
Yes, we do it after it reaches the last post office
P
19:02
Prometheus
In reply to this message
And the email part? Can i do similar email to not make it difficult with the spamking thing?
A
19:03
ACAB
gentlemen, the teacher gives here the safest options so that the order does not get canceled ... but there are no rules for some sites/cards ... I know from myself because sometimes I inadvertently take the card, order something to an address not related to the card owner, and the package reaches my drop off place and sometimes even the card owner's data receives canceled.. it is best to test everything yourself, I know that it can be a bit expensive but for example I bought cards for $4-5 and tested sites, methods, etc. in this way ... a lot of wasted nerves and money but I did not have such a chance as now to take part in such a beautiful training
A
19:05
Al Paco
Im good to go, when would we be able to go over the beginner carding training with Netflix etc?
A
19:07
ACAB
In reply to this message
brother, the number with the email swap is for the purpose of deceiving the store system .. and email spamming is needed when we do not do this and use the original email of the card owner (then the owner receives an email with the order, numbers, etc., that's why we use spam bombing of the email so that the email with the order gets lost in thousands of messages sent by us to the email of the card owner)
19:08
In reply to this message
Bro let's learn the basics .. you can try to card Netflix or other stuff after classes
P
19:09
Prometheus
Yes i understand but i dont know how to do spamming emails. And also if we give card holders email and phone how do i know my order details and tracking number?
A
19:11
ACAB
you have such information on your account on the page where you make the order. there are special bots on telegram or www where for a few pennies you send a few hundred emails to the victim in a few minutes
19:11
phrases to find: email bomber, email spam bot
P
19:14
Prometheus
Okay thanks. But i guess once i order from a big shop for example, i didnt know the tracking number first only when they shipped it. And after they send it to the email or phone. In this case to the cardholders email or phone so i still dont know the tracking.
19:17
Its just not clear how can i put all this together for one order… seems very complex and difficult.
A
19:30
ACAB
I always had the same problem and a lot of packages were lost ... until I made my own domain with emails, each email address is redirected to the main one and always uses the method first name last name of the cardholder @email.com
❤
A
19:31
and touch wood, I don't have many cancellations and I can check each package without unnecessary confusion and relogging accounts
19:32
it all depends on you what method you use, do it the best and most convenient for you
P
23:30
Prometheus
In reply to this message
Can you tell me more about this methood?
A
23:34
ACAB
Get yourself a hosting + domain, for example: piemail.com
you have access to no limit of email accounts
If you have a Johan Antuan card, you create a email:
johanantuan@piemail.com
redirection from each new email to the main email address, e.g.
main@piemail.com
and every message related to an order, package or anything else is monitored on one email...
I didn't do this before, I had 30 different emails, I got lost where I ordered what, etc.. now I don't have this problem anymore :)
P
23:46
Prometheus
Thank you! its good but in this methood im not using the cardholders email, i just create a similar one with the piemail and just using that right?
29 October 2024
MR
00:05
Mr Rain
In reply to this message
Seems you don't get the sense of spamming
You need it only if you use real holder email
P
00:06
Prometheus
Yes i understand.
A
00:09
ACAB
If u using OWNER CARDS EMAIL ADRESS to making order u must SPAM/BOMB this email
if u usign YOURS NEW EMAIL ADRESS (with name owener) u dont need to spam owener cards email u know?
00:10
they are two different things, two different methods of operation
P
00:10
Prometheus
Yes i get that. But my question was if i use the owners email, how i will get the tracking number what will be sent to the owners email since i dont have acess to that.
A
00:13
ACAB
Bro we can make test. Go to amazon or other shits
00:13
Buy something for 1-2 $
00:14
and enter an incorrect email address... see how and where you will have further information about the purchased item :)
on your amazon account? Will you receive information about the shipment via SMS?
P
00:15
Prometheus
I dont have amazon account so i dont know. On ebay i dont get sms.
A
00:15
ACAB
email is not the only form of contact between the CUSTOMER and the SHOP, the store provides information about shipping on the Customer's accounts, via SMS, via Email
00:15
Bro ebay its other page..
00:16
its platform where PPLS can selling something to other PPLS
P
00:16
Prometheus
Right
A
00:16
ACAB
its not SHOP > BUYER
00:16
its SELLER > BUYER
00:17
this is a different structure... we care about online stores, not platforms for trading with others
MR
00:19
Mr Rain
In reply to this message
You'll get it in account
P
00:20
Prometheus
I see.
00:20
And every time i order something i have to make a new account with the cardholder details?
A
00:21
ACAB
Yes
00:21
00:21
look its example my order from yesterday
00:21
when u refresh page after order
P
00:21
Prometheus
I see
A
00:22
ACAB
u have transport number , name transport company (sometimes with number to delivery) , time where parcel coming to u
00:22
u dont need email
00:22
only need page after order
00:22
but if u close it
P
00:22
Prometheus
Oh okay
00:22
I was not familiar with amazon.
A
00:23
ACAB
its not amazon
00:23
every shop on internets
00:23
working the same
P
00:23
Prometheus
Okay
00:24
I thought usally when i order something, the order number is not the same as a tracking number what the shipping company gives me after order.
A
00:26
ACAB
look yellow star its number my parcel , blue heart its ORDER number
MR
00:26
Mr Rain
In reply to this message
It's not the same
A
00:26
ACAB
order number u get every time when order its finished
00:26
number tracking parcerl u get when we works its done
P
00:26
Prometheus
Yes
MR
00:27
Mr Rain
Order number is number of order in shop's system
But tracking number is number to track the package in post office system
00:27
After order shipped you'll get tracking number on order's page
👍
A
00:27
Or in account
A
00:27
ACAB
but However, I recently had cases where the parcel was already lying at the collection point in the city next to mine and the store still took it back to me.
P
00:27
Prometheus
I see. I thought you only get that tracking number via email
A
00:28
ACAB
U need some test on clear orders :) and can see how this works
P
00:28
Prometheus
Sure :)
A
00:30
ACAB
00:32
u can watch video and special attention to the issues "ORDER NUMBER" and "SHIPMENT NUMBER or TRANSPORT NUMBER"
00:32
See u tomorrow on class. Have a nice night guys !
P
00:50
Prometheus
Night night
A
09:14
Al Paco
In reply to this message
For this methode do you have to warm the email a little, for each email for exemple. You make johan@piemail.com, do you have to send a few emails to that address if they can detect its brand new or something like that?
09:20
In reply to this message
Also for spamming doesnt it usually go to junk mail and owner can still see order email?
A
11:14
ACAB
In reply to this message
No, we don't warm up the email, the only thing is that the account we set up needs to be warmed up a bit (so that we don't go to the store, take 2 specific items into the cart and pay immediately) a bit suspicious
11:15
In reply to this message
Well, not really, because emails designed for bombing do not end up in the spam folder (at least the good bombarders I used)
A
11:29
Al Paco
In reply to this message
ok thanks mate
MR
16:04
Mr Rain
Hi guys
Starting in few mins
16:16
#lesson (Gifts and Enrollment)
16:17
Let's start about gifts
There are two types of gifts — plastic cards and electronic gifts
First of all gifts are not good way to start in carding, because it has very strong antifraud in most of the shops
16:20
So, plastic gift card is not so useful for us because it's not easy to use it after we card it, because it's delivered too long and we need drop which can get it and use in store
So carders usually buy e-gifts, it looks like mix of numbers and letters, or sometimes it's virtual e-gift card number and then we can put this code in online store while checkout and make a purchase on its balance amount
16:22
it solves some problems which we have when paying just with CCs
Because at first we don't care about AVS using egifts, because it has no billing address when we use it for buying something
Also antifraud is less patient when we pay using e-gift, because we use only this way or purchase and so it doesn't check more, but unfortunately it's more strong when we buy e-gift itself, because banks and shops understand that gift is good stuff for carders
16:28
So we can cashout e-gift card using any billing and shipping address (including international if shop has delivery to other countries)
E-gifts can be mentioned in different ways in shops, usually they are called E-Gift, E-Voucher or E-Code
Just for example let's go to talbots.com and scroll down, there will be Gift Cards button, then we should click on it and choose E-Gift Card
16:30
So here you can see fields for: gift amount, reciever’s email addres, gift message and his name and the same for holder
it's typical for egifts
Some online stores send e-gifts instantly but its not easy to find such stores, so talbots send e-gift instant but it's not so clear because we really get it instantly but when we use it our order may go to additional processing
16:32
There are some lifehacks when we card e-gifts
at first I recommend to use different email-domains for sender and receiver of gift
for example gmail.com for sender and yahoo.com for receiver
also u can use hotmail and yahoo, not only gmail
16:36
There are three types of shops with e-gifts
1. Which send gift instantly and we can use this Immediately
2. Which send gift instantly but then process it
3. Which send it after processing (2-3 working days)
to find out it we should pay in shop and check how fast it send us e-gift, so we can't check it before
It's better to card 2 and 3 type using debit cards
and first type using any cards
shop will process debit payment faster
16:38
When we buy gifts using CC I recommend to use IP as closer as possible to holder's ZIP and antidetect browser
So, also there are very hard shops such as Victoria Secret, they check real holder's number and call him, so it can be carded only with enroll with phone number changing
16:43
Also we can put the same last name for sender and receiver
for example sender John Smith and receiver Ann Smith or use for example Smiths Family as sender or James&Ann
What about e-gift message, you should think about it and try to write good message because its really important for shop's manager which will process the order
we can write it due the shop stuff, like if there is brand things like Gucci or LV we can do it like:
"Yo bro, there is a present for u so u can buy some good stuff here u see. Love u and see u in Atlanta next week in good stuff on u bro.
Best regards,
Kevin."
16:47
It can be holded while payment for egift is being processed and as for e-gift cashout, when we get it we may ship stuff from shop using receiver's email and address or try to sell it to somebody in forums
also dont cashout egift card instantly when it gets to email, wait for couple hours
There are:
1. Big shops
2. Shops which aggregate a lot of gifts
3. Monobrands
so the best way is third type
It's small shops
It's easy to card but not so easy to sell to anybody
So such gifts are usually used for buying something to yourself
16:49
And let's talk about enrollment, in carding 'enroll' is access to online banking = online access to credit card account, I think all of you have something like that, most banks offer this when you get your card in any country
Such account is really great thing in carding, especially when we card in usa, because usa banks have very useful features which we can have using enroll
But not all cards can be enrolled, it depends on bins and banks, in most cases we can't enroll debit cards, so usually we use credit cards, but also not all credit cards can be enrolled
16:52
Features which we can have using online access also depend on bank, there can be many different features and the main are:
16:55
1. At first we can know available credit limit, so using this info we can plan how much we can spend using this card
all of the banks show us available balance in account when we enroll the card, it's really useful
2. The main feature is that we can change credit card billing address, not all banks enable it in online account, so using some banks we can't change it or have to call to bank to do it
So changing billing is most useful thing in online banking so when you find bin where you can change or add additional billing address I strongly recommend to write it to your notes and use for big payments
16:58
3. Also many banks allow to check minideposits
Minideposits are one or two deposits less than 1$ that shop can take from card when we pay to verify that it's using by holder, the point is that we'll check the exact amount of deposits in transactions history and send this info to shop, after that they approve our order, also some services can use verification by minideposits when we add card to it
17:03
4. Some banks allow to change 3ds code in online account and it's very useful
5. Some banks also allow to switch off region lock. Region lock is when we can't use card for international payments, sometimes USA cards have this feature and in that case we can't use it in EU or Asia
6. Also there is award system in some banks, like travel points or something like that which we can spend on avia tickets, e-gifts etc
17:05
So, well, how to enroll cc, imagine that we have no bins that we know exactly can be enrolled, I'll give you some after lesson
We just need CC, in such cases you can use CC that you already pay by, just to check what info card needs to be enrolled and if it can be enrolled
17:08
We take such CC and go to bank's site and look for something like Sign Up\ Enroll and then check what info is reqiured
We need bank which requires only SSN and DOB for enroll
not mmn, primary bank account number or things like that - only credit card info and ssn+dob
I recommend to use credit cards with level higher than classic for this, because debits usually can't be enrolled so when we find such bank and bin we go to a bank’s homepage, click sign up and fill In all the fields with needed info (SSN, DOB and CC's info)
17:17
After we entered info we click continue and if there is a message that ur card already enrolled - click Forgot Login and Password and make a reroll with setting up a new login info, else everything will be okay and you just set up login for enroll and password
17:20
While doing all of this I recommend to flood holder's email in case when holder gave his email to bank, they can send him a message that "Congratulations with you enrollment and something like that
Also enroll may have alerts, like e-mail alert for transactions, address change or something else and we have to switch it off after signing up, not all alerts, but alerts which can really disturb us
for example if there is alert when u spend more than 100$ then I recommend to switch it off
17:22
#useful
Flooding services:
https://t.me/eValidator
https://flood-studio.com/login.php
Enroll bins for example:
470105 — https://onlinebanking.hiway.org/HiwayFederalCreditUnionOnline_E2E/enroll.html
411325 — https://onlinebanking.hiway.org/HiwayFederalCreditUnionOnline_E2E/enroll.html
Feel free to ask any questions if you have, that's all for today
P
17:31
Prometheus
In reply to this message
If i click forgot password, it not going to just send an email to the holder to set up a new password? It will let us reroll with a new login info?
MR
17:32
Mr Rain
In reply to this message
Depends on bank
Sometimes yes, sometimes it sends to email
P
17:32
Prometheus
Okay
A
17:35
Al Paco
And what are the website we can use to find good CCs like this with that much info to be able to online login?
MR
17:36
Mr Rain
In reply to this message
it's better to buy cc and then buy additional info from ssn\dob services
A
17:37
Al Paco
Oh gotcha, can you list a few websites for such services?
P
17:37
Prometheus
We will have a lesson about good bins too? And how to find them? With recommended bins?
MR
17:40
Mr Rain
In reply to this message
crdpro.cc
there are verified services
17:40
In reply to this message
what do you mean by good bins?
A
17:42
Al Paco
when can we practice lesson for today, and maybe combine with previous practice?
P
17:42
Prometheus
I mean like non vbv, or good bins for carding. Since you said there is no point for buying binlists.
17:42
From where to know wich bins are good.
MR
17:42
Mr Rain
In reply to this message
all practice with advanced methods in personal way, i'll help with it
❤
A
17:43
In reply to this message
there are bad bins for carding (i've sent banks list), all others are okay
regarding non vbv we'll have lesson about it
P
17:43
Prometheus
Okay great :)
A
22:00
ACAB
am I understanding correctly?
Enroll - involves using stolen credit card information. creating new cards using this information, activating them using the bank's automated system and linking the fake card to the legitimate account.
22:00
Sorry today im too late. Im sick 🤒
22:02
I remember doing something similar with Visa cards when creating ads on FB. After registering the card on Visa, I had access to the transaction history, and to confirm the card on FB ads, I had to enter the exact amount of the transfer that FB sent us
30 October 2024
A
16:03
Al Paco
Evening everyone
🤝
A
MR
16:09
Mr Rain
Yeah
16:09
Hi guys
I'll send info about antidetects today soon
And tomorrow we'll continue with important lesson about shops
A
16:36
Al Paco
sounds good
A
16:53
Al Paco
so we dont have lesson today?
MR
17:36
Mr Rain
#useful
Antidetects are browsers which allow to spoof fingerprints and hardware
Two main antidetects are linken sphere and multilogin
multilogin.com и ls.app (coupon for linken LS_YL59CEPDL2PF)
All info about setting up is in documentation on ls.app
So I just give some recommendations
1. Configshop
It's linken's feature, there are many opinions about if it's useful. Some people think that it decides any problems, some people think that it's useless. So use it if you don't want to set up antidetect features and want to use ready option.
Configshop is available only for pro subscription.
Also pro subscribers may use useragent-shops, but it's bullshit, because all useragents are in public access:https://www.myip.ms/browse/comp_browseragents/ http://www.useragentstring.com/pages/useragentstring.php
Then take a look at the main session window
It's about sessions
One carding session - one settings set
1. Connection
It supports all common ways: socks, ssh, tor+socks
U don't need additional tools, just put socks or ssh data in field and then it will be checked and connected
Take care about webrtc, it can compromised u, antidetect can spoof it automatically
Also antidetects can change timezone regarding local IP.
2. WebGL
You may change it or not, it's not necessary, but if you change it, take care that it's realistic combos (don't use for example Nvidia vendor and AMD model)
.
3. Fingerprints, the most important thing
I recommend to:
- Block pop-up
- Change canvas or use original (don't block it) *
- Spoof audiofingerprint
- Spoof plugins (for example u may use common holder's plugins as adblock)
I marked point with canvas because there is an important thing. IT MUSTN'T BE TOTALLY UNIQUE.
If after changing you check there https://browserleaks.com/canvas and see that it's 100% unique then switch off spoofing and use original canvas
Multilogin and Che has the same features, but it spoofs canvas better. Also u may take it for team.
After creating session check it here:
https://browserleaks.com/canvas (CANVAS MUST NOT BE UNIQUE)
https://pixelscan.net/
https://amiunique.org/fp (IT'S BETTER TO BE UNIQUE)
And there is some useful feature paste like a human
Never copypaste any data when u fill in address or cc in order page, but u may copypaste it when using paste-like-a-human module.
And I recommend to use webemulator of browser to get cookies from any site u put there
Also besides sphere I recommend multilogin, che, octo
P
17:44
Prometheus
I used multilogin before, it has integrated proxy as well. Can we use that, or its better to have other proxy services what you mentioned like pia proxy?
MR
23:20
Mr Rain
It's better to use other proxy
31 October 2024
MR
16:17
Mr Rain
Hi guys
16:17
#lesson (Shops)
16:18
Let's talk about one of the most important thing — how to find cardable shops and analyze it before hit
16:21
At first we should grab shops and then check if it can be pretty easy cardable and then we can think how we can card it, so, there are two main ways to grab shops
16:26
First one is the most common and effective way, it's how holders usually look for shops
Holders usually using google when looking for shops so we also can use it but in special way
at first, when holder usually looks for shops he use something like "buy iphone" and the problem is that google use keywords and so for this request it gives us too popular and huge shops such as amazon ebay etc, and so it's not the best search request for us and so we usually use google SEO-operators
So, you can get operators here for example https://moz.com/learn/seo/search-operators
16:31
Holders usually don't even think about how to make their search request better and more correct, but we need really correct request so unlike holders, we use these seo operators to make our search request more clear and useful
16:34
For example good search request may look like buy+iphone+256gb+gold intext: "cart"
here "+" means that all words should be included in results and "intext: cart" means that all sites in the result should contain the word cart (there is cart in almost all shops)
16:34
The second way of using searchers is to use SEO tools which parse results of Google
for example A-Parser or Selka or Butterfly or any other SEO-parser
16:36
They grab the results using keywords and give it to us, it's easier and faster but often they grab a lot of shit and sites which are not needed, so after that we need to sort this
also parsers need anti-captcha module for google, in other case it would not be able to collect pages
16:39
Also I recommend to use Ip of the same country which u want to find shop in for example US IP for finding US shops
16:45
The third way of working with searchers is to use another searchers without personalization such as duckduckgo.com
they have different results than google for example
16:51
Also there are two another ways to get shops:
1. Amazon and Ebay sellers
2. Reseller tops and forums
There are personal sellers on Amazon and Ebay beside of official companies which sell their stuff using amazon and ebay
I mean almost every product on Amazon or Ebay has "buy used & new" options, so some of these sellers may have shops so we just google their nickname and find it if they have shops and what about reseller tops, it's site like resellerratings.com which contains info about many different shops
16:54
We can check it there or use special forums such as hunting forums or something like that, social networks for example
users of these forums usually discuss any new shops so we can use it too
16:57
Also regarding shops with gifts we can use dorks, it's part of search request query
for example some ecommerce platforms with gifts which send it instantly have typical structure of links and page where we place order has URL www.site.com/giftcertificates.php (for example http://bqshopestore.com/giftcertificates.php), so we can search using inurl:giftcertificates.php
16:58
As u can see, it's not hard to find shops
BUT the main point is to find cardable shops
17:01
So when we find any shop we should check:
1. How popular is it?
2. Do many carders do use it?
3. It's merchant (optional)
17:02
To check how popular is it we should check alexa rank, it's closed, but so there is a better way — similarweb.com rank
17:04
- shops with rank higher than 1 million usually ship easier and don't ask us a lot of questions, don't care about documents and different billing and shipping addresses
- shops with rank lower than 150 000 are usually more difficult to be carded, we usually use brute or logs for it, we'll talk about it on last lesson
- shops with rank about 200 000 - 500 000 are usually not so difficult to be carded using pickup or rerouting
17:14
And also we should try to check if many carders use our shop, so we can go to google and enter something like "ourshop.com+carding" to check if any carding boards have mentions of this shop
17:21
And what about merchant
it's not such important as earlier but there are some REAL FUCKING SHITTY MERCHANTS which I don't recommend to work with
they are:
WolrdPay
Shopify (sometimes it's easy to pay with but in most cases it's piece of shit)
Paypal
Stripe
Skrill
17:22
sorry guys have slow connection
17:22
Merchant sometimes can be checked here builtwith.com in e-commerce field
homework:
Find 5-7 shops and then we'll work on mistakes
that's all for today
Ask any questions and then I'll send you info about antidetects
A
17:29
Al Paco
In reply to this message
What do you mean exactly, so you mean if the shops are using these merchants we should preferably avoid?
KT
17:30
King Themes
In reply to this message
What do you think about chargebee paygate?
A
17:31
Al Paco
In reply to this message
here the first link redirects to salesforce
MR
17:37
Mr Rain
In reply to this message
yes
17:37
In reply to this message
it's not bad
17:37
In reply to this message
bro
17:37
site.com it's an example how it works :D
17:37
it's not the real site
KT
17:38
King Themes
In reply to this message
What do you mean it's not bad? Not bad is can pass it?
MR
17:38
Mr Rain
In reply to this message
yes, you can try to use it
KT
17:38
King Themes
I think this paygate is difficult more than stripe
MR
17:39
Mr Rain
but it less popular and has less antifraud techniques
A
17:59
Al Paco
In reply to this message
is this ranking only on similarweb or can we find similar ranking system on other website similar to similarweb
18:08
and ranking must be global rank or country rank?
MR
18:11
Mr Rain
In reply to this message
similarweb is the best way
18:11
In reply to this message
country rank
A
18:12
ACAB
this similarweb its amazinngggg
18:12
pleinoutlet.com
55,658
pleinsport.com
66,392
velpa.pl
162,342
Victoriassecret.pl
245,989
halfprice.eu
501,146
drmaxdrogeria.pl
492,133
laneperfumy.pl
93,968
18:13
only polish cloath site now im looking for electro
18:13
this digit its ppls/mounth
1 November 2024
A
08:44
Al Paco
Do we have a lesson this evening or not?
A
14:55
ACAB
similarweb_poland.txt
Not included, change data exporting settings to download.
2.3 KB
Hi. So, I’ve prepared a list of several stores (file attached), and let’s say I’m targeting a furniture store (meble.pl) with a product priced at 3000 PLN = 750 EUR.
What should I do to evaluate the site? What tools should I use?
What should guide my choice between using a foreign card connected to Apple Pay/Google Pay versus making a payment directly via the payment gateway with my card?
MR
16:42
Mr Rain
In reply to this message
Hi, great
I'll check soon and I'll answer the questions
❤
A
3 November 2024
A
12:20
Al Paco
hey fam quick question. I bought a server that says from netherland but after setting up everything with putty and connecting to amnezia it says panama on whoer. is that normal?
MR
23:38
Mr Rain
Yes, it's okay, sometimes ip bases are different
❤
A
4 November 2024
MR
16:08
Mr Rain
Hi, guys
We start soon
16:13
Have bad internet today... again!
Would you mind if I'll send lesson as a text bit later? I'll write it up and send in message
MR
16:37
Mr Rain
#lesson (Eu and Asia)
Today let's talk about carding in eu and asian shops, in some ways it's differ from carding in usa so let's talk about difference, positive and negative
At first let's talk about Europe and UK
almost all shops in EU and their payment systems don't use AVS-system and it's very useful for us because we don't have to care about matching billing address when card such shops
So we can card bil=ship, but in UK 70-80% of shops have AVS so if we work with UK I recommend to use holder's billing and another shipping, after that shop's manager can ask us for additional verification such as id or card photo
In that case we can use special services which make such documents in Photoshop for us
And then we send it to shop via email, it's good way, because many shops process your order without any problems if they get these documents
btw many UK merchants such as SagePay don't bother shop's manager if payment was enough clear, so the point is to make manager think that our order is clear in cases when billing and shipping are not the same, and documents can help us with it
Also there is good feature while working in EU and UK shops — they almost never call us
So if they have any questions they usually text us via email and ask for documents and etc, it's useful because we don't have to buy google voice or something like this, and so we can just enter any phone number and they will not call it and check if it's real
But rarely shops may call, we can't find it out before work with it, so I recommend to note such shops
Also EU shops often ship outside of EU, USA don't like it but EU shops are more loyal to international shippings, but beside of positive sides there are some problems with carding in EU and let's talk about these problems and at first - 3Ds system
The main point of 3Ds is that the issuing bank prompts the buyer for a password that is known only to the bank and the buyer. Since the merchant (payment system) does not know this password and is not responsible for capturing it, it can be used by the issuing bank as evidence that the buyer is indeed this cardholder
It helps shops with chargebacks problems because if payment system which uses 3Ds get fraud payment, shop has not to make a chargeback because it's not fault of the shop, but if shop doesn't use 3Ds it must get back money if payment was not legal
So Visa has Verified by Visa (VBV)
MasterCard has MasterCard Secure Code (MCSC)
Amex has American SafeKey
these are different ways to implement 3ds
It depends on bank how will this system work:
It can be
1. Persistent code
2. OTP
3. Special code in mobile banking app
in the first case, it's just a word that holder set for his card, it is permanent, so in some shops we can buy a card with this code, sometimes people sell it, but I don't really recommend to buy such cards because it can be scam.
so if you really trust to seller who sell something like that you can buy it of course
we usually see permanent password on US card
And also there are special bins, and on card of such bins we sometimes can reset this code and set our own, but not often
And OTP is One-Time Password, holders usually get in via sms, EU, Asia and Russia usually use OTP
it's more difficult for us to work with such cards but there are services which can intercept sms on some areas using ss7 vulnerabilities, it's very expensive and in most cases it doesn't worth it, also there are services such as ispoof
and some banks send these password only in Apps, this is really hard to work with
And so, the easiest way is to work with the first type (permanent password), there are many card in cc-shops with bins which has code-resetting, but in European countries the OTP is usually used. so almost always we can work with permanent codes only with usa cards
But US holders can already set the code up if they used EU shops
16:37
In that case we can't work even with such type of cards
Also using OTP bots is an option, but there are a lot of scam
The second important thing is if payments system has not switch on 3ds system, we'll be able to use almost any BINs because it will not check it
I say bins instead of cards because If one card with the bin has no 3ds then any cards with that bin has no 3ds
So we can face 3 type of cases:
1. Shop has 3ds and BIN has not 3ds
2. Shop has not 3ds and BIN has or has not 3Ds
3. Shop has 3ds and BIN has 3ds too
If shop uses 3ds and bin uses it then when we pay in this shop merchant ask us the password
In this case we can use bins with 3ds-code reset or card with known password
if shop doesn't use 3Ds so we don't care about bins because merchant will not even ask us the code
if shop has 3Ds and bin has not 3ds-security then we can face some problems
For example some EU-shops will not process payments without 3ds and when we try to buy something with such bin we'll get decline and "sorry but your payment can't be processed and so on and so on..."
So before pay in EU-shop with 3ds with card without 3ds we need to check if it can process such payments. We can read it in it's payment policy or just test it with such cardSo before pay in EU-shop with 3ds with card without 3ds we need to check if it can process such payments. We can read it in it's payment policy or just test it with such card
And what about bins with 3ds reset, we can buy such bins from sellers but the best way is to check it on our own, we can take card which we already used, even if it's dead, and try to pay in shop with 3ds, for example we can test it in Hobbyking.com (just for example, shitty shop with WorldPay merchant)
If (even dead) card has 3ds, Worldpay ask us the password and so we'll be able to see if we can reset it on this bin, and if we'll get decline, in most cases it means that this bin has not 3ds
And there is VERY important thing that u should remember while carding something in EU shops
DON'T use CCs of country which you gonna ship to, for example let's imagine that you have drop in Germany
so when you'll ship something to his address DON'T use German cards, because cops will get him fast after they get info about this order
Also there is some bad thing - manual checking
some large international eu shops as Asos for example can check and verify address manually
In that case I recommend to use real billing and different shipping and then make documents when they ask for it
And regarding asian
Their shops have some features which also differ they from USA shops, at first they don't have AVS
so AVS is not a problem for us when we work with asian shops, also they have 3ds as Europe but not so many shops have it, about 50-60%, some shops use 3Ds logo but in fact don't use this system
Small asian shops has manual processing of payments and it works in this way:
we go to shop, enter to payment form info such as billing and card info and then shop's manager process it by himself with holder's bank
Such payment will be zero-fraudulent but it also has problems, because we'll not know if card was alive or dead and also manager can check real billing address in this way so it's not good way to card bil=ship
A
17:20
Al Paco
we finish to day ?
MR
18:57
Mr Rain
Yes
Of course ask any questions if you have it
5 November 2024
A
09:57
Al Paco
Can we use US card for EU shops and EU cards for US shops? to bypass AVS and 3DS?
MR
11:18
Mr Rain
In reply to this message
Yes if shop supports it
A
15:31
Al Paco
manager can check real billing address in this way so it's not good way to card bil=ship / Please can you explain here what you mean by not good way to card bil=ship
MR
16:23
Mr Rain
Sup guys
Sorry for being late
Starting in few mins
❤
A
16:24
In reply to this message
Hi
16:24
I mean that it's not good to put shipping (if it's different) instead of real billing
A
16:25
Al Paco
so in this case we need to put shipping same as billing preferably?
MR
16:25
Mr Rain
Right
A
16:27
Al Paco
how about phone number? can we put a different one?
MR
16:29
Mr Rain
Yes, but some shops with strong antifraud can check it, in that case you have to put real number
A
16:31
Al Paco
gotcha I guess only way to know is to try either way right?
MR
16:32
Mr Rain
yes
A
16:33
Al Paco
ok thanks mate, or is there a way to know if shops use avs, 3ds, manual etc?
MR
16:34
Mr Rain
unfortunately only testing it
16:35
#lesson (Brute and logs)
16:38
It's our last and very important lesson about stuff carding and from the next week u'll have lessons about Bank Accounts with different lecturer, after we finish classes about CC, text me about any questions at any time, i'll be in touch
16:43
Brute accounts are holder's accounts in shops or on other websites, which were hacked using bruteforce
We can buy it from vendors or use bruteforce-tools and get such accounts
when we buy it we usually get something like this:
mmm@mm.com : password
16:45
Usually hackers use checker-tools after bruteforcing so also we usually get some additional info after buying accounts
for example if it's account of some shop we may get info about balance or about any CCs were saved in acc
16:47
So we can classify accounts on:
1. Shop accounts
2. Bank Account
3. Accounts with some digital stuff or miles or any points
16:48
If there are CCs in shop account it can remember CVV code or not, if not then such account is almost useless
but if it remembers CVV code then we can ship something using just this account (so we don't need to buy CC in this case) with it's CC
16:51
Some shops reset CVV code after we change shipping address, if it doesn't reset the code then we may ship to any shipping address
if shop resets CVV code, we can ship to holder and then pickup it or reroute
16:54
Also if account has balance then we can use it but usually nobody sells such accounts so we can get it only if bruteforce shops by ourselves, so as u can see shop accounts can be used for carding some stuff
16:56
Bank accounts are usually used for linking to PayPal and for sending cash to special services, and accounts with digital stuff can be used for pay for something, for example miles can be used for paying for tickets or hotels, or points can be used for paying for food or some stuff
16:57
There are some problems with using brute-accounts, at first we don't have cookies and shop sees that we just sign in to accounts using clear browser
16:59
So we have some ways to deal with it
at first i recommend not to use brute-account just after first time signing in, use it for surfing shop and it's stuff during 5-7 days, and in this way you'll get cookies in this shop and maybe in that case shop will trust u
17:00
Also you can use Android App if shop has it, in this way you need to download edxposed Framework and tools such as Xprivacy, Root Cloak, Device Id Changer Pro and change fingerprints on Android
17:04
Also besides brute accounts there are logs, logs also contain hacked accounts, but it's hacked using stealer instead of bruteforcing
And so it contains more information
First of all when we buy logs we have cookies of holder and info about his hardware and system, and his IP of course
17:07
So we can set up our antidetect browser with these features and mask as holder in best way
Also we can import holder's cookies to our antidetect, it helps us to mask as holder
17:11
Secondly, we usually have access to holder's email
17:11
Depends on log, but usually it has google token or other mail's cookies
17:14
When we buy log we usually get txt-file with info and with passwords and logins of holder
17:18
Sometimes people sell log itself, in this case it contains a lot of accounts, all data which were got from holder's browser, and sometimes they sell only one service accounts
17:18
The process of payment is the same, but we don't need CC. so we import cookies, set up our browser in the same way as holder, and then sign in to account and pay
17:20
In most cases shops don't allow to change shipping address
So we can use pickup, but don't forget to clean mails from shop on holder's mail, usually logs give access
17:23
Of course the main usage of logs is bank logs
So the next lessons will be about it
Also you can always find fresh services on crdpro.cc and procrd.org
Feel free to ask any questions and I'll be in touch
A
17:37
ACAB
Can we go back to Friday's lesson? I mean, if we already have selected online stores, how do we conduct research to determine what cards we’ll need for orders, etc.?
17:38
In reply to this message
.
MR
17:39
Mr Rain
In reply to this message
you can use any cards except cards of bad banks (list I sent) and bad levels (debit prepaid, electron, debit classic, world, elite, purchasing)
A
17:43
ACAB
I'm sorry, but I was sick that day, and it's clearly affecting me now.
17:44
In reply to this message
u thinking about it?:
WolrdPay
Shopify (sometimes it's easy to pay with but in most cases it's piece of shit)
Paypal
Stripe
Skrill
MR
17:47
Mr Rain
In reply to this message
these merchants are bad, yes
A
17:48
Al Paco
Do you have some specific vendors to recommend for brute accounts and logs? and also if we want to bruteforce ourselves is there a guide?
MR
17:49
Mr Rain
In reply to this message
I'll send actual services bit later, need some time to check if they still work
regarding guide it requires some technical skills but if you want I can make an additional lesson tomorrow about it, maybe it will be useful
❤
A
A
17:50
ACAB
In reply to this message
If you want to collect your logs, you need to create your own RAT. Then, you’ll need a stealer to sort them out—it’s generally a complex and lengthy process to learn. It’s best to start by purchasing and experimenting with the whole 'cookie madness' at first.
17:50
In reply to this message
Yes if u can be good :)
👍
MR
A
17:51
Al Paco
In reply to this message
Yes please
MR
17:51
Mr Rain
okay, we'll do it tomorrow
A
17:51
ACAB
In reply to this message
I was thinking more along the lines of learning methods for analyzing a targeted store, like d0ctrine always does at the beginning of each of his tutorials.
MR
17:51
Mr Rain
In reply to this message
most of learning is only testing the shop unfortunately
A
17:52
ACAB
17:52
for example
17:52
Alright, I’ll read up on the topic and look into it on my own. Thank you, see you tomorrow!\
A
17:55
Al Paco
In reply to this message
Can you explain a bit more here pls?
A
18:22
ACAB
And I have a question about logos
- is there any known, relatively intuitive RAT / KEYLOGER creator?
That is, we buy subscriptions, create our virus, then connect it to some applications/things as we wish and send it.
if we obtain a victim, or rather his logs, they will be displayed on the website or we will receive his logs in an email/message etc.
Will there be a logo person in the next few days?
6 November 2024
MR
01:44
Mr Rain
In reply to this message
You can use emulator or real android with fingerprints spoofing for carding
01:44
In reply to this message
what is logo person?
01:45
regarding other questions, I'll tell about it on tomorrow's lesson, but yes, there are a lot of rat sellers but you don't need it for logs
A
06:12
ACAB
I meant the person who will teach us Logs (because I think you mentioned that)
MR
13:06
Mr Rain
In reply to this message
I mentioned about bank accounts lessons
MR
15:47
Mr Rain
Hi guys
We start bit later today
👍
A
MR
17:07
Mr Rain
Starting in 10 mins
Sorry for delaying
MR
17:35
Mr Rain
#lesson (How to get logs)
17:35
First of all, what is log itself when we get it directly from victim
17:36
Logs contain site history, autosaved passwords from browser, cookies, device info and sometimes google token, i'll explain later what it is
17:39
To get it we should use stealers, it's one of the type of malware soft
17:39
There are also RAT, HVNC, Keyloggers, Clippers and Miners
17:40
Rat is remote administration tool, it's malware which allows to control the victim's PC, you can get his files, screen capture etc
17:41
It's possible to use RAT to get logs but it's not the best way because it has not much stealing features but has a lot of features which we doesn't need
17:45
HVNC is hidden vnc, it allows to control the victims PC but hidden. When you use RAT and get control, victim sees it, HVNC is hidden screen above the victim's screen, it also have features like hidden browser control with all victims cookies, so you can run victim's browser on his own PC with his own data and use to make orders
17:46
Keylogger captures the keys which victim is pressing
17:46
Clipper spoof the crypto wallets which holder copy
17:49
Stealers get the full data we need, besides cookies and browser history it also can be password and even CC info if it's stored in browser
17:49
So basically we can just buy stealer, send it to victim and get the logs, but there are some problems
17:53
1. AV systems
2. Spreading malware
17:58
So the main point is how to spread the malware, there are three ways:
1. SE
2. Traffic
3. Spam
18:12
Se is social engeneering, it's the way of spreading when we want to infect a specific person, we get a lot of info of it and then use spear phishing for example
18:13
spam is when we send malware on email, it can be in zip archive with password for example
18:13
traffic is the most common way, we just pay the service which can spread our file, there are many services on hacking forums such as xss.is or exploit.in
18:16
but to spread the file we need the file itself, and raw stealer build is not enough because even weak antivirus systems like default Windows Defender can detect it
18:19
to solve this we should use cryptors
it's service which can obfuscate our file and make it fully or almost fully undetectable
18:19
so, step by step
18:23
1. Buy stealer
2. Buy server for hosting it
3. Make raw build
4. Crypt it
5. Buy traffic
6. Get logs
18:24
for stealer I recommend purelogs, it's good for beginning and get good logs
18:24
for crypt asgard bot
18:25
@asgard_protector_bot
@ThePureBot
18:25
after getting logs you can import cookies to antidetect, buy good IP and then use the accounts and holder's info
also stealer have feature login with cookies using chrome, it's okay but you still need proxy in it
18:26
also stealers have google token feature, it allows to restore google mail cookies to get into it
18:26
and also stealers can get offline wallets such as exodus or browser wallets such as metamask and try to decrypt it
18:27
that's all for today
feel free to ask any questions
and then I'll add bank accounts lecturer
A
21:39
ACAB
Bro question. we already know that changing the data of the person on the waybill from the person ordering is mega dangerous, but what if we have the card in our hand, i.e. attached to e.g. our wallet etc. is it just as shitty to change the address on the package?
21:41
I managed to get a nice and cheap otp bot and I'm getting down to work on connecting cards
MR
23:35
Mr Rain
In reply to this message
yes, because it will ask the bank the real address
7 November 2024
A
15:42
Al Paco
In reply to this message
what is spear phishing?
MR
15:43
Mr Rain
In reply to this message
It's targeted phishing
A
15:44
Al Paco
Is there any specific methods we can use?
15:46
and where can we buy stealers? I tried finding purelogs but cannot
MR
16:35
Mr Rain
In reply to this message
Bro I sent contact
16:35
In reply to this message
A
16:38
Al Paco
this is to crypt the stealers no? not for stealer itself?
MR
16:54
Mr Rain
Bro
This is stealer and cryptor
16:54
Asgard and pure
A
17:06
Al Paco
oh ok ok thanks
8 November 2024
A
05:08
Al Paco
anyone here heard of Yale Lodge villa? they sell bank account access with money. I am not sure how that works if anyone have some information about that
A
05:13
ACAB
Bro who sell bank acc with access?! for 10% balance acc.. if he can take all of money... 99.5% scam
A
05:16
Al Paco
I mean people could argue the same about CC no?
A
10:22
Al Paco
Why is here I have a different score although it is the same website?
10:22
MR
11:47
Mr Rain
In reply to this message
What do you mean?
A
15:59
Al Paco
same ip address, on same website I just tested on 2 different pages of their website and got 2 different results for the same IP
15:59
also for Che browser can only connect for one user?
MR
16:04
Mr Rain
In reply to this message
Why it looks different? What pages?
16:04
In reply to this message
You mean one profile?
A
16:05
Al Paco
Nop, mean multilple users on different computers
16:07
First one i tested here: https://www.ipqualityscore.com/user/proxy-detection-api/lookup
second one hre: https://www.ipqualityscore.com
MR
16:08
Mr Rain
In reply to this message
No
A
16:08
Al Paco
In reply to this message
Any antidetect where can have multiple users?
16:08
for a team for exemple
MR
16:37
Mr Rain
Multilogin for example
10 November 2024
LiteOFF joined group by link from Group
L
01:50
LiteOFF
Hi all, we ll resume our lessons tomorrow, same start time as previous lessons.
❤
A
👌
A
L
18:04
LiteOFF
Hi all,
Now and later we will talk about USA bank accounts.
18:04
I understand that some of you still dont understand what to do after you've taken primary part of the course.
18:04
We ll have some "homework" in the future for self-practice.
18:04
If you want to be a master in this science(yes, carding is science), you need to do them all.
18:04
Upon completion of the course, you ll have all the knowledge to start working on BA(Banks Accounts) direction.
18:05
Today's lecture will focus on the basics of BA theme. Also remember that we ll talk about USA bank accounts only and a little bit Canada(just a little).
18:05
Ok, let's go.
18:05
18:05
BA means Bank Account - one or several accounts, which have general details.
18:05
Simply, it's several accounts, which belong to one owner(except authorized user or joint account owner).
18:05
Each account have its own purpose.
18:05
For the first time for you as newbies I recommend to split the accounts into core and non-core.
18:05
What it means?
Core = suitable for work(for us) and non-core = not suitable for work.
18:05
Main core accounts in each BA is:
• checking
• savings
18:06
Look at them from an average holders point of view:
18:06
checking = as holder you can do daily transactions like buying hamburger via linked to this account card or you can pay for taxi or get a salary from your employer.
18:06
Movement on this type of account is frequent but the volume of transactions is usually small.
18:06
The 2nd type is savings = as holder you hold on money and check it out less often.
18:06
Older people often have serious funds in such accounts. Also this type of people(older) less frequently check their accounts.
18:06
On checking = small amounts in the column of expenses, more often checks the holder, but for the bank transactions on such type of account are common.
18:06
Savings = the amounts are larger(from my practice - much) - the holder rarely checks, the bank treats transactions from such an account much more suspicious.
18:06
And we have to decide for ourselves which account to work with and which not to work with.
18:06
We have to(try) work with all types of accounts. Doesn't matter if it's checking or savings, the main thing is to let them cashing out.
18:06
Well, both type of accounts are good for our 'business'.
18:07
Our choice is influenced by many factors: activity, bank(each bank have its own system to detect unusual activity etc), transaction notifications(deposits/withdrawals/logins into account) and other factors.
18:11
Savings should be watched more closely. The fact is that in the US there is a federal law, according to which there can be no more than 6 transactions per month on savings(including incoming and outgoing).
18:11
Deposits for verification also count(2 plus and one minus = already 3 transactions). We need to pass thru verification process if we link this account to another service or another account.
18:11
https://en.wikipedia.org/wiki/Regulation_D_(FRB)
18:12
Ok, I ll let you know, what happens, if we did more than 6 transactions on saving account in one period.
18:12
7th transaction happened. BAD.
18:12
But each bank have their own rules.
18:12
One of banks will take a big fee for 7th transaction. Another bank will close account or call to account owner to say that he's stupid and he needs to come to the local branch to confirm that he's not completely stupid.
18:12
First rule of BA direction = ALWAYS read FAQ and documents for each bank or company(like Venmo/Paypal/etc) to with you want to work for.
18:12
Each bank has its own terms and conditions.
18:12
More than 6000 financial institutions are opened in USA. Do not ask me to each. Just read rules.
18:12
For the checking account we dont have any restrictions by amount of transactions for each period.
18:12
But there is one exception - business checking. You can also see that some banks have their own rules to amount of transactions by each period like BBT: https://www.bbt.com/small-business/banking/checking/business-value-50-checking.html
18:12
This bank gives to you 50 free transactions then you need to pay 50 cents for each additional transaction.
18:12
Ok. We talked about CORE accounts. Now I want to tell you about non-core accounts.
18:12
The main non-core type of accounts is: Mortgage, Deposit, Loan, Invest(Brokerage).
18:12
Earlier I said that we can work only with CORE accounts. BUT we can work with non-core too(also remember that it requires more knowledge so as for newbies its hard).
18:13
That's why for you, it's not in the core group right now.
18:14
Mortgage: we can't simply initiate transaction via online banking and it looks so: http://i.prntscr.com/WD5AeK8BQCmzftHCyj-mSw.png
18:14
Deposit: if holder have much money by my experience. But certain event has to occur. Such as: death, economic default, birth. Or deposit can be made for the time(until 12/31/2024 e. g.) and we need to find out the agreement with the bank with that rules to cash out the deposit.
18:15
It's complicated but not impossible.
18:15
You can find it in a lot of BAs, it looks like this: https://prnt.sc/ma5x5q
18:15
Loan: credit account for study or car or something else. You can open this type of accunt to each holder if you have USA full info with SSN and DOB.
18:15
And the last one is Investing account.
18:15
18:15
This type of account has many nuances, which also change from bank to bank.
18:15
And investing sites are popular in the US too. Such as: https://robinhood.com/us/en/
18:15
Some of firms like robinhood may allow to link non-core accounts then we cash them out to other CORE accounts.
18:15
We didnt look at all types of accounts and as you work, you ll discover more and more new things like this type: https://www.creditkarma.com/advice/i/what-is-a-money-market-account/
18:15
This site(creditkarma) is good for our education and I recommend to make a bookmark to read it later.
18:15
To read and to learn. It's our primary direction. Not only this site for making money on BA direction, but one of them.
18:15
When you have a question like "I bought someone's account and came in and what to do next?", I ll tell you: "look at this site or similar or use google.com to know how REAL OWNERS works with this type of account".
18:15
And then you ll have no questions if you know how to search important information.
18:15
Always not be a robber or spy or carder. Always be like it's yours money.
18:15
If you really don't know you can try to take fullz and open new account before you buy logs or brute accounts.
18:16
Okay, next. Each type of account have its own requisites in the US.
18:16
There are 7 main requisites:
1. First and last owner's name;
2. Owner address(not an email);
3. Phone number;
4. Email(in some cases, like Zelle);
5. Card number(in some cases);
6. Routing number;
7. Account number.
18:16
Paragraphs 1 to 5 is understandable, I think. We ll look for 6 and 7.
18:16
Routing number(simply rn) means unique branch number for each bank local office.
18:16
Each local branch in the US takes license to make possibility do different type of transactions.
18:16
For ACH we ll see one routing number and for Wire it can be another.
18:16
Account number is required to identify to which client funds are belongs.
18:16
Each account have its own account number.
18:16
I'll show you now how it looks in "real life".
18:16
Here we go to the bank account: http://i.prntscr.com/k-6kVkbXTqWmn3CjAd6RYQ.png
18:16
Take a look and see: http://i.prntscr.com/oVpwtSPtSBqztOOwin5qrQ.png
18:16
Each routing number costs to bank in around $200k. And opening a license for Wire transfers in some remote city with a population of ~1000 people makes no sense.
18:16
In the US they simply use the license of a neighboring large settlement. The commission for this service will go to the profit of the neighboring city or state.
18:17
Ok.
Maybe you know that primary source of material that we can cash out is may take by 2 different ways.
18:17
1. Logs(user opens file on his computer then you get all interesting info that user have);
18:17
2. Brute accounts(you'll take base which contains login:password lines and trying to log in at a certain bank).
18:17
So we cant log in into each bank to saw the transactions.
18:17
Then we use special firms that allows us to link brute accounts to them and to watch activity with all transactions.
18:17
I think you may already have had this firms to check activity but we ll look to one of them(for example): https://www.empower.com/
18:17
If you can log in into your brute or log account you may see statements and all the requisites in 99% of cases by my experience.
18:17
Each bank account have its own statement which coming to owner's email every month.
18:17
If we have access to online banking so I ll show you how we can get the bank statement:
18:17
Here: http://i.prntscr.com/ctFZlhCaR8Gvs-mmjzZwaA.png
18:17
Or...
18:17
There: https://image.prntscr.com/image/aPzMxQ28THaSnTTBRqwn4w.png
18:17
Always try to download to your computer this document cause it may save your nerves in the future.
18:17
If you think "I don't care about what this guy is talking about, I ll make my own money with sluts and drugs" so soon I promise that you'll ask other people to send you these documents.
18:17
No matter what direction you take: sex with cc, love w/ PP or fun with poker theme. Always you ll need statements to pass verification process.
18:17
Each account owner have 2 ways to receive bank statements: a) via regulary mail by USPS or b) electronically.
18:17
Paper statements delivery takes more time that electronically.
18:17
If account owner chosen statements delivery to his email it means he MAY better control account. For you it's not good.
18:17
Also there are more likely that he ll turn on critical alerts.
18:18
Alerts allow him to know about account events.
18:18
Such as: suspicious transaction/log in into his account from the new device etc.
18:18
It works with all types of carding, no matter what you choose. You want to buy new iPhone 16? Ok, here you bought your CC and went to apple.com, then you bought from this CC any item but account owner have alert.
18:18
"Hey buddy, you bought new iPhone 16 PRO MAX for $1300, is it your action?"
18:18
And he see that you bought something cause he look to his phone and sees an alert about suspicious transaction.
18:18
OR you can turn off this notification and buy new phone without problems and your order pass.
18:18
Usually you can choose how to deliver an alerts for each case individually.
18:18
Basic options is: a) SMS b) Email c) Nowhere.
18:18
C - Its in most cases "red flag" to anti-fraud cause you came in to account from the new device and choose "Nowhere", are you insane or what? "We ll lock your account and call you immediately" - that's how the antifraud system works.
18:18
B - Good way, but you need to choose this option if you already have access to owners email. You can add your email(new, registered by yourself) but it may be "red flag" too.
18:18
A - Best idea. Do not delete owner's phone number or change it. Just add your SECONDARY phone number and then you may turn on account alerts to your number.
18:18
If alerts already turned off so I do not recommend to turn it on.
18:18
You can use https://www.textnow.com/ or https://voice.google.com/ to make your US phone number for free without buying SIM card and receive an sms instantly.
18:18
Not an each bank accepts this numbers. If you have any errors with your bank when you're trying to open an account or add textnow or google numbers then you ll need to use real number.
18:18
Where can you get them?
1. Xfinity/comcast logs have a possibility to accept SMS via online access;
2. Take a look for the crd forums and you ll see services who can give you phone number to receive an SMS for 2 to 5$ per one.
3. Buy real US SIM cards on eBay.
4. Try to receive a eSIM from US phone providers.
18:19
I've prepared a list of number gradations in the USA, here:
• Toll-Free numbers(it belongs to organizations, starts from 888 or 800);
• VOIP(textnow/gvoice, many banks get more aggressive when you'll add this number to account, such as https://www.chase.com/);
• Landline(home number, not a mobile, it's better that VOIP but worse that real mobile number);
• Mobile number(best choice).
18:19
You can read about VOIP numbers here: https://en.wikipedia.org/wiki/Voice_over_IP
18:19
How to know to which group you phone number belongs to? Just search in google smth like this: "us phone number validator".
18:19
Also if you change or add new mobile number in account you may need to wait from 1 to 7 working days(Saturday or Sunday isn't working days remember).
18:19
Some of banks have their own internal Secure Messages System that allows to notify account owner about anything.
18:19
It looks like this: https://prnt.sc/pn7l7p
18:19
Do not forget to delete messages in this system. Or mark "as read" it.
18:19
Ok, few things you may need to know about how to configure your PC to work with bank accounts.
18:19
IP(socks5): recently my choise for BA direction was 911 [.]re but after they closed their registration process and topup function on July 25th,2022(after kerbson security wrote an article: https://krebsonsecurity.com/2022/07/a-deep-dive-into-the-residential-proxy-service-911/#more-60343).
18:19
After they were shut down, a new service called “922” soon appeared, and I have my suspicions that this service is under police control, so I would not recommend using it for bank accounts.
18:19
I can recommend you to search for other socks5 services.
18:19
Here are the list:
socksescort[.] com
5Socks[.] net
ABM[.] net
Aceproxies[.] com
Anonymous-proxies[.] net
Astroproxy[.] com
Awmproxy[.]net
Bestproxy[.] net
@Blackproxyio
Brightdata[.] com
Buypersonalproxy[.] com
Changemyip[.]com
Cosmoproxy[.] com
Cyber-gateway[.] net
DSLrentals[.] com
DSLroot[.] com
EtunnelVPN[.] com
Faceless[.] cc
Flipnode[.] io
Geosurf[.] com
Highproxies[.] com
Homeip[.]io
IPBurger[.] com
IPv4depot[.] com
Illusory[.] io
Infatica[.] io
Ip-Teleport[.] com
Iproxy[.] online
LTEboost[.] com
Litport[.] net
Localproxies[.] com
Luminati[.] io
Luxproxy[.] com
Luxsocks[.] ru
Massproxy[.] com
Metrow[.] com
Mobileproxy[.] space
Netnut[.] io
Nonymous[.] io
Nosok[.]org
Omgproxy[.] com
Onlinesim[.] io
Oxylabs[.] io
Pingproxies[.] com
Privateproxy[.] me
Proxiesforyou[.] com
Proxy[.] army
Proxy-cheap[.] com
Proxy-list[.] ru
Proxy-seller[.] com
Proxy-seller[.] ru
Proxy1337[.] com
ProxyLTE[.] com
Proxy[.] market
Proxy_speedmask[.] deer[.] is
Proxycue[.]com
Proxyempire[.] com
Proxyguys[.] com
Proxyhulk[.]com
Proxyips[.]net
Proxymatter[.] io
Proxyninja[.] io
Proxypanel[.] io
Proxyplanner[.]com
Proxys[.] io
Proxyside[.] io
Proxysocks5[.] com
Proxysolutions[.] net
Proxystore[.] net
Proxytales[.] com
Proxyverse[.] io
Proxywhite[.] com
Proxyworld[.] io
Purevpn[.] com
RSocks[.] net
Rotatingproxies[.] com
Satproxy[.] com
Seproxysoft[.]com
Smartproxy[,]io
Soax[.] com
Stackaxis[.] io
Superproxy[.] shop
Supersonicproxies[.] com
Surveyproxies[.] com
Topsocks[.] io
Truesocks[.] net
V6proxies[.] com
Virtnumber[.] com
Worldsocks5[.] com
Youproxy[.] ru
You-proxy[.] com
Zproxies[.] com
iProxy[.] biz
@Proxyport_bot
18:19
We need to use IP for ZIP or city of account owner.
18:19
Also we need to use US Windows 7 or 10(if 10 so do not forget to configure it to destroy Windows Spying processes and services it takes time and its not only 1 process that you need to destroy). I do not have a links how to do that(cause each version of Win10 have its own solutions to bypass windows spying), just try to search in google. What about Win 11 and MacOS, you can work on these systems but I can't advice to you something, because I prefer Windows 10 as main system and win7 as additional(like on VM or VDS).
18:19
Only US-language pack and only US keyboard. Best way is different(dedicated) powerful PC for the work. RAM 12+ GB, GPU(GTX1050Ti and better), 6-core CPU, SSD 1+TB. All this you need for comfortable work, as in a moment may need to open a few applications of android emulator (which require and graphic acceleration including), several browsers (not a tabs, I mean few different browsers), 2-3 virtual machines, so you may need a medium-powerful hardware. Large and fast SSD drive you need to quickly open everything without brakes and lags. Of course, I did not start with such hardware in 2018(when I came to crd), in the presence of only one laptop, which from overheating turned off 4-5 times a day, because it was heavily loaded with all the above. If you do not have the means or similar hardware, you can start work with what you have, but you will, of course, less comfortable and will have to find some other ways to work (for example from mobile devices).
18:20
Plus ovpn(costs you in around 9-15$ per month, previous lecturer must tell you about how to create it) or double openvpn.
18:20
Dont forget that If you're coming our way, set up all the VPNs, set everything up perfectly, don't forget your head on your shoulders. NEVER put anything on the Internet that might put you:
a) de-anonymize you;
b) attract someone's attention.
18:20
By going this path you automatically sign up for a life without media and popularity, remember that once and for all, no matter what country you are in. If you don't care and you post pictures on instagram of expensive cars and planes, with wads of money, or record clips of yourself stealing money during COVID-19, like this arrested shit:
https://www.youtube.com/watch?v=K0ck7hTsug8
18:20
Then there's no point in setting anything up.
18:20
My recommendation, if our industry really interests you, is to delete all social networks or minimize all activity, don't turn them on while you are working on your computer, especially your work machine, otherwise it could affect your security so much that everything you did to strengthen it will be useless.
18:20
Then use Portable FireFox or Chrome Portable(can be downloaded from portableapps.com). For logs I recommend to use some special antidetect browsers like Linken Sphere or MultiLogin or Undetectable or GoLogin or any other antidetect browsers. But your primary work will be on portable ff/chrome browsers with bank links and articles on financial sites.
18:20
Ok, for today I think we re done.
18:20
Do you have any questions?
18:20
#homework
1. Carefully read today's lesson.
2. Take a membership in one of this firms:
zoho.com
netsuite.com
dave.com
Quicken.com
buxfer.com
mint.com
moneydance.com
empower.com
concur.com
youneedabudget.com
3. Read FAQ on these site: https://robinhood.com/ as CUSTOMER, read their rules. At the next lecture you ll say whether or not you would register with their firm in order to cash out owner's account through them. If you want, you may find similar firms with easier account opening process(robinhood now wants in most cases too much documents).
4. Download and install one of this emulator: NOX/MEMU/BlueStacks(one of or any other), it come in handy in the future homework.
We need Android 7(x64) or newer.
If you have burner phone that you didn't use(but not too old) then you ll need them in the near future to work with.
18:20
If you don't have a spare phone that you can use for work, use an emulator, but remember that emulator never replace real hardware.
18:20
I recommend to take a membership on this boards:
wwh-club[.] tech
procrd[.] org
xss[.] is
center-club[.] link
verif[.] mn
blackbones[.] net
crdpro[.] cc
forum [.] exploit[.] in
18:20
If you have questions so ask here(in this group), not in PM.
18:21
I ll now post a poll about the date of the next lecture, choose the date carefully so you have time to do homework.
18:22
Next lesson date?
Final results
- 11/14 4 votes, chosen vote
- 11/15
- 11/16
- 11/17
- 11/18
- 11/19
- 11/20
- 11/21
4 votes
11 November 2024
LiteOFF pinned this message
KT
12:36
King Themes
In reply to this message
Could you recommend us the best socks5, proxies site that you are using?
12:42
And should we turn on or turn off "Location services" on windows? And do you think this option can impact to carding and antidetect browsers?
L
17:09
LiteOFF
In reply to this message
This is the list of services that I have personally tested (each of them).
Certain services are suitable for certain tasks (some are more expensive, some are cheaper, some even require KYC and video verification).
Choose any one, explore several options. Especially in case one of the services closes down or there is no socks5 for your city/zip.
17:10
In reply to this message
By default, of course yes.
And this doesn't only apply to windows, but for example on your work iphone too.
17:12
In reply to this message
This feature does not affect anti-detect browsers: they have their own built-in geolocation spoofing system.
But if you work with portable copies of browsers, then yes, it affects them. But you can also prohibit them from using permissions to check geolocation.
KT
17:14
King Themes
In reply to this message
But I think you will have the best choice, then second choice, third choice...
L
17:36
LiteOFF
In reply to this message
And what do you think: if I give just one service to all the groups I've ever read or am reading. How soon will most of the socks5 out there become basically unusable with banks?
17:39
In reply to this message
Our next lesson will be on November, 14th!
KT
17:39
King Themes
I hope you can more lesson about the different between socks5 and residential proxies, ISP proxies, Static proxies, Rotating proxies, sticky proxies and such more knowledge about this field.
L
17:48
LiteOFF
In reply to this message
Yes, I have knowledge of the differences between these types of socks5. But to be honest, it comes in handy when working with merchants (when using CC to order things) and also with payment systems. In the same Paypal it makes a difference.
As long as I work with bank accounts, this factor is not so important here. I don't even check fraud score before using socks5. I don't check exactly anything(except zip and time).
The only exception to the rule is for more delicate work with logs(say, when you need to log in to a certain payment system or firm, mostly following the example of Transferwise or WU).
Also there are banks with more advanced antifraud (like Chase), but even there dirty socks5 of server proxy gives a good result if you know the mechanics of working with the bank.
👍
KT
17:49
So, to summarize my answer - you don't really need such parameters to work with bank accounts. More emphasis is put on hardware and its configuration, as well as fullz info and related data (I will tell you more about this in the future).
17:51
And it's also important to note: if you work with UI/PUA/SBA/FEMA and other USA gov firms or projects, of course, the proxy parameter is very influential. It becomes one of the key parameters.
14 November 2024
L
17:13
LiteOFF
Hi there, how you doing your homework? Any progress?
17:13
We ll start from 3 2 5 minutes.
17:17
17:17
Ok, a few words about firms that I sent you last time.
17:17
You know we can link brute or logs to them.
17:17
But any brute or log costs money so you ll quickly spent all your money if you will test every firm with new brute acc.
17:17
And to avoid this you can make your own account. I'm talking about acct opening in USA Banks. Then you can try to link it to any firm that you need to test.
17:17
Together we ll go this way on the next lecture(not today).
17:18
Today we re look forward to funds transfer methods.
17:18
Main ways contains only 6 points:
1. Bill Pay;
2. ACH;
3. Wire Transfer;
4. International Wire;
5. Internal bank payment system;
6. External payment systems.
17:18
Bill Pay(1) looks like this: http://i.prntscr.com/W86AF56STn_uMXxsVY-ewQ.png
17:18
Different banks have different designs of this system but main content is the same.
17:18
This method has 2 options for entering the recipients details: by prefill and manually entering data.
17:18
If you see that bank do not have any prefill fields so you ll see similar boxes as described on screenshot above.
17:18
Or you may see that bank have prefill fields and it looks like this: http://i.prntscr.com/ZkWBkYnNT76nDmoqXtUpJg.png
17:18
For account holders in US Bill Pay may be used to pay for any bills like water, electricity, internet.
17:18
Via Bill Pay also you can pay your credit cards but not every bank lets you do this.
17:18
Every funds transfer via Bill Pay may take up 2 to 14 business days.
17:18
And you know it's been a while and account owner can take note of this.
17:18
Its mostly not up to us.
17:18
But there are one big advantage to this way: by my experience you can send large funds amount at a time and the antifraud system wont fight too hard to you(remember thats depending on bank and if you want to do this with big banks like Chase.com so good luck).
17:18
By this way you can transfer funds to your drop mailbox and he can cash them out via his local branch or anywhere paper checks are accepted.
17:18
I almost forgot to mention that in this method account owner also will receive his bill's copy via regular mail from 2 to 14 business days after this transaction will posted and fully cleared by his bank.
17:18
So this way, sooner or later the account holder will know about your actions anyway.
17:19
Next funds transfer method is ACH(2).
17:19
ACH means Automated Clearing House system. It developed by US reserve bank.
17:19
You can read more about that on wiki: https://en.wikipedia.org/wiki/Automated_clearing_house
17:19
What about time? ACH takes up 1 to 4 business days.
17:19
You can link any bank account via account and routing numbers or instantly(by login-password combination) and send the funds to or from this acct.
17:19
When you make a deposit to PayPal from bank account you need to get around 2 antifraud systems where: 1st is PayPal AF system and the 2nd is Bank AF system.
17:19
If you chose to work only with bank accounts(not with PP) you ll need to get around only 1 AF system(your Bank).
17:19
This system is pretty simple and you can look here how to link your account in the example of WF Bank: http://i.prntscr.com/QLsbLG5nQs6O7nLtDdKMVA.png
17:19
Usually, you ll link another bank account via an & rn.
17:19
But you can't write any numbers to this field and link any account you want.
17:19
You can link only account which: a) belongs to YOU(as account owner to which you linking your new account) and b) you can confirm your ownership.
17:19
Any bank will verify new account via trial deposits. These deposits come from 1 to 4 business days.
17:19
And it counts as a normal ACH transactions(2 plus and 1 minus).
17:19
I ll let you know one lifehack. By US law you can link only accounts that belongs to you BUT not all banks verify this data after you ll link an account.
17:19
Simply: You linked one of brute accounts that belongs to one owner and your prime account to which you link your brute account belongs to another owner from fullz.
17:20
So you can transfer funds from one person to another.
17:20
If you link one account to another via instant verification(using login-password) then the bank very likely will lock these accounts so I recommend to link instantly only accounts that belongs to ONE guy.
17:20
And remember you can reach full info almost anybody in the US using various services that I will give to you in the near future.
17:20
Some firms may allow to you to link bank account to them which contains to another owner.
17:20
Example of such firm is PayPal.
17:20
But it's not limited to PP.
17:20
There are many others.
17:20
Okay, when you have linked your account with any of these methods(INSTANTLY or by verify trial deposits) you can send the funds TO or FROM this account.
17:20
When you send the funds FROM linked account TO your current to which you have linked to so it means REVERSE ACH.
17:20
If you send the funds TO linked account FROM your current to which you have linked to so it means DIRECT ACH or DIRECT DEPOSIT.
17:20
If you will initiate your transaction on Monday before 12:01 PM so you ll have your funds BY MY EXPERIENCE on Wednesday.
17:20
There are often various delays and usually the funds are definitely in your account on Thursday. So if you sent your funds On Monday and on Thursday they re still gone then you should be worried.
17:20
Usually all major work in this theme is done on Monday cause if we link other account via an rn it takes time to receive trial deposits. If we ll make on Monday we have a chance to confirm account on Tuesday and cash out our receiving account on Friday. If no so we need to wait for another 2 days(weekends) and you understand all the risks.
17:20
Also we have one "golden rule" for newbies like u and it says that first deposit should be no more that 30%(perfectly 10-25%) of all balance of your brute or log accounts. And do not take all from the someones account by 1 transaction. I said it to many people in every group and some of them have already made a mistakes so do not repeat them.
17:20
Take it seriously, it's not a game or movie.
17:20
If you take all for one transaction so your chances of freezing or canceling are greatly enhanced.
17:21
Each bank have its own AF system that set up differently and you can always lern this system and take as much as you can before you have been locked.
17:21
No one can gives bank with instructions so you should study it yourself.
17:21
Ok, next way is the Wire Transfer(3).
17:21
Pretty good way that allows you to send large sums.
17:21
Wire isnt available at all banks via online and you should know activity on BA: take a research all past transactions so much better will be if there have been transactions of this type before.
17:21
You need to intercept a text message via SMS or receive a call to the number of the account owner to confirm Wire transfer. Now it has to be done in many banks or owner will cancel the transfer.
17:22
It's better if you have the capital for such experiments because it's quite expensive.
17:22
This type of transaction is very fast and possible you may receive the funds as fast as 10 minutes. Again, it all depends on the receiving and sending bank. If your transaction is not completed even after 10 hours so do not despair. I had Wire transfers that went on for a few days.
17:23
Some crypto exchanges using Wire to receive funds. Example: coinbase.com offers several methods to exchange USD to BTC such as: reverse ACH, CC(credit cards), Wire.
17:24
Usually by Wire you can send significant funds, often you ll see minimum amount limit by one transaction like at least $2000.
17:24
On crypto exchanges your transaction is accepted by business account but payment may be rejected if you send a transaction to another person's account(with a different last and first name from sender).
17:24
The 4th method is International Wire so it has some differences.
17:24
In this way the recipients data must not match the sender's data or to you(as the recipient) can raise a lot of questions. More that usual.
17:25
And this type of funds transfer go a long way. It depends by sending bank and receiving country and bank. The maximum time I saw was 21 business days(from HSBC USA to Sberbank Russia).
17:25
International Wire wakes a long time because it can go through several banks in many countries.
17:25
The waiting time depends on correspondent banks and if your bank has a correspondent bank in the sending country, the transfer can be very fast. Example: We need to make a wire from Chase bank(USA) to TCS Bank(Russia). If you go to the information on how to get the funds of this type of transfer in TCS Bank so you ll see that they use the partnership with Chase on US side.
17:26
This transaction takes 1 business day by my experience.
17:27
Sometimes the funds were on the same day in TCS Bank cause time zones do their job.
17:27
But there is one significant drawback to this type of transaction and you should know that in most EU countries and in ALL CIS countries you ll be sure to get your account frozen. You ll need to answer questions about source of funds. EU is actively promoting AML policy where you have to prove your money in case of the slightest suspicion from the bank.
17:27
If you want to work with CIS(Russia, Kazakhstan and neighboring countries) to fast cash out US bank accounts via Int. Wire so be ready to account locks cause your account will be locked every time it receives a transfer from abroad.
17:28
The most acceptable option is to use offshore countries like Cyprus or Belize.
17:29
Also you may use UK because EU AML Policy will not dispose of the GB.
17:29
A few words about Canada: this unique country is simple made to work with. Transfers to other countries are so beautiful that it can be made even by phone.
17:30
Any international transaction from Canada goes much faster that from the US. You can just take the bank log of this country and send the transfer online.
17:30
The main problem is to find a decent acceptance of funds, in most cases, you still need an account from EU zone to receive INT WIRE from Canada.
17:30
If you want to send the funds from Canadian bank to the same country(Canada obv.) you should know about Interac e-Transfer: https://en.wikipedia.org/wiki/Interac_e-Transfer
L
17:31
LiteOFF
Y
You 27.05.2024 03:36:36
17:31
Y
You 27.05.2024 03:36:36
17:31
Y
You 27.05.2024 03:36:37
17:31
Y
You 27.05.2024 03:36:37
17:31
Y
You 27.05.2024 03:36:38
17:31
Y
You 27.05.2024 03:36:38
17:31
Y
You 27.05.2024 03:36:39
17:31
Y
You 27.05.2024 03:36:39
L
17:31
LiteOFF
That's all I can say about Canada. Just take it and do it if you re interested and the first experience will allow you to develop further.
17:32
Ok, go back to the USA. Next method is internal bank payment systems(5) and you know there's a lot of banks in the US. Each may contain many various of internal payment systems. Here are some of them:
• Surepay;
• P2P;
• Zelle;
• Popmoney;
• Send Money(any internal in-app payment system like cashapp send money to friend or smth similar).
17:32
Dont care about the name. The only essence of these tools is to transfer money quickly.
17:32
It's simple. Just initiate a transfer and signify beneficiary details(in some cases, just a phone number or email is enough) then click on the send button.
17:32
And you're enjoying yourself!
17:32
When you see for yourself how easy its to send funds here, you will understand the mechanism of other payments that I have told above.
17:32
Now let's talk about external systems(6):
17:32
It's not complicated.
17:32
Take full info, open an account in any external system, link someone's bank account(via an/rn or instantly confirmation, it doesn't matter) then press "add money" or smth similar.
17:32
There are 2 options for these external systems:
17:32
1. If we can link to your external's system account many bank accounts.
17:32
Example: someone's brute account(source of funds) and your account(which you opened to fill and cash out).
17:32
Nothing complicated.
17:32
So you transfer funds from someones account to external system then you transfer funds to your bank account.
17:32
And 2. When you cant link more that 1(someones) account to one external system.
17:33
There are different options here, such as you can transfer funds from your external payment account to another account in this system or ask support to remove someone's acct and add yours.
17:33
Pay attention to the Venmo. Who knows, maybe some of you will want to work with this payment system.
17:33
Maybe it's yours "money button".
17:33
Each external system have it's own AF and if you choose one, then work through to the profit dont stop.
17:33
And yes, if you want to work with this method so prepare to constant verifications such as: "Give us your photo with DL or your account be locked".
17:33
Ok, last one article for today.
17:33
Checks.
17:33
The checks are now being validated by AF systems.
17:33
You can quickly gain experience in this field by using the most popular check-cashing app in the US that called Ingo Money: www.ingomoney.com
17:33
Yeah, it's pretty simple way here: just take a picture of your check and submit it for review.
17:33
Let me just say that you need a lot of practice to fully understand AF systems in check cashing apps.
17:33
Also some banks have eCheck function that permits to you to send the funds by account and routing numbers to any account in the US.
17:33
Funds transfer takes place within 1 day.
17:34
A good bank with such a system is not so easy to find.
17:34
Okay, simple paper check(not an eCheck) looks like this: http://i.prntscr.com/1u4iMj2dRbiG7ypPOuIZ9A.png
17:34
The real check that was once used. From personal practice.
17:34
So I had to hide all the sensitive information.
17:34
We can use paper checks with mobile deposit feature in some banks or apps.
17:34
It looks like that:
L
17:34
LiteOFF
L
LiteOFF 31.03.2022 11:00:02
Video file
Not included, change data exporting settings to download.
01:20, 36.7 MB
L
17:34
LiteOFF
You can find information on how to write the checks here: https://www.forbes.com/advisor/banking/how-to-write-a-check/
17:34
And each bank have its own checks design, I prefer to order checks from self-made BA for little amount to see how it looks like.
17:34
Pay attention to state prefix too, for example: https://help.cubase.org/cubase/recognizing_a_fraudulent_check.htm
17:34
Also, a paper cheque is sent to the owner of the bank account after its closure(with the balance at the time of account liquidation), you can change the billing address and close the account by intercepting the paper cheque w/ all the funds.
17:34
That's all for today.
17:34
#Homework:
1. Open payoneer.com acct for any data in your country or a neighboring country or US. Or all of them(better). Use someone info. If you have been asked for your bank account details, take any of any organization, such as a charity.
This firm can help you cash out the funds in any country in the world. https://img001.prntscr.com/file/img001/3jdV0zh8TL-al96Mr4j9Hg.png
2. cash.app is rechargeable prepaid virtual card in the US. Probably you can use it in your country(read FAQ) to pay for something(eat, taxi, clothes, iphones), good way to cash out too.
You can try to use an emulator for this app.
17:35
But I'll tell you right away, so that you do not waste a lot of time and effort: since September this year, the latest versions of cashapp see the emulator and refuse to run on it.
17:35
So it's probably better to use a burner phone specifically for this app. There is only one small possibility to run it on an emulator, but perhaps I'll tell you about that later.
17:35
Any difficulties that you may encounter will be solved if you think about it a little.
17:35
And yes, you can link your payoneer to any marketplace such as amazon or ebay and cash out CC by this way.
17:35
For cashapp you do not need to use root. Use android 7 or newer.
17:35
If you have any questions ask here(in this group).
17:35
Next lesson date?
Final results
- 11/17
- 11/18
- 11/19 1 vote
- 11/20
- 11/21
- 11/22
1 vote
LiteOFF pinned this message
15 November 2024
l
02:45
lalkin
In reply to this message
Hi, I registered zoho and read information about quicken, I suppose we will need it to link a ba account to them and view transactions (I assume mini transactions) or not?
I also downloaded NOX
After reading the terms robinhood and conditions and generally surfing the site (I also read that the registration process together with approval takes 1 day) I think that yes, it is worth registering
L
16:27
LiteOFF
In reply to this message
Hi, that's right. We need these firms to see the transactions(for example on brute ba).
❤
l
16:28
In reply to this message
If we consider this firm from the point of view of replenishment of funds there from brute or log? What is important for us to deduct in such a case?
L
18:09
LiteOFF
In reply to this message
Our next lesson will be on 19th November!
16 November 2024
l
00:51
lalkin
In reply to this message
slightly misunderstood the question
L
05:37
LiteOFF
In reply to this message
What is the purpose of this firm (robinhood)? To take funds and load it from log or brute. Accordingly, what are the key points for us from this point of view in this firm and similar ones?
l
14:49
lalkin
In reply to this message
I don't think it will work with Brute and I think the key is to have good document rendering to pass verification.
14:49
In reply to this message
and if I understood the question about the purpose of such companies correctly, then this is work with investments
18 November 2024
L
02:03
LiteOFF
In reply to this message
The main objective of this firm and its like is to move the funds from the log or brute account there and then withdraw it. What are the key points we need to understand in order to do this?
l
11:35
lalkin
ohh i don't know😕
A
14:20
Al Paco
@hckdozhd what do we do with Rat? Get the card from there and carding there? Or buy card with same zone to carding on Rat? (We often do not get card from Stealer or Rat, I see card number without cvv only)
MR
15:08
Mr Rain
In reply to this message
It's better use stealer and get logs, it's better than get cards
A
15:09
Al Paco
In reply to this message
What do we use the log for?
MR
15:59
Mr Rain
In reply to this message
For carding
A
16:00
Al Paco
In reply to this message
So we will carding there on their device/ip. Seem we dont need sock for that
MR
16:01
Mr Rain
In reply to this message
No
You re talking about hvnc
Regarding logs, you use it with socks and antidetect
A
16:02
Al Paco
In reply to this message
Why dont we carding with hvnc?
16:02
Why do we need log when we have hvnc?
MR
16:04
Mr Rain
In reply to this message
Seems you don't get the way how it works
Stealer get logs
Hvnc gives access to hidden browser
If you use stealer and have only log, you can use it with antidetect and socks and also get stealed crypto wallets
If you use hvnc, you get only access to holder's browser
A
16:10
Al Paco
In reply to this message
Yes I know, so u mean with rat and stealer you told us about it and get money from the holder from the logs.
16:11
16:11
Im trying to send Rat on a .exe file
16:12
But when I put the file on the web
16:12
Chrome will detect it and warning to user
16:12
Any suggest?
MR
16:14
Mr Rain
Of course it will detect
You should encrypt it
But chrome blocks almost all malware
A
16:16
Al Paco
What is the best way to run Rat now bro?
MR
16:17
Mr Rain
In reply to this message
Use messengers, create new spreading schemes
A
16:18
Al Paco
So send them as a file on dm, not send them the web link?
MR
16:18
Mr Rain
Yes
20 November 2024
L
00:41
LiteOFF
Hi all, sorry for delay today. I have some technical problems, and it is not possible to write the lesson from my phone due to the large amount of information.
I have to postpone the class to the 23rd November approx(+-1-2 days, I'll give you a day's notice when pc ll be ready.).
I owe you a bonus! I will look for an interesting video or article on an interesting topic. Something I've never shown any other group before.
❤
A
l
S
01:34
SKYTRAVEL
Can anyone explain me more about otp, and does it really work?
21 November 2024
A
12:02
ACAB
Bro i sets dolphin and its detected... safari its not possible on dolphin?
23 November 2024
L
09:40
LiteOFF
Hi all, our next lesson will be on Monday.
09:41
In reply to this message
OTP means one-time passcode.
https://www.techtarget.com/searchsecurity/definition/one-time-password-OTP
LiteOFF pinned this message
L
09:42
LiteOFF
For bank account protection, it works, yes.
09:44
In reply to this message
What do you mean?
You're trying to use safari useragent on dolphin running on windows?
09:56
In reply to this message
So to intercept otp code there are several options:
1. OTP bot(links can be found on the forums from the first BA lecture) - when a robot calls the victim with a similar script as from the bank and asks to name the code from the sms.
Here you have to rely on the carelessness of the holder.
2. Find those who are engaged in interception “on the ground” with the help of vulnerability in SS7 protocol - price tag from $3000, it is difficult to find these people. They are also often imprisoned.
3. Through online vulnerabilities of operators - online access via website to control numbers of the holder.
4. Using hacking skills: finding vulnerable devices (e.g. routers), some models allow you to receive and send sms.
09:56
I ve prepared a video of how it looks like when you working with OTP bot.
L
10:28
LiteOFF
Video file
Not included, change data exporting settings to download.
00:24, 2.1 MB
25 November 2024
A
02:01
ACAB
For us only first step its avaible … and watchout for otp bot from telegram 90% its scam
02:11
In reply to this message
yes xD
L
16:15
LiteOFF
In reply to this message
Well, I think you realize that emulating Apple's browser on ordinary hardware not adapted for this is not the best idea.
Run Dolphin from your macbook and the result may be different.
L
17:08
LiteOFF
Hi there, whats your progress with homework? Any questions?
L
17:25
LiteOFF
Today I finished studying some applications.
What can I say in addition to the BA course:
1. If you are interested in the direction of mobile apps, it is worth starting to understand with:
a) export apk files - this option is available in app cloner, after exporting you get a .zip archive, which, attention, contains not only the application itself (after installing it from play market), but also configuration files. The application itself makes a mold of your hardware (phone or emulator) at the time of installation. Thus, you find yourself in a hostage situation: if you use an emulator, the application will notice it during the installation process and further depends on your skills to edit this config file, the whole story looks like this: https://img001.prntscr.com/file/img001/88RLaoBhReSyKK9jTWGh3Q.png;
b) to view the application itself - you can install android studio(https://developer.android.com/studio), this program is for developers of android applications. Also this software has interesting functionality in terms of verification (virtual environment for the camera, for example), but its emulation capabilities on my device all this time did not always work correctly (so be patient). The .apk of the application itself in this program looks like this: https://img001.prntscr.com/file/img001/QhFSejprTCefGZcubjkKmQ.png.
c) forums - something you need to read and study, the main one I can single out is https://xdaforums.com/.
d) there is no universal method of working with all applications, as each developer builds protection individually. What worked for me with cashapp did not work with X World Wallet.
I'm sure if there was a tutor in our direction for at least basic reverse engineering of apps(apk), this course could be worth much more.
2. The BA methodology itself is going to shift more to real devices in the near future. Fewer and fewer apps will be run with emulators. Android devices to work with are generally all suitable with more or less modern versions, often a used phone from a message board will suffice. If you have a very tight budget, I can advise you to take even phones with screen defects: with proper skill, you can connect them to a computer and control them with a keyboard and mouse. You can use raspberry pi with openwrt firmware for internet distribution to your phone, you can read more in the net, it all costs not very much money, but it will give you the opportunity to throw pure socks5/openvpn configurations.
3. Gradually studying the direction of bank accounts will eventually require more and more of your technical knowledge on the same reverse engineering applications, because, for example, access to mail in the same log can abruptly cease to operate, and the phone number will be solely under the control of the holder, but push notifications with one-time confirmation codes you need to see - this is where a working phone will help.
About self-reg bank accounts I think it is not necessary to say anything, some banks and applications you will not open without a phone (like the same cashapp).
17:29
Ok, so we starting.
17:29
17:29
A few words about investment companies like robinhood.com.
17:29
When you looking for investments companies so you need to look for 2 core moments:
17:29
1st: For which period your funds will be frozen.
17:29
and
2nd: What this firm wants from you to switch bank account to which you wanna send the funds.
17:29
+ one more thing: can you link new bank account by yourself or no?
17:29
Any investment firm have one big vulnerability that calls "human factor".
17:29
It means that you can take the action you need if you can influence certain people in company.
17:29
I ll give you an example from my own practice. There is such a firm calls Stockpile(https://www.stockpile.com/).
17:29
I just paid a man who's good at talking to other people on the phone, told them what he should say. Thanks to one call I was allowed to withdraw funds from this firm to another account(not the one from which the deposit was made) without any additional waiting.
17:29
If we hadn't done that, we'd have to wait 60 days by the rules of this firm(look at this article https://help.stockpile.com/en/articles/2066662-anti-money-laundering-aml-withdrawal-restrictions). Most likely, during that time, the funds would have been withdrawn by their original holder long ago.
17:30
We should use some situations in World to achieve our goals. For example from the past - COVID-19. We can use panic and situation.
17:30
How? In past most of US banks have the warning regarding covid, I have an example from Charles Schwab bank(https://www.schwab.com/) so you can see the measures they've taken in connection with the panic, look:
17:30
17:30
It working better in local banks. For example in cases of flooding in Florida.
17:30
In some cases, those few days of flooding in Florida can bring you several million dollars because of this situation.
17:30
And for you, it means that whatever the situation with your bank account is, they will not be able to say "come to the bank branch and we will decide everything personally with you".
17:30
Yes, this argument is very often used by banks or any firms in all difficult situations, it puts us in a dead end, we can not come to the branch.
17:30
Maybe you know there's always gonna be different people: disabilities, old people, various injuries and deviations. You can always use this argument to solve the situation in your favor. Or even some disaster.
17:30
It works both with banks and investment firms. In general, everywhere, you can even raise womens for sex, pretending to be sick, but about this not here. All I saying is, the social aspect works everywhere but it's not always up to you.
17:30
All of this was due to what you might have noticed when doing homework related to investment firms.
17:30
Today we re looking for how to process of creating normal bank accounts, which have full functionality.
17:30
How to self-register fine-to-our-purposes bank account? So first of all we need to choose the bank.
17:30
How to choose the bank? Look at google.com, so think like future account holder. If nothing comes to mind, type something like: "how to choose bank account".
17:30
17:30
My search query was a little different so I searched this minds: "bank account bonuses".
17:31
And google found many sites, I noticed one that caught my interest:
https://prnt.sc/rkmwzj
17:31
https://www.hustlermoneyblog.com/
17:31
Here are already the first interesting thing we can learn. For example, if you dont have any money for the material(brute/logs), you can look for banks that give you a bonus when you open an account, then withdraw it to another account, thus making yourself an initial capital.
