THIS IS A FREE GUIDE MADE BY

@SmokePxrpp ON TELEGRAM! DON'T

FALL FOR HAMS SELLING.
I will go over 5 topics in this guide, such as:

a. How to have a good OpSec

b. Common Carding Knowledge
c. How to NOT get scammed
■ (How to also check CCs)
d. How to punch CCs
e. 2 Free CC sites

1) 1. How to have a good OpSec

- OpSec, also known as Operation Security, is how anonymous/safe
you are when on the internet. Having a good OpSec is crucial when
doing any sort of fr@ud.
- You will need some stuff for OpSec, such as:
- Socks5 Proxy (HAS to be residential)
- Anti-Detect/Anti-Fingerprint browser
- Common Sense

⤵️
- Here, I’ll show you guys a scenario about what having a bad
OpSec can cause.

- Let’s say I buy a CC, and I want to hit it online. The CC is in the
same city as me, and since I am a retard for the sake of scenario, I use
my phone WiFi to punch the CC. First time, it works! This is because it's
the retards' first time punching and since it's the same city, it’ll go
through. Now, let's say this retard keeps on punching with his WiFi on his
phone. Eventually, his IP will be blacklisted on some databases, and
when he tries to buy from a site, it will tell him to do extra
verification/trigger VBV before purchasing.

This is because of two things:

- His I.P got flagged, since that’s what he only uses
- His browser/user-agent’s fingerprint got detected
- His MAC Address got detected
- Because of that, sites will know that he's doing fraudulent
purchases and will straight up decline his card. But that’s fine, you’re
not going to really get arrested or shit from doing that.
- NOW, let's say someone is trying to login to Bank Logs and do
some Wire Transfers. HERE is where the risk is at. If they do it on
their phone, with location services turned on, and home Wi-Fi, they
will be SO easy to catch. This is because, let's say the retard wires
money to his personal bank account. The government now has
these pieces of information:
- His I.P Address
- His unique browser/phone fingerprint
- His MAC Address to identify the phone

🤣
- The name in his Bank Account
- It’s almost as if the retard is trying to get caught .

How do you prevent this?

- You will NEED the following:
- The stuff listed earlier.
- TMac V6 MAC Address Changer.
- A phone LTE/4G/5G Plan.
- (OPTIONAL) A RDP (Remote Desktop Protocol), a VM (Virtual
Machine), or a burner ANDROID phone. This is only for stuff like Bank
Logs, ACH Transfers, or some HIGHLY illegal shit.
- Common Sense (Never use real name online, real email, real
phone number, etc)
BOOM! You now know how to kinda stay safe online.
2) 2. COMMON CARDING KNOWLEDGE

Here, I will go over some carding terms and some common sense.

COMMON CARDING TERMS:

● CC - Credit Card

● CCN/PAN (Credit Card Number/Primary Account Number) –

Includes the number of the card and expiration date, no name or
address.

● CVV (Credit Verification Value) / (Card Security Code) / CVV2 -

The number on the back of the card used for verification purposes. 3 digit
number for visa/mc and 4 digit for AMEX (American Express) (There is
also CVV1 which is a verification number that is written into the
magstripe on the back of the card that is read when the card is swiped)

● Drop – an address where you can send carded goods, not your
own house or friend or relatives.

● SSN (Social Security Number) – one of the details of CC holder ,

used to bypass security measures

● MMN (Mothers Maiden Name) – Comes in handy when bypassing

security measures on VBV/MCSC. One of your security questions.

● DOB (Date of Birth) – Used to bypass some security measures.

● COB (Change of Billing) – Some stores will only ship large/high

priced items if the shipping and billing info match, these can be obtained
through some cvv sellers, usually in the form of a "Fulls"
● Fullz – It is nothing but CC Details with more info eg. security
question answers, SSN, DOB, MMN, etc. which can be used for COB,
etc.

● AVS (Address Verification Service) – System that checks the billing

address entered against the credit card company’s records.

● VBV (Verified by Visa) – Extra verification process initially added by

visa, there are different types of authentication used, most notably would
be a password, date of birth, social security number, or mothers maiden
name.

● MCSC (MasterCard SecureCode) – MC (MasterCard) adopted this

process after VBV came out, basically the same thing but with
mastercard cards.

● POS (Point of Sale) – Terminal at a physical shop where the card is

swiped/read

● Dump – The information that is written onto the magnetic stripe on

the back of the card, the only way to get these is with a skimmer, comes
in different "tracks" which i will not be explaining – a dump would look like
this: 4131980020013459=11101010073957306460

● BIN (Bank Identification Number) – The first 6 digits of a card

number (this will be gone over in more detail later on), it tells the issuer,
and bank and type of cc details. I suggest using RavenBot on telegram or
StonedApe’s bot to check BINs.

THESE are the terms that you SHOULD be familiar with,

👀
ESPECIALLY “Non-VBV/Non-MSC” because those are the cards you
should try to look for.

Lastly, here is WHY your orders get canceled.

When carding, your orders from sites might get canceled straight
away (1 hour or so) after you check out.
- This is because the Pre-Authorization failed, or the purchase
seemed Fraudulent to the site. If the order cancels within 10 minutes,
that meansthe preauth fails, meaning they try to preauthorize the amount
on the card before they ship it out, to make sure the cc has enough, and
if it fails it cancels the order.
- If it cancels after 12+ hours, that means the purchase was
either:
- Detected as a Fraudulent Purchase by the issuing bank and was
canceled.
- OR the purchase got charged back by the cardholder.

3) 3. HOW TO NOT GET SCAMMED

Here I will talk about how YOU can save your money and NOT get
ripped/scammed/taxed for CC’s etc.

😂😂😂
a) For Cash App/PayPal, If y’all ever want a “linkable” STOP paying
an extra $20 compared to a normal CC from vendors a linkable
is just a normal CC, all CCs will link if ya do it correctly. Think of it like
this: Why would certain cards NOT link? imagine a normal person tries to
link their own CC and it works, but when someone tries the exact same
CC and it doesn’t work. That's because CashApp/PayPal detects
suspicious activity, and uses different factors to determine if something is
fraudulent or not. Carding isn't about bins, maybe 30% of the time it is,
but it's mainly about trying to seem like you ARE the cardholder
themselves.

b) So now that you know that you shouldn't be letting vendors tax you
for normal CCs, here's how to NOT get scammed. Make SURE the

⤵️
vendor has some sort of replacement/refund etc rule for dead CC’s.
RIGHT after buying a CC, check it using Raven Bot on telegram
(https://t.me/SDBB_Bot) , by using the /chk <CC NUM> | <MM/YYYY> |
CVV | . If it says “Do Not Honor”, that means the bank declined the
purchase for an unknown reason. If it says “RISK: Retry this BIN later”, it
means the CC can get killed if you check that specific BIN, and is best to
try at a time during midnight. If it says “Account Closed” that means the
cardholder closed the CC account, and is not valid anymore. Lastly, if it
says Declined that means the CC is dead.

c) MAKE SURE the vendor has some sort of vouches 😭😭😭

Forwarded or SS’s, but if the names blurred out or sum then youre
getting hammed buddy.

4) 4. HOW TO PUNCH CCS

🤦‍♂️
THE BIGGEST MISCONCEPTION ABOUT CARDING ONLINE IS THE
BINS !!

- For successfully punching a site, you don't wanna worry about the
bins TOO much. You want to MAKE YOURSELF SEEM LIKE THE
CARDHOLDER as much as possible. This includes:
- Buying a residential SOCKS5 proxy within 35 KM of cardholder’s
ZIP code
- Making a outlook email with cardholders name
- MAKE SURE you use talkatone or textnow phone number or
something that has the SAME AREA CODE as cardholder.
- THIS STEP IS CRUCIAL!! When putting in the billing address, put
in the cardholder’s phone number. I don’t know why, but this deadass

🚨
works sometimes. Remember, you're trying to seem like the cardholder.
- LASTLY! THIS STEP IS SOMETHING THAT I HAVEN'T SEEN
ANY VENDORS TALK ABOUT; YOU MUST BUY CC's THAT ARE
IN-STATE OR IN-PROVINCE. Most sites will notice that “Hmm, this
person is trying to buy a product with a CC that has a billing address on
the other side of the country compared to the shipping address.” And
then they cancel the order since it seems fraudulent. If the CC’s billing
 🤣
info is in the same city as the shipping address, there is literally no way it
won’t hit.

- AFTER A SUCCESSFUL HIT WITH A CC/AFTER YOU'RE DONE

HITTING A CC, You MUST use a different proxy, browser, and reset
MAC Address. This is because some sites use your browser fingerprint
to identify you, even if you clear all cookies etc.
- BEFORE YOU EVEN START YOUR CARDING SESSION ON A
FRESH NEW BROWSER, GO TO THESE TWO SITES:
- www.scamalytics.com
- www.ipfighter.com
- IF YOUR FRAUD SCORE ON SCAMALYTICS IS OVER 20,
YOU'LL NEED A NEW PROXY.
- IF YOU'RE BLACKLISTED ON MORE THAN 2 SITES ON IP
FIGHTER, YOU’LL NEED A NEW PROXY.

- The most IDEAL scenario is when you have less than 20 fraud
score, and you either have 0 blacklists or 1 blacklist.
- When carding, BINs matter 30% of the time.
- You will want to first learn how to properly punch before
you worry about what BINs to use. Now, for the BINs, I
suggest these:

- 483313 (NON-VBV)
- 434769 (NON-VBV)
- 4411037 (NON-VBV)

👀👀)
- 431307 (NON-VBV)
- 452088 (AUTO-VBV, VISA INFINITE
 - THE REASON WHY YOU WANT NON-VBV BINS IS
BECAUSE:
- When purchasing on sites, it won’t open a screen from
VISA that says “For extra security, we’re sending a OTP
to cardholder phone #”, etc.
- Easier to hit due to less security.

- NOW, LEMME PYO AUTO-VBV. These cards have these

properties:
- VBV is present in these cards, but is only triggered if your
purchase seems fraudulent. To avoid this, I suggest you
follow the steps for punching a CC listed up above, so
you seem like the Card Holder. If you don’t seem
fraudulent, VBV won’t be triggered.
- Even though it has more protection than Non-VBV cards,
these cards have WAY higher limits. Most Non-VBV cards
are debits, or credit classics. Whereas a lot of Auto-VBV
cards can be up to Platinum or Signature VISA/World
Elite Mastercards. This means, if you pull everything off
correctly, you can punch WAY more from sites, etc.
- NOW THAT YOU GUYS KNOW HOW TO PUNCH WITH CCS,
I’LL TEACH YOU WHERE/HOW TO BUY OR OBTAIN CCs.

5) 5. 2 Free CC sites
- https://SHARKSHOP.VC
- https://bclub.cm

- BOTH THESE SITES SELL GOOD CC’s, SOME ARE

🚨 ✅
OVERPRICED, SOME HAVE DEAD CCS, BUY AT UR OWN
CAUTION . BOTH ARE 100% LEGIT THOUGH .

- ANOTHER WAY TO OBTAIN CC’s IS THRU SPAMMING.

- I’m not going to go all in-depth as to what spamming is, but
basically it's how you can get your own ccs for free. You make a
scam website, SMTP bulk sends to elderly people’s emails,
they put their CC info into the site, you receive hits via Telegram
Bot.
- EXAMPLE:
REMEMBER! HAPPY CARDING EVERYONE WHO READ
ALL OF THIS TO THE VERY END. MY ONLY TELEGRAM IS:
t.me/smokepxrpp

GLOOKS ✅✅