This is a tutorial fully written by me with personal experience involved.
I myself have been involved in a lot of things that don't need to be mentioned but here we go.
The best setup for your overall carding is a virtual machine (use sun virtualbox). You should install all the things you feel are required and then install deepfreeze to freeze your drive. I personally have also installed truecrypt on my virtual machine and encrypted one of my drives on there. It's really a good setup if you ask me, since every reboot all your cookies, and anything that can leave a trace when you try to card the same website will be erased.
When carding you def. want to have a proxy that is located in the same state as the CC holder's address as most websites cross-check the IP that you're visiting with the IP's assigned to that state and the ISP. It's also best to use highly anonymous proxys, and fresh ones as well. You should never use public proxies that are outdated, as most of them are probably already blacklisted at major sites therefore you will not be able to card anything. You can never be too safe, just because you're carding something small doesn't mean you can just not care about security.
I use SMAC to change my MAC ID every time I card something on my Sun Virtualbox, along with a fresh socks5 proxy straight from my provider that matches the card holder's state. I would not recommend using Hotspot Shield, CyberGhost, or any other free VPN's out there. Same goes with proxies. If the proxy is public, then it's not something you want to be using when carding. I personally have a few proxies and vpn's setup on a few rooted servers that I have access to.
It's never safe to use any part of your real credentials when carding anything. You def. should never ship anything to your house that you carded, that's probably the most stupid thing you might do. Nothing might happen the first time, but the more you get used to shipping to your house, the less you will be secure, and the greater the chances of you getting caught up in shit that you wanted to avoid in the first place.
As much as I love my hard drives, I actually have a really strong magnet near by, and I would rather destroy all that than go to jail. You might not have to do this until you get into more major shit, after all everyone has to start somewhere.
The more little things you card, the more experience you will have when getting into carding major shit. It's not recommended for anyone new to carding to just order 10 laptops to their house (you must be stupid to do this). I have had a few of my friends get swatted for CC fraud, and that was some of the things that have caused me to increase my security and encrypt my important drives or any type of evidence to prevent myself from getting swatted.
Overall, carding is a good feeling even though it's like stealing someone's money. There is nothing to worry about though, almost all of the card holders will get their money back and the merchant will be left pissed because he got fucked over, that is why you need to secure yourself, your connection, and anything that might link you to being involved in carding something.
Downloads:
SMAC Cracked
Sun VirtualBox
DeepFreeze Enterprise
TrueCrypt
(just google them coz i dont want to put links in the forum)
I'll add more to this later.
Thanks
