@OP I'm sorry, but -1 for the fact you are encouraging people to attack random websites. It's a cool dork, but attacking random websites accomplishes nothing (and is very foolish). Let me give an example of why...
Attacking random targets:
Pros - high success rate, allows you to feel out real vulnerabilities relatively easily
Cons - you have no idea what the admin is going to do, what the company's response policies are, if they regularly check their logs, you can trip an IDS and not know about it, you don't know if a 3rd party monitors the security of the server (or how often)
Attacking specific targets:
Pros - great for the experience/challenge, you will know what areas to avoid/focus on, sense of achievement, easy to cover your tracks if you make a mistake, very few surprises
Cons - very difficult, takes a lot of time
I'm not encouraging anyone to break the law with this post, but if you're going to then you really need to reassess who/what you are targeting. A lot of people make the same mistake you are, and end up going to jail for it.
