There is no such thing as "status as a security researcher". If you want to research security, I suggest you do it in your lab or with consenting adults.
It's a whole lot safer doing attacks on a device you own (or downloaded software you run on your own infrastructure) -- live pentests on someone else's network infrastructure and hosted applications is pretty similar to a "real" attack.
