SmashTheStack Wargaming Network
SmashTheStack is a wargaming network that provides a realistic and challenging environment for penetration testers to hone their skills. It offers a variety of scenarios, including web applications, networks, and IoT devices, allowing testers to practice their skills in a realistic and immersive environment. The network is designed to mimic real-world scenarios, making it an excellent tool for both beginners and experienced testers to improve their skills and stay up-to-date with the latest threats and vulnerabilities.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
An Android port of the Radamsa fuzzing tool compiled with Android NDK to support Android ABIs for security testing on mobile platforms.
Redboto is a collection of scripts for red team operations against the AWS API.
The Proxmark III is a versatile device for sniffing, reading, and cloning RFID tags with strong community support.
Ultimate Internet of Things/Industrial Control Systems reconnaissance tool powered by Shodan.
A powerful enumeration tool for discovering assets and subdomains.
A repository containing material for Android greybox fuzzing with AFL++ Frida mode
Rip web accessible (distributed) version control systems: SVN, GIT, Mercurial/hg, bzr, ...
A tool for interacting with the MSBuild API, enabling malicious activities and evading detection.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.