nosqli

NoSQL scanner

A command-line tool to detect and exploit NoSQL injection vulnerabilities in MongoDB databases.

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

GitHub
355 stars
6 watching
39 forks
Language: Go
last commit: about 3 years ago
Linked from 1 awesome list

mongodbnosqlnosql-injectionsecuritysecurity-automationsecurity-scannersecurity-toolssqlinjection

Screenshot of Charlie-belmer/nosqli website

nullsweep.com

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
matrix/burp-nosqliscanner A tool to detect NoSQL injection vulnerabilities in web applications using a Java-based plugin for Burp Suite. 23
archimag/mongo-cl-driver A Common Lisp driver for interacting with a NoSQL document-oriented database 35
codingo/nosqlmap Automated tool for discovering and exploiting vulnerabilities in NoSQL databases 2,921
scylladb/gocqlx A toolset for building and managing data access to NoSQL databases 929
zt2/sqli-hunter A tool that automates the process of detecting and exploiting SQL injection vulnerabilities in web applications. 423
symisc/unqlite An embedded NoSQL database engine with features like transactionality, zero configuration, and pluggable storage engines. 2,113
m0nad/hellraiser Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API 562
fons/cl-mongo An interface to interact with a document-oriented NoSQL database 143
rhinosecuritylabs/sleuthql A Python script to identify and extract potential SQL injection points from Burp Proxy History files. 465
ghostlulzhacks/waybacksqliscanner Scans URLs from the wayback machine and tests GET parameters for SQL injection vulnerabilities. 185
nyxgeek/ntlmscan A tool to scan for NTLM directories on Windows servers and extract internal domain information 346
nicholasaleks/crackql A utility for automatically generating and sending multiple payload variations to test GraphQL APIs' strength against common attacks such as brute-forcing, password spraying, and fuzzing. 316
r0075h3ll/oralyzer A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. 753
keramas/mssqli-duet A tool designed to extract domain users from Active Directory environments by exploiting SQL injection vulnerabilities in MSSQL databases. 92
shenril/sitadel A tool for identifying vulnerabilities in web applications using automated attacks and fingerprinting 554