Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/imkkingshuk/stealthnosql
StealthNoSQL : The Ultimate NoSQL Injection Tool - Unleash the power of advanced NoSQL injection techniques with this comprehensive command-line tool! Whether youβre pentesting MongoDB, CouchDB, or any other NoSQL database, StealthNoSQL has you covered. ππ»
https://github.com/imkkingshuk/stealthnosql
automated-nosql-testing couchdb-injection database-security ethical-hacking hacking-tools infosec injection-attacks mongodb-injection nosql nosql-exploits nosql-hacking-tool nosql-injection penetration-testing stealthnosql tor-integration vulnerability-scanner vulnerability-scanner-nosql web-application-security
Last synced: 29 days ago
JSON representation
StealthNoSQL : The Ultimate NoSQL Injection Tool - Unleash the power of advanced NoSQL injection techniques with this comprehensive command-line tool! Whether youβre pentesting MongoDB, CouchDB, or any other NoSQL database, StealthNoSQL has you covered. ππ»
- Host: GitHub
- URL: https://github.com/imkkingshuk/stealthnosql
- Owner: ImKKingshuk
- License: gpl-3.0
- Created: 2024-08-18T23:56:19.000Z (5 months ago)
- Default Branch: main
- Last Pushed: 2024-08-19T00:09:09.000Z (5 months ago)
- Last Synced: 2024-11-08T09:12:32.433Z (3 months ago)
- Topics: automated-nosql-testing, couchdb-injection, database-security, ethical-hacking, hacking-tools, infosec, injection-attacks, mongodb-injection, nosql, nosql-exploits, nosql-hacking-tool, nosql-injection, penetration-testing, stealthnosql, tor-integration, vulnerability-scanner, vulnerability-scanner-nosql, web-application-security
- Language: Shell
- Homepage:
- Size: 19.5 KB
- Stars: 0
- Watchers: 1
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
StealthNoSQL
v1.3.0
**StealthNoSQL : The Ultimate NoSQL Injection Tool** - Unleash the power of advanced NoSQL injection techniques with this comprehensive command-line tool! Whether youβre pentesting MongoDB, CouchDB, or any other NoSQL database, StealthNoSQL has you covered. ππ»
## What's New (v1.3.0)
- **Advanced Injection Detection**: Enhanced detection for a wide range of NoSQL injection vectors.
- **Payload Obfuscation**: Bypass security filters with automatic payload encoding and obfuscation.
- **Smart Enumeration**: Automatic database, collection, and document enumeration.
## Features
- π **NoSQL Injection Detection**: Detect and exploit NoSQL injection vulnerabilities across various databases like MongoDB and CouchDB.
- π οΈ **Payload Crafting and Obfuscation**: Automatically encode and obfuscate payloads to evade detection mechanisms.
- π **Smart Enumeration**: Enumerate databases, collections, and documents with ease, automatically identifying critical data.
- βοΈ **Multi-Threading**: Perform parallel operations to speed up the injection and enumeration process.
- π **Proxy and Tor Integration**: Full proxy support, including Tor integration for anonymous scanning.
- π **Real-Time Monitoring**: Monitor logs and injection attempts in real-time, providing immediate insights.
- π **Report Generation**: Generate detailed reports in multiple formats, perfect for both technical and non-technical audiences.
- π‘οΈ **Authentication and Session Management**: Support for various authentication mechanisms, including JWT and API keys.
- π οΈ **Custom Headers and Dynamic User-Agent**: Customize HTTP headers and rotate User-Agents to bypass security filters.
- 𧩠**Modular Architecture**: Easily extend functionality with plugins and additional payloads.
## Requirements
- macOS, Linux, Windows
- Bash-compatible environment
- cURL installed
- jq for JSON processing
- Proxy or Tor (optional, for anonymous scanning)
## How to Use
To use **StealthNoSQL : The Ultimate NoSQL Injection Tool**, follow these steps:
1. Ensure your environment meets the requirements listed above.
2. Clone the repository or download the script.
3. Run the following command in your terminal:
```bash
bash StealthNoSQL.sh
```
4. Follow the on-screen prompts to start detecting and exploiting NoSQL injection vulnerabilities.
## Disclaimer
πππ "The developer of **StealthNoSQL : The Ultimate NoSQL Injection Tool** is not responsible for any misuse or illegal activities conducted with this tool. Use at your own risk." πππ
### Note
**StealthNoSQL** should only be used for ethical hacking, pentesting, and educational purposes. Unauthorized use of this tool for illegal activities or without proper authorization is a violation of privacy and may be illegal. Always obtain proper authorization before using this tool and comply with all applicable laws and regulations.
## Acknowledgments
**StealthNoSQL : The Ultimate NoSQL Injection Tool** is developed for research and educational purposes. Please use this tool responsibly and in accordance with all applicable laws. The developer is not responsible for any misuse of this tool.
Feel free to contribute to the project by reporting issues or submitting pull requests!
### π Happy NoSQL Injection with StealthNoSQL! π