https://github.com/vrikodar/dogo

dogo is a simple program to dump mongodb database all in one go
https://github.com/vrikodar/dogo

database-dump dump-database dump-mongodb mongo-db mongodb-database

Last synced: about 1 month ago
JSON representation

dogo is a simple program to dump mongodb database all in one go

• Host: GitHub
• URL: https://github.com/vrikodar/dogo
• Owner: vrikodar
• License: bsd-3-clause
• Created: 2021-06-29T07:45:23.000Z (almost 5 years ago)
• Default Branch: main
• Last Pushed: 2021-08-07T08:35:37.000Z (almost 5 years ago)
• Last Synced: 2025-05-21T14:22:03.572Z (about 1 year ago)
• Topics: database-dump, dump-database, dump-mongodb, mongo-db, mongodb-database
• Language: Python
• Homepage:
• Size: 151 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# dogo

![](https://github.com/SxNade/dogo/blob/main/dogo.jpg)

dogo is a simple  program to dump mongodb database all in one go

# what does dogo do

By default all the mongodb instances are not protected by any password with such instances open to the internet attackers can dump the database to steal sensitive information and might possbily even gain unauthorized access to the infrastructure.

**mongo-db instances can often reveal some critical information such as target-OS target-arch and even what programs are installed, This can save time spent in fingerprinting and help us craft more precise attacks**

# Running and Installing dogo

*dogo runs on python3 so python3 should be installed on your system Below is the List of libraries you may need to install using pip3*

        $ pip3 install pymongo

        $ pip3 install termcolor

        

*once done with this you can clone the repository and run dogo*

        $ git clone https://github.com/SxNade/dogo

        $ cd dogo

        $ chmod +x dogo

        

        $ ./dogo  

![run](https://github.com/SxNade/SxNade.github.io/blob/main/dogo(1).gif)

# Searching mongo-db instances

**you can search for possibly open mongodb instances present all over the internet on services like shodan**

*This is a simple Shodan Query for mongodb on shodan: https://www.shodan.io/search?query=mongodb*

*Not all instances of mongodb you will find are open, some instances might be password protected , in that case we can try bruteforcing the password , there is a nmap NSE script for this purpose:: https://nmap.org/nsedoc/scripts/mongodb-brute.html*

**very soon a python script to bruteforce mongodb will also be released as part of this repo**

![shodan](https://github.com/SxNade/dogo/blob/main/mongodb.png)