Nosql-Exploitation-Framework – A FrameWork For NoSQL Scanning and Exploitation Framework

A FrameWork For NoSQL Scanning, Enumeration and Exploitation.

NoSQL Databases are schema less databases. They were invented to store data easily and flexibly.

NoSQL Databases have gained popularity and its security has always been under the scanner.

The NoSQL Exploitation Framework focuses scanning,enumerating and exploiting these databases.

The tool has support for over 5 databases MongoDB,CouchDB,Redis,H-Base and Cassandra.

Added Features:

  • First Ever Tool With Added Support For Mongo,Couch,Redis,H-Base,Cassandra
  • Support For NoSQL WebAPPS
  • Added payload list for JS Injection,Web application Enumeration.
  • Scan Support for Mongo,CouchDB and Redis
  • Dictionary Attack Support for Mongo,Cocuh and Redis
  • Enumeration Module added for the DB’s,retrieves data in db’s @ one shot.
  • Currently Discover’s Web Interface for Mongo
  • Shodan Query Feature
  • MultiThreaded IP List Scanner
  • Dump and Copy Database features Added for CouchDB
  • Sniff for Mongo,Couch and Redis


  • Run chmod+x
  • ./
  • -h (For Help Options)

Sample Usage

  • -ip localhost -scan
  • -ip localhost -dict mongo -file b.txt
  • -ip localhost -enum couch
  • -ip localhost -enum redis
  • -ip localhost -clone couch
  • -ip localhost -webapp “web_app_link”

Trả lời

Mời bạn điền thông tin vào ô dưới đây hoặc kích vào một biểu tượng để đăng nhập: Logo

Bạn đang bình luận bằng tài khoản Đăng xuất /  Thay đổi )

Google photo

Bạn đang bình luận bằng tài khoản Google Đăng xuất /  Thay đổi )

Twitter picture

Bạn đang bình luận bằng tài khoản Twitter Đăng xuất /  Thay đổi )

Facebook photo

Bạn đang bình luận bằng tài khoản Facebook Đăng xuất /  Thay đổi )

Connecting to %s