Skip to content

Latest commit

 

History

History
61 lines (41 loc) · 3.33 KB

README.md

File metadata and controls

61 lines (41 loc) · 3.33 KB

StealthNoSQL

v1.3.0

StealthNoSQL : The Ultimate NoSQL Injection Tool - Unleash the power of advanced NoSQL injection techniques with this comprehensive command-line tool! Whether you’re pentesting MongoDB, CouchDB, or any other NoSQL database, StealthNoSQL has you covered. 🚀💻

What's New (v1.3.0)

  • Advanced Injection Detection: Enhanced detection for a wide range of NoSQL injection vectors.
  • Payload Obfuscation: Bypass security filters with automatic payload encoding and obfuscation.
  • Smart Enumeration: Automatic database, collection, and document enumeration.

Features

  • 💉 NoSQL Injection Detection: Detect and exploit NoSQL injection vulnerabilities across various databases like MongoDB and CouchDB.
  • 🛠️ Payload Crafting and Obfuscation: Automatically encode and obfuscate payloads to evade detection mechanisms.
  • 📊 Smart Enumeration: Enumerate databases, collections, and documents with ease, automatically identifying critical data.
  • ⚙️ Multi-Threading: Perform parallel operations to speed up the injection and enumeration process.
  • 🌐 Proxy and Tor Integration: Full proxy support, including Tor integration for anonymous scanning.
  • 🔍 Real-Time Monitoring: Monitor logs and injection attempts in real-time, providing immediate insights.
  • 📄 Report Generation: Generate detailed reports in multiple formats, perfect for both technical and non-technical audiences.
  • 🛡️ Authentication and Session Management: Support for various authentication mechanisms, including JWT and API keys.
  • 🛠️ Custom Headers and Dynamic User-Agent: Customize HTTP headers and rotate User-Agents to bypass security filters.
  • 🧩 Modular Architecture: Easily extend functionality with plugins and additional payloads.

Requirements

  • macOS, Linux, Windows
  • Bash-compatible environment
  • cURL installed
  • jq for JSON processing
  • Proxy or Tor (optional, for anonymous scanning)

How to Use

To use StealthNoSQL : The Ultimate NoSQL Injection Tool, follow these steps:

  1. Ensure your environment meets the requirements listed above.

  2. Clone the repository or download the script.

  3. Run the following command in your terminal:

    bash StealthNoSQL.sh
  4. Follow the on-screen prompts to start detecting and exploiting NoSQL injection vulnerabilities.

Disclaimer

🌟🌟🌟 "The developer of StealthNoSQL : The Ultimate NoSQL Injection Tool is not responsible for any misuse or illegal activities conducted with this tool. Use at your own risk." 🌟🌟🌟

Note

StealthNoSQL should only be used for ethical hacking, pentesting, and educational purposes. Unauthorized use of this tool for illegal activities or without proper authorization is a violation of privacy and may be illegal. Always obtain proper authorization before using this tool and comply with all applicable laws and regulations.

Acknowledgments

StealthNoSQL : The Ultimate NoSQL Injection Tool is developed for research and educational purposes. Please use this tool responsibly and in accordance with all applicable laws. The developer is not responsible for any misuse of this tool.

Feel free to contribute to the project by reporting issues or submitting pull requests!

😊 Happy NoSQL Injection with StealthNoSQL! 😊