GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
Check your WAF before an attacker does
A Python Framework For NoSQL Scanning and Exploitation
NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
Using this script, you can enumerate Usernames and passwords of Nosql(mongodb) injecion vulnerable web applications.
Zen protects your Node app against attacks with one line of code. Get peace of mind— at runtime.
Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
NoSQL Injection Tool to bypass login forms & extract usernames/passwords using regular expressions.
PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registration, Intruder payload processing, passive/active scanning, and Collaborator interaction. You can also directly access Montoya API in your Python scripts.
Learn what is NoSQL injection and how to find them ?
StealthNoSQL : The Ultimate NoSQL Injection Tool - Unleash the power of advanced NoSQL injection techniques with this comprehensive command-line tool! Whether you’re pentesting MongoDB, CouchDB, or any other NoSQL database, StealthNoSQL has you covered. 🚀💻
Protects against common Node.js vulnerabilities in MEAN stack (MongoDB, Node.js).
MongoDB injection example
Slack integrations and App Development
BuggyBuy: Deliberately Vulnerable MERN Stack Web Application for Security Testing
Public/protected APIs for a movie database, built with Node.js, express and mongoDb.
Blind noSQL injection case study lab based on CVE-2018-3783
Manipulate a hidden API endpoint to change product pricing using HTTP method tampering and JSON injection, exposing a critical authorization flaw.
Add a description, image, and links to the nosql-injection topic page so that developers can more easily learn about it.
To associate your repository with the nosql-injection topic, visit your repo's landing page and select "manage topics."