mongoaudit alternatives

Looking for an alternative tool to replace mongoaudit? During the review of mongoaudit we looked at other open source tools. Based on their category, tags, and text, these are the ones that have the best match.

Top 3

  1. DbDat (database assessment)
  2. jSQL Injection (automatic SQL database injection)
  3. NoSQLMap (database enumeration and exploitation)

These tools are ranked as the best alternatives to mongoaudit.

Alternatives (by score)

60

DbDat

Introduction

This tool performs an assessment by running actual queries against the database engine or reading the configuration file for particular settings. The tool helps with finding any issues and possible improvements.

Project details

DbDat is written in Python.

Strengths and weaknesses

  • + Screen output is colored
  • + The source code of this software is available
  • - Full name of author is unknown

Typical usage

  • Security assessment
  • System hardening

DbDat review

80

jSQL Injection

Introduction

jSQL Injection is a security tool to test web applications. It can be used to discover if an application is vulnerable to SQL injection attacks.

Project details

jSQL Injection is written in Java.

Strengths and weaknesses

  • + The source code of this software is available
  • - Full name of author is unknown

Typical usage

  • Database security

jSQL Injection review

60

NoSQLMap

Introduction

NoSQLMap is designed to audit database, as well to automate injection attacks. It can exploit configuration weaknesses in NoSQL databases and web applications using NoSQL.

Project details

NoSQLMap is written in Python.

Strengths and weaknesses

  • + More than 10 contributors
  • + More than 500 GitHub stars
  • + The source code of this software is available

    Typical usage

    • Database security
    • Penetration testing
    • Security assessment

    NoSQLMap review

    60

    MongoSanitizer (python-mongo-sanitizer)

    Introduction

    Typically this type of tool would be used as an additional defense layer to prevent injection attacks from reaching the database.

    Project details

    MongoSanitizer is written in Python.

    Strengths and weaknesses

    • + The source code of this software is available

      Typical usage

      • Application security
      • Database security

      MongoSanitizer review

      Some relevant tool missing as an alternative to mongoaudit? Please contact us with your suggestion.