Tool and Usage
NoSQLMap is a security tool to perform database enumeration and determine available exploits. It can audit or attack a given database instance.
Why this tool?
NoSQLMap is designed to audit database, as well to automate injection attacks. It can exploit configuration weaknesses in NoSQL databases and web applications using NoSQL.
In 2017, Michael Skelton took over ownership of the project from Russell Butturini.
NoSQLMap is named after the popular sqlmap tool, based on the work of Bernardo Damele and Miroslav's Stampar. The concepts are based on Ming Chow's presentation at Defcon 21 (Abusing NoSQL Databases).
Usage and audience
This tool is categorized as a database security tool.
NoSQLMap is commonly used for database security, penetration testing, or security assessment.
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + More than 10 contributors
- + More than 500 GitHub stars
- + The source code of this software is available
Supported operating systems
NoSQLMap is known to work on Linux.