LSE toolsLSE toolsNoSQLMap (327)NoSQLMap (327)

Tool and Usage

NoSQLMap is a security tool to perform database enumeration and determine available exploits. It can audit or attack a given database instance.

Screenshot for NoSQLMap tool review

Why this tool?

NoSQLMap is designed to audit database, as well to automate injection attacks. It can exploit configuration weaknesses in NoSQL databases and web applications using NoSQL.

Background information

In 2017, Michael Skelton took over ownership of the project from Russell Butturini.

NoSQLMap is named after the popular sqlmap tool, based on the work of Bernardo Damele and Miroslav's Stampar. The concepts are based on Ming Chow's presentation at Defcon 21 (Abusing NoSQL Databases).

Usage and audience

This tool is categorized as a database security tool.

NoSQLMap is commonly used for database security, penetration testing, or security assessment.

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:


  • + More than 10 contributors
  • + More than 500 GitHub stars
  • + The source code of this software is available

Author and Maintainers

NoSQLMap was created by Russell Butturini.


Supported operating systems

NoSQLMap is known to work on Linux.

NoSQLMap alternatives

All alternatives for NoSQLMap

Found an improvement? Become an influencer and submit an update.
Project details
Latest release0.5 [2016-01-11]

Project health

This score is calculated by different factors, like project age, last release date, etc.


GitHub iconGitHub project

Related terms