Comments (6)
Duly noted. I'm working on some other projects right now, but I'll add this in the next release.
from nosqlmap.
@tcstool HI! it is possible to pentest a JSON Based web app with this tool. this video only demonstrate a nosql Injection on url parameter https://www.youtube.com/watch?v=XshPcuX9N2I , how about a JSON based app??
from nosqlmap.
I would say it depends on what you mean by a "JSON based app". If you are referring to JSON being submitted from the client side back to the server, then no it cannot do that but it's something I'd like to get to someday. However if you are referring to the server building JSON from more "traditional" submitted input (such as the example here: http://blog.websecurify.com/2014/08/hacking-nodejs-and-mongodb.html) then it will perform these kinds of tests.
from nosqlmap.
hmmm. i am referring to the first one, i hope it will be added on the future. thank you :)
from nosqlmap.
I'm curious why this is closed. Is the feature to send headers in there? If so, I can't find it. In my case, I'd just like to send a session ID cookie. I think that's a pretty common case. As of now, I can only test non-authenticated stuff, which isn't much and certainly isn't the bulk of important stuff for my application.
I see now. I just entered #36
from nosqlmap.
As you mentioned, this was referenced in #36 as it was merged in #37
from nosqlmap.
Related Issues (20)
- Installation hangs on "Reading https://pypi.org/simple/requests/" HOT 3
- Change shebang to `#!/usr/bin/env python2` HOT 2
- What is NoSql and what is an application of NoSql in the business world?
- What is NoSql
- [HELP] how to set POST parameter HOT 1
- Error running with Docker & Docker Compose HOT 1
- ─[root@rohan-nitroan51554]─[~/Desktop/nosql/NoSQLMap] └──╼ #python NoSQLMap python: can't open file '/root/Desktop/nosql/NoSQLMap/NoSQLMap': [Errno 2] No such file or directory HOT 1
- Error when executing NoSQL DB Access Attacks HOT 1
- import error HOT 4
- Traceback (most recent call last): File "/usr/local/bin/NoSQLMap", line 11, in <module> load_entry_point('NoSQLMap==0.7', 'console_scripts', 'NoSQLMap')() TypeError: main() takes exactly 1 argument (0 given) HOT 1
- i get this error during installation Traceback (most recent call last): File "setup.py", line 1, in <module> from setuptools import find_packages, setup ImportError: No module named setuptools HOT 1
- Problem when i try to install in kali HOT 14
- FYI: Quick fix for DH_KEY_TOO_SMALL HOT 1
- NoSQL DB Access Attacks Error HOT 1
- install issues HOT 2
- Docker image build completes with errors but does not run due to these errors HOT 2
- . HOT 1
- DB access attack wasn't working HOT 1
- bug in your code HOT 5
- Should use stable Certifi version in order to build tool, since the tool is using Python 2.7.x HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from nosqlmap.