nosql-injection-testing
CommunityDetect NoSQL injection flaws.
Authordungsnowaxe
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the critical security gap of NoSQL injection vulnerabilities, which can lead to authentication bypass, data exfiltration, and unauthorized code execution in NoSQL databases.
Core Features & Use Cases
- Comprehensive Database Support: Tests for vulnerabilities across MongoDB, Cassandra, CouchDB, Redis, Elasticsearch, and DynamoDB.
- Diverse Attack Vectors: Covers operator injection, JavaScript injection, query manipulation, and aggregation pipeline injection.
- Use Case: When auditing a web application that uses MongoDB for user authentication, this Skill can be used to test if an attacker can bypass login by injecting operators into the username or password fields.
Quick Start
Use the nosql-injection-testing skill to scan the /api/users endpoint for NoSQL injection vulnerabilities.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: nosql-injection-testing Download link: https://github.com/dungsnowaxe/prometheus-red-team-bot/archive/main.zip#nosql-injection-testing Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.