mongoaudit – a CLI tool for auditing MongoDB servers, detecting poor security settings and performing automated penetration testing.

(335 views)

mongoaudit is a CLI tool for auditing MongoDB servers, detecting poor security settings and performing automated penetration testing. Installing Clone this repository and run the setup: > git clone https://github.com/stampery/mongoaudit.git > cd mongoaudit > python setup.py install > mongoaudit Introduction It is widely known that there are quite a few holes in MongoDB's default configuration settings. This fact, combined with abundant lazy system administrators and developers, has led to what the press has called the MongoDB apocalypse. mongoaudit not only detects misconfigurations, known vulnerabilities and bugs but also gives you advice on how to fix them, recommends best practices and teaches you how to DevOp like a pro! This is how the actual app looks like: Yep, that's material design on a console line interface. (Powered by urwid) Supported tests MongoDB listens on a port different to default one Server only accepts connections from whitelisted hosts / networks MongoDB HTTP status interface is....

April 14, 2021
Subscribe
Notify of
guest
2 Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
neharika
6 months ago

Hello there we here a right website how to fix bluetooth audio devices connections in windows 10 now click here.

ana
ana
3 years ago

Oh, awesome stuff! This kind of things are necessary, as this suffered from a breach once right? So this is a necessary measure to take.
Hope this is really good!

Last edited 3 years ago by ana
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023
What certifications or qualifications do you hold?
Max. file size: 150 MB.
What level of experience should the ideal candidate have?
What certifications or qualifications are preferred?

Download Free eBook

Step 1 of 4

Name(Required)

We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.