Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Hands-On Bug Hunting for Penetration Testers A practical guide to help ethical hackers discover web application security flaws

Product type Paperback

Published in Sep 2018

Publisher Packt

ISBN-13 9781789344202

Length 250 pages

Edition 1st Edition

Languages

Python

Tools

Kali Linux

Concepts

Application Security

Authors (2):

Himanshu Sharma

Joe Marshall

View More author details

Table of Contents (16) Chapters

Preface

1. Joining the Hunt

2. Choosing Your Hunting Ground FREE CHAPTER

3. Preparing for an Engagement

4. Unsanitized Data – An XSS Case Study

5. SQL, Code Injection, and Scanners

6. CSRF and Insecure Session Authentication

7. Detecting XML External Entities

8. Access Control and Security Through Obscurity

9. Framework and Application-Specific Vulnerabilities

10. Formatting Your Report

11. Other Tools

12. Other (Out of Scope) Vulnerabilities

13. Going Further

14. Assessment

15. Other Books You May Enjoy

Leave a review - let other readers know what you think

NoSQL Injection – Injecting Malformed MongoDB Queries

According to OWASP, there are over 150 varieties of NoSQL database available for use in web applications. We're going to take a look specifically at MongoDB, the most widely-used, open source, unstructured NoSQL database, to illustrate how injection can work across a variety of toolsets.

The MongoDB API usually expects BSON data (binary JSON) constructed using a secure BSON query construction tool. But in certain cases, MongoDB can also accept unserialized JSON and JavaScript expressions—like in the case of the $where operator.
It's usually used—like the SQL WHERE operator—as a filter:

db.myCollection.find( { $where: "this.foo == this.baz" } );

You can get more complicated with the expression, of course. Ultimately, if the data is not properly sanitized, the MongoDB $where clause...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at £16.99/month. Cancel anytime

Authors (2)

Joe Marshall

Joseph Marshall is a web application developer and freelance writer with credits from The Atlantic, Kirkus Review, and the SXSW film blog. He also enjoys moonlighting as a freelance security researcher, working with third-party vulnerability marketplaces such as Bugcrowd and HackerOne. His background and education include expertise in development, nonfiction writing, linguistics, and instruction/teaching. He lives in Austin, TX.

See other products by Joe Marshall

Himanshu Sharma

Himanshu Sharma has been in the field of security since 2009 and has been listed in the halls of fame of Apple, Google, Microsoft, Facebook, and many more. He has helped celebrities such as Harbhajan Singh in recovering their hacked accounts. He has been a speaker at various conferences worldwide such as BotConf, CONFidence, Hack In the Box, SINCON, Sec-T, Hackcon, and numerous others. Currently, he is the co-founder of BugsBounty. He also authored multiple bestsellers titled "Kali Linux - An Ethical Hacker's Cookbook", " Hands-On Red Team Tactics" and "Hands-On Web Pentesting with Metasploit."

See other products by Himanshu Sharma