MongoBuster : Hunt Open MongoDB Instances

MongoBuster is a hunt open mongoDB instances. Following are the features that are associated with this.

  • Worlds fastest and most efficient scanner ( Uses Masscan ).
  • Scans entire internet by default, So fire the tool and chill.
  • Hyper efficient – Uses Go-routines which are even lighter than threads.

Also Read – Monitor Smartphone usage with Cocospy Keylogger

Pre-Requisites

  • Go language ( sudo apt install golang )
  • Masscan ( sudo apt install masscan )
  • Tested on Ubuntu & Kali linux

How to install and run

git clone https://github.com/yashpl/mongoBuster.git
cd mongoBuster
go build mongobuster.go utils.go
sudo ./mongobuster

Note: Run it with sudo as Masscan requires sudo access.

Flags

FlagDescription
–max-rate= (int)Defines maximum rate at which packets are generated and sent. Default is 100.
–out-file= (string)Name of file to which vulnerable IPs will be exported.
-vDisplay error msgs from non-vulnerable servers

NOTE

Using ridiculous values for max-rate flag like 10000+ will most likely bring down your own network infrastructure.

Recommended value is to start with --max-rate 500 for consumer Gigabit routers.

R K

Recent Posts

Website OSINT: Tools and Techniques for Reconnaissance

Introduction When it comes to cybersecurity and ethical hacking, one of the most effective ways…

7 minutes ago

Top OSINT Tools to Find Emails, Usernames and Passwords

Introduction In the world of cybersecurity, knowledge is power. One of the most powerful skillsets…

14 hours ago

Google Dorking in Cybersecurity: A Complete Guide

Introduction In the vast ocean of the internet, the most powerful tool you already have…

1 day ago

Pystinger : Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…

2 weeks ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

2 weeks ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

2 weeks ago