During a security assessment for a MongoDB installation, it is possible to extract build information such as system details and server status, including the number of connections available, uptime, and memory usage.
This recipe describes how to retrieve server information from a MongoDB installation by using Nmap.
Open your terminal and enter the following Nmap command:
# nmap -p 27017 --script mongodb-info <target>
The MongoDB server information will be included in the script output section:
PORT STATE SERVICE 27017/tcp open mongodb | mongodb-info: | MongoDB Build info | ok = 1 | bits = 64 | version = 1.2.2 | gitVersion = nogitversion | sysInfo = Linux crested 2.6.24-27-server #1 SMP Fri Mar 12 01:23:09 UTC 2010 x86_64 BOOST_LIB_VERSION=1_40 | Server status | mem | resident = 4 | virtual = 171 | supported = true | mapped = 0 | ok = 1 | globalLock | ratio = 3.3333098126169e-05 | lockTime = 28046 | totalTime = 841385937 |_ uptime = 842
The argument -p 27017 --script mongodb-info
makes Nmap initiate the NSE script mongodb-info
if the service is found running on port 27017.
The script mongodb-info
was written by Martin Holst Swende. It returns server information including status and build details for a MongoDB database.
MongoDB documentation is located at http://www.mongodb.org/display/DOCS/Home.
This script depends on the library mongodb
, and its documentation can be found at http://nmap.org/nsedoc/lib/mongodb.html.
3.138.113.188