bmdyy / chat.js Public

Notifications You must be signed in to change notification settings
Fork 6
Star 25

Chat.JS - Vulnerable NodeJS Web-App to practice NoSQLi and Deserialization exploitation

25 stars 6 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 13 Commits
.docker		.docker
.exploit		.exploit
public/assets		public/assets
views		views
.gitignore		.gitignore
Dockerfile		Dockerfile
README.md		README.md
app.js		app.js
package-lock.json		package-lock.json
package.json		package.json

Repository files navigation

Chat.JS (Vulnerable NodeJS Web-App)

Metadata

William Moody
21.03.2021

Description

A small web app writen in Node.JS to practice NoSQLi and deserialization exploits.

Working exploits as well as explainations may be found in ./exploit

How to run locally

Clone this repo: git clone https://github.com/bmdyy/chat.js
Enter folder: cd chat.js
Run: docker build -t chatjs .
Run: docker run -t chatjs

To find the docker container's IP:

Run: docker inspect --format '{{ .NetworkSettings.IPAddress }}' $(docker ps -q)

To kill docker:

Run: docker ps and copy the id
Run: docker kill <id>

The app is running on http://IP:3000

About

Chat.JS - Vulnerable NodeJS Web-App to practice NoSQLi and Deserialization exploitation

oswe awae

Report repository

Releases

No releases published

Packages

No packages published

Languages