SlideShare a Scribd company logo

Enfilade: Tool to Detect Infections in MongoDB Instances

Aditya K Sood, profile picture
Aditya K Sood

Enfilade is a tool designed to detect infections in MongoDB instances, developed by a team at F5 and aimed at enhancing internet security. It supports modules for information gathering, authentication checks, admin privilege assessment, and detecting potential infections like ransomware and botnets. The tool will continue to evolve with additional modules planned for future releases.

Technology
1 of 17
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
Enfilade: A Tool to Detect Infections in MongoDB Instances
About Tool Disclaimer https://github.com/adityaks/strafer Tool presented in this talk is for sharing research with security community to strengthen the intelligence efforts for enhancing the security of critical services on the internet. Note: Due to Covid-19 Delta variant challenge and travel restrictions, we were not able to present in-person at the BlackHat USA Arsenal 2021.
About Tool Development This is the first release of the tool and we expect to add more modules in the nearby future. This work is done in collaboration with the Research Team at the Office of the CTO, F5 (https://www.f5.com/company/octo)
BlackHat Arsenal USA 2021
About Tool Enfilade Project Team https://github.com/adityaks/strafer • Dr. Aditya K Sood o Security Practitioner and Researcher o Working in the security field for more than 13 years o Regular speaker at industry leading security conferences o Author of “Targeted Cyber Attacks” and “Empirical Cloud Security” Books o W: https://www.adityaksood.com o T: @adityaksood o LinkedIn: https://www.linkedin.com/adityaks • Rohit Bansal o Principal Researcher, SecNiche Security Labs o https://secniche.org/ MongoDB Threats Research. And Intelligence Collection MongoDB Threats Research and Tool Development
About Tool Mongodb threats and attacks landscape
About Tool • Enfilade: A tool to detect potential infections in MongoDB instances • In this version of the tool, the following modules are supported: o MongoDB instances information gathering and reconnaissance (inline) o MongoDB instances exposure on the Internet (authentication checks) o MongoDB instances admin privileges assessment o Detecting potential ransomware infections in the MongoDB instances o Basic o Intrusive o Detecting potential botnet infections such as meow botnet o Basic o Intrusive Introducing Enfilade
About Tool Introducing Enfilade
About Tool Detecting unauthenticated mongodb instances
About Tool Privilege abuse: admin access (user creation)
About Tool Detecting Ransomware Infections (Basic)
About Tool Detecting Ransomware Infections (Intrusive)
About Tool Detecting MEOW Botnet Infections (Basic)
About Tool Detecting MEOW Botnet Infections (Intrusive)
About Tool Enfilade Tool: Demo
About Tool Enfilade Tool: Download https://github.com/adityaks/enfilade
About Tool Questions and Queries

More Related Content

PDF
Understanding ransomware
Prathan Phongthiproek
 
PDF
Detecting Ransomware/Bot Infections in Elasticsearch
Aditya K Sood
 
PDF
Cracking the mobile application code
Sreenarayan A
 
PPTX
Malware: To The Realm of Malicious Code (Training)
Satria Ady Pradana
 
PPTX
Down The Rabbit Hole, From Networker to Security Professional
Satria Ady Pradana
 
PPT
Brucon presentation
wremes
 
PDF
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
OWASP Delhi
 
PPTX
Berkarir di Cyber Security
Satria Ady Pradana
 
Understanding ransomware
Prathan Phongthiproek
 
Detecting Ransomware/Bot Infections in Elasticsearch
Aditya K Sood
 
Cracking the mobile application code
Sreenarayan A
 
Malware: To The Realm of Malicious Code (Training)
Satria Ady Pradana
 
Down The Rabbit Hole, From Networker to Security Professional
Satria Ady Pradana
 
Brucon presentation
wremes
 
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
OWASP Delhi
 
Berkarir di Cyber Security
Satria Ady Pradana
 

What's hot (20)

PDF
N. Oskina, G. Asproni - Be your own Threatbuster! - Codemotion Milan 2018
Codemotion
 
PPTX
Malware Analysis
Ramin Farajpour Cami
 
PPTX
Reduce the Risk of Open Source Security Vulnerabilities
Protecode
 
PPTX
How to assign a CVE to yourself?
Ramin Farajpour Cami
 
PPTX
Path of Cyber Security
Satria Ady Pradana
 
PPTX
The difference between Penetration Testing and Red Team
Nimrod Levy
 
PPTX
DLL Preloading Attack
securityxploded
 
PPTX
(Training) Malware - To the Realm of Malicious Code
Satria Ady Pradana
 
PPTX
Cyber Threat Simulation Training
Bryan Len
 
PPTX
Invincea fake british airways ticket spear-phish malware 03-21-2014
Invincea, Inc.
 
PPTX
Rise of software supply chain attack
Yadnyawalkya Tale
 
PPTX
Tech ThrowDown: Invincea FreeSpace vs EMET 5.0
Invincea, Inc.
 
PPTX
Jerod Brennen - What You Need to Know About OSINT
centralohioissa
 
PDF
Weaponizing OSINT – Hacker Halted 2019 – Michael James
EC-Council
 
PPTX
Bug bounty
Ramin Farajpour Cami
 
PPTX
Detection and Analysis of 0-Day Threats
Invincea, Inc.
 
PPTX
Android malware analysis
Jason Ross
 
PPTX
Continuous security testing - sharing responsibility
VodqaBLR
 
PPTX
Mmw mac malware-mac
Cyphort
 
PPTX
Hacking Mobile Apps
Sophos Benelux
 
N. Oskina, G. Asproni - Be your own Threatbuster! - Codemotion Milan 2018
Codemotion
 
Malware Analysis
Ramin Farajpour Cami
 
Reduce the Risk of Open Source Security Vulnerabilities
Protecode
 
How to assign a CVE to yourself?
Ramin Farajpour Cami
 
Path of Cyber Security
Satria Ady Pradana
 
The difference between Penetration Testing and Red Team
Nimrod Levy
 
DLL Preloading Attack
securityxploded
 
(Training) Malware - To the Realm of Malicious Code
Satria Ady Pradana
 
Cyber Threat Simulation Training
Bryan Len
 
Invincea fake british airways ticket spear-phish malware 03-21-2014
Invincea, Inc.
 
Rise of software supply chain attack
Yadnyawalkya Tale
 
Tech ThrowDown: Invincea FreeSpace vs EMET 5.0
Invincea, Inc.
 
Jerod Brennen - What You Need to Know About OSINT
centralohioissa
 
Weaponizing OSINT – Hacker Halted 2019 – Michael James
EC-Council
 
Bug bounty
Ramin Farajpour Cami
 
Detection and Analysis of 0-Day Threats
Invincea, Inc.
 
Android malware analysis
Jason Ross
 
Continuous security testing - sharing responsibility
VodqaBLR
 
Mmw mac malware-mac
Cyphort
 
Hacking Mobile Apps
Sophos Benelux
 
Ad

Similar to Enfilade: Tool to Detect Infections in MongoDB Instances (20)

PDF
HackInBo2k16 - Threat Intelligence and Malware Analysis
Antonio Parata
 
PPTX
Hacktoberfest'24 _ GDG on Campus BU.pptx
nilaygupta3003
 
PPTX
Open Source Insight: Who Owns Linux? TRITON Attack, App Security Testing, Fut...
Black Duck by Synopsys
 
PPTX
Intro to Malware Analysis
wremes
 
PPTX
Peerlyst Delhi NCR Chapter Meet
Abhinav Mishra
 
PPTX
Top 10 Mobile Hacking Tools – 2025 Edition
anishachhikara2122
 
PPTX
Getting started with android
Vandana Verma
 
PPTX
Reveal the Security Risks in the software Development Lifecycle Meetup 060320...
lior mazor
 
PDF
I haz you and pwn your maal whitepaper
Harsimran Walia
 
PDF
Getting started with Android pentesting
Minali Arora
 
PDF
So... you want to be a security consultant
abnmi
 
PPTX
Top 10 Software to Detect & Prevent Security Vulnerabilities from BlackHat US...
Mobodexter
 
PDF
Building Custom Android Malware BruCON 2013
Stephan Chenette
 
PDF
Bug Bounty Blueprint : A Beginner's Guide
Varun Mithran
 
PDF
Android Malware Detection Literature Review
Ahmed Sabbah
 
PDF
Exploring the Social Engineering Toolkit (Set) Using Backtrack 5R3
IJERA Editor
 
PPTX
[CB16] Security in the IoT World: Analyzing the Security of Mobile Apps for A...
CODE BLUE
 
PPTX
Software Security Assurance for DevOps - Hewlett Packard Enterprise + Black Duck
Black Duck by Synopsys
 
ODP
Barcamp: Open Source and Security
Joshua L. Davis
 
PDF
Android Secure Coding
JPCERT Coordination Center
 
HackInBo2k16 - Threat Intelligence and Malware Analysis
Antonio Parata
 
Hacktoberfest'24 _ GDG on Campus BU.pptx
nilaygupta3003
 
Open Source Insight: Who Owns Linux? TRITON Attack, App Security Testing, Fut...
Black Duck by Synopsys
 
Intro to Malware Analysis
wremes
 
Peerlyst Delhi NCR Chapter Meet
Abhinav Mishra
 
Top 10 Mobile Hacking Tools – 2025 Edition
anishachhikara2122
 
Getting started with android
Vandana Verma
 
Reveal the Security Risks in the software Development Lifecycle Meetup 060320...
lior mazor
 
I haz you and pwn your maal whitepaper
Harsimran Walia
 
Getting started with Android pentesting
Minali Arora
 
So... you want to be a security consultant
abnmi
 
Top 10 Software to Detect & Prevent Security Vulnerabilities from BlackHat US...
Mobodexter
 
Building Custom Android Malware BruCON 2013
Stephan Chenette
 
Bug Bounty Blueprint : A Beginner's Guide
Varun Mithran
 
Android Malware Detection Literature Review
Ahmed Sabbah
 
Exploring the Social Engineering Toolkit (Set) Using Backtrack 5R3
IJERA Editor
 
[CB16] Security in the IoT World: Analyzing the Security of Mobile Apps for A...
CODE BLUE
 
Software Security Assurance for DevOps - Hewlett Packard Enterprise + Black Duck
Black Duck by Synopsys
 
Barcamp: Open Source and Security
Joshua L. Davis
 
Android Secure Coding
JPCERT Coordination Center
 
Ad

More from Aditya K Sood (20)

PDF
Emerging Trends in Online Social Networks Malware
Aditya K Sood
 
PDF
BlackHat 2014 Briefings - Exploiting Fundamental Weaknesses in Botnet C&C Pan...
Aditya K Sood
 
PDF
BlackHat Arsenal 2014 - C-SCAD : Assessing Security Flaws in C-SCAD WebX Clie...
Aditya K Sood
 
PDF
Network Security : Book Review : Targeted Cyber Attacks : Aditya K Sood
Aditya K Sood
 
PDF
Abusing Glype Proxies - Attacks, Exploits and Defences
Aditya K Sood
 
PDF
NIframer - CPanel IFrame Injector (Bash based) - Virus Bulletin Magazine
Aditya K Sood
 
PDF
CrossTalk - The Art of Cyber Bank Robbery - Stealing your Money Through Insid...
Aditya K Sood
 
PDF
BlackHat USA 2013 Arsenal - Sparty : A FrontPage and SharePoint Security Audi...
Aditya K Sood
 
PDF
ToorCon 14 : Malandroid : The Crux of Android Infections
Aditya K Sood
 
PDF
DEF CON 20 - Botnets Die Hard - Owned and Operated
Aditya K Sood
 
PDF
Hackers on Planet Earth (HOPE - 2012) Advancements in Botnet Attacks
Aditya K Sood
 
PDF
NGR Bot Analysis Paper
Aditya K Sood
 
PDF
Virus bulletin 2011 Conference Paper - Browser Exploit Packs - Exploitation T...
Aditya K Sood
 
PDF
Commercial Cyber Crime - Social Networks Malware
Aditya K Sood
 
PDF
Virus Bulletin 2011 Conference - Browser Exploit Packs - Death by Bundled Exp...
Aditya K Sood
 
PDF
OWASP AppSec USA 2011 - Dismantling Web Malware
Aditya K Sood
 
PDF
Browser Malware Taxonomy
Aditya K Sood
 
PDF
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...
Aditya K Sood
 
PDF
PenTest Magazine Teaser - Mobile Hacking
Aditya K Sood
 
PDF
Dissecting Java Server Faces for Penetration Testing
Aditya K Sood
 
Emerging Trends in Online Social Networks Malware
Aditya K Sood
 
BlackHat 2014 Briefings - Exploiting Fundamental Weaknesses in Botnet C&C Pan...
Aditya K Sood
 
BlackHat Arsenal 2014 - C-SCAD : Assessing Security Flaws in C-SCAD WebX Clie...
Aditya K Sood
 
Network Security : Book Review : Targeted Cyber Attacks : Aditya K Sood
Aditya K Sood
 
Abusing Glype Proxies - Attacks, Exploits and Defences
Aditya K Sood
 
NIframer - CPanel IFrame Injector (Bash based) - Virus Bulletin Magazine
Aditya K Sood
 
CrossTalk - The Art of Cyber Bank Robbery - Stealing your Money Through Insid...
Aditya K Sood
 
BlackHat USA 2013 Arsenal - Sparty : A FrontPage and SharePoint Security Audi...
Aditya K Sood
 
ToorCon 14 : Malandroid : The Crux of Android Infections
Aditya K Sood
 
DEF CON 20 - Botnets Die Hard - Owned and Operated
Aditya K Sood
 
Hackers on Planet Earth (HOPE - 2012) Advancements in Botnet Attacks
Aditya K Sood
 
NGR Bot Analysis Paper
Aditya K Sood
 
Virus bulletin 2011 Conference Paper - Browser Exploit Packs - Exploitation T...
Aditya K Sood
 
Commercial Cyber Crime - Social Networks Malware
Aditya K Sood
 
Virus Bulletin 2011 Conference - Browser Exploit Packs - Death by Bundled Exp...
Aditya K Sood
 
OWASP AppSec USA 2011 - Dismantling Web Malware
Aditya K Sood
 
Browser Malware Taxonomy
Aditya K Sood
 
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...
Aditya K Sood
 
PenTest Magazine Teaser - Mobile Hacking
Aditya K Sood
 
Dissecting Java Server Faces for Penetration Testing
Aditya K Sood
 

Recently uploaded (20)

PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Approach and Philosophy of On baking technology
30anthuong17
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Encapsulation theory and applications.pdf
gurumoop
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Teaching material agriculture food technology
LiaRayya
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 

Enfilade: Tool to Detect Infections in MongoDB Instances