This course walks users through the basics of how common misconfigurations in MongoDB can lead to serious issues. It provides hands-on practice using the VM provided by the course author. As the title says, this course is intended for absolute beginners. Even if you never used MongoDB, you can still enroll in the course. It starts with the basics of MongoDB and how to use it. Slowly it gears towards the security concepts such as testing and exploiting misconfigurations in MongoDB instances, pentesting web applications that run MongoDB as their back-end, using automated tools available for testing and attacking MongoDB.
Below is the high level table of contents:
Module 1: Introduction
Module 2: Lab Walk-through
Module 3: Basics of Mongo shell
Module 4: Vulnerability Assessments
Module 5: Web based attacks
Module 6: Automated Assessments