daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #9320 from projectdiscovery/princechaddha-patch-3 

Added README.md for phishing templates
patch-1
Dhiyaneshwaran 2024-03-12 10:41:14 +05:30 committed by GitHub
parent 118324850e afc48a77e8
commit 336a2692ac
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 76 additions and 39 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
http/osint/README.md
View File

@ -1,47 +1,16 @@
## Description ## Description
OSINT templates are available for conducting user enumeration across many websites. By utilizing the flag to input a user, Nuclei can verify the user's existence across all websites listed in the templates and report any instances of success. Nuclei-templates provide a comprehensive suite of security checks, including OSINT templates in this directory for user-enumeration and phishing templates for the identification and analysis of phishing sites.
The **User Enumeration templates** are tailored for user enumeration across various websites, allowing Nuclei to verify user existence. They expect input such as username, email, or phone number through the `V`/`var` flag.
The **Phishing templates** are crafted for detecting and analyzing phishing sites. These templates are essential for OSINT analysts, threat researchers, and security professionals to uncover and study phishing campaigns.
## Usage ## Usage
The templates within the `osint` directory are **self-contained** and do NOT require URLs as input because the OSINT templates have pre-defined static URLs. Each template in this directory expects the user(name), email, or phone number or list of it to be supplied as input using the `V`/`var` flag through the Nuclei engine. These templates are specifically added to help OSINT analysts, threat researchers therefore, we have added them to the OSINT scan profile [here](https://github.com/projectdiscovery/nuclei-templates/blob/main/config/osint.yml).
Users can execute the OSINT scan configuration profile with the following command:
```bash
# Running OSINT templates against a single user to test
nuclei -tags osint -var user=elon
```
**OSINT** templates can be also ran against list of usernames as well.
```console ```console
$ cat user_names.txt nuclei -u <host> -config ~/nuclei-templates/config/osint.yml
user_1
user_2
user_3
user_4
user_5
``` ```
```bash
# Running OSINT templates against a list of users to test
nuclei -tags osint -var user=user_names.txt
```
### Categories
The OSINT templates are classified into categories such as `archived`, `art`, `blog`, `business`, `coding`, `dating`, `finance`, `gaming`, `health`, `hobby`, `images`, `misc`, `music`, `news`, `political`, `search`, `shopping`, `social`, `tech`, `video`, `porn`.
To execute OSINT templates within a particular category, you can apply a filter using the `tags` flag and set the prefix value to `osint-`.
```bash
# Running OSINT templates against the social category
nuclei -t osint/ -tags osint-social -var user=some-user
# Running OSINT templates against the multiple categories
nuclei -t osint/ -tags osint-social,osint-finance -var user=some-user
```
## Acknowledgment
These OSINT templates were inspired by the [WebBreacher/WhatsMyName](https://github.com/WebBreacher/WhatsMyName) repository.

21
http/osint/phishing/README.md Normal file
View File

@ -0,0 +1,21 @@
## Description
This directory contains a collection of templates designed for the identification and analysis of phishing sites. These templates are specifically created to help OSINT analysts, threat researchers, and security professionals in discovering and studying phishing campaigns.
## Usage
The phishing templates are designed for targeted use and are not included in Nuclei's default scans. To incorporate these templates into your scan, you can specify them using the `-itags` flags as follows:
```console
nuclei -u <host> -tags phishing -itags phishing
```
For users interested in comprehensive Open Source Intelligence (OSINT) gathering, these phishing templates have been integrated into the OSINT scan profile. This enables a more detailed and focused analysis as part of broader security research efforts or investigative journalism.
To execute the OSINT scan configuration profile, which includes phishing checks among other templates, use the following command:
```console
# Execute the OSINT scan configuration profile
nuclei -u <host> -config ~/nuclei-templates/config/osint.yml
```
The integration of phishing templates into the OSINT scan profile allows for a more nuanced and in-depth approach to security research, aiding in the detection of emerging threats and the analysis of ongoing phishing campaigns.

47
http/osint/user-enumeration/README.md Normal file
View File

@ -0,0 +1,47 @@
## Description
OSINT templates are available for conducting user enumeration across many websites. By utilizing the flag to input a user, Nuclei can verify the user's existence across all websites listed in the templates and report any instances of success.
## Usage
The templates within the `u` directory are **self-contained** and do NOT require URLs as input because the OSINT templates have pre-defined static URLs. Each template in this directory expects the user(name), email, or phone number or list of it to be supplied as input using the `V`/`var` flag through the Nuclei engine.
```bash
# Running OSINT templates against a single user to test
nuclei -tags osint -var user=elon
```
**OSINT** templates can be also ran against list of usernames as well.
```console
$ cat user_names.txt
user_1
user_2
user_3
user_4
user_5
```
```bash
# Running OSINT templates against a list of users to test
nuclei -tags osint -var user=user_names.txt
```
### Categories
The OSINT templates are classified into categories such as `archived`, `art`, `blog`, `business`, `coding`, `dating`, `finance`, `gaming`, `health`, `hobby`, `images`, `misc`, `music`, `news`, `political`, `search`, `shopping`, `social`, `tech`, `video`, `porn`.
To execute OSINT templates within a particular category, you can apply a filter using the `tags` flag and set the prefix value to `osint-`.
```bash
# Running OSINT templates against the social category
nuclei -t osint/ -tags osint-social -var user=some-user
# Running OSINT templates against the multiple categories
nuclei -t osint/ -tags osint-social,osint-finance -var user=some-user
```
## Acknowledgment
These OSINT templates were inspired by the [WebBreacher/WhatsMyName](https://github.com/WebBreacher/WhatsMyName) repository.