Community curated list of templates for the nuclei engine to find security vulnerabilities.

Go to file

GitHub Action 00f2db8e5b Auto Generated cves.json [Mon Feb 20 09:54:08 UTC 2023] 🤖		2023-02-20 09:54:08 +00:00
.github	ci(cve2json): add branch restriction & minor changes (#6770 )	2023-02-19 14:15:04 +05:30
cnvd	extractor update	2023-02-07 13:34:33 +05:30
cves	Merge pull request #6771 from dwisiswant0/add/CVE-2023-23488	2023-02-20 15:23:29 +05:30
default-logins	Create jboss-jbpm-default-login.yaml	2023-02-08 02:38:34 +05:30
dns	Merge pull request #4048 from juliosmelo/dns-dmarc-detection	2023-02-02 15:29:03 +05:30
exposed-panels	Merge pull request #6739 from MostInterestingBotInTheWorld/dashboard	2023-02-16 13:44:03 +05:30
exposures	Merge pull request #6741 from Devang-Solanki/main	2023-02-16 18:05:49 +05:30
file	Update razorpay-client-id.yaml	2023-02-16 18:02:36 +05:30
fuzzing	Merge pull request #5547 from ColbyJack1134/patch-1	2023-02-10 19:55:10 +05:30
headless	Merge pull request #6499 from iamnoooob/master	2023-01-27 14:41:03 +05:30
helpers	Auto WordPress Plugins Update [Mon Feb 20 04:02:09 UTC 2023] 🤖	2023-02-20 04:02:09 +00:00
iot	fix incomplete tags	2023-02-14 23:48:14 +05:30
miscellaneous	Merge pull request #5558 from geeknik/patch-62	2023-01-26 21:10:01 +05:30
misconfiguration	shodan-query, reference and matchers -update	2023-02-15 13:12:26 +05:30
network	fix indentation	2023-02-15 00:18:28 +05:30
ssl	misc update	2022-12-23 16:15:25 +05:30
takeovers	Updated aws-bucket-takeover.yaml	2023-02-01 14:56:56 -05:00
technologies	Auto WordPress Plugins Update [Fri Feb 17 04:01:58 UTC 2023] 🤖	2023-02-17 04:01:58 +00:00
token-spray	Merge pull request #6529 from 0xPugazh/patch-7	2023-01-13 17:21:37 +05:30
vulnerabilities	Fixing metersphere-plugin-rce template (#6758 )	2023-02-19 17:53:06 +05:30
workflows	updated name	2023-02-11 10:30:33 +05:30
.gitignore	Merge branch 'master' into dynamic_attributes	2021-08-19 16:23:26 +03:00
.new-additions	Auto Generated New Template Addition List [Mon Feb 20 09:53:49 UTC 2023] 🤖	2023-02-20 09:53:50 +00:00
.nuclei-ignore	Update .nuclei-ignore	2022-11-01 18:43:37 +05:30
.pre-commit-config.yml	pre-commit-config update	2021-09-11 12:16:55 +05:30
.yamllint	Added max empty lines + yml extension exclusion (#6639 )	2023-01-30 11:33:41 +05:30
CODE_OF_CONDUCT.md	Create CODE_OF_CONDUCT.md	2021-01-27 23:10:18 +05:30
CONTRIBUTING.md	Remove:	2022-01-25 14:38:53 -05:00
LICENSE.md	misc changes	2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md	Fixes contribute link in PR template (#4152 )	2022-04-15 13:30:01 +05:30
README.md	Auto README Update [Fri Feb 10 16:06:28 UTC 2023] 🤖	2023-02-10 16:06:28 +00:00
README_KR.md	Create README_KR.md (#5022 )	2022-08-06 12:19:34 +05:30
TEMPLATES-STATS.json	Auto Generated Templates Stats [Fri Feb 10 16:05:58 UTC 2023] 🤖	2023-02-10 16:05:58 +00:00
TEMPLATES-STATS.md	Auto Generated Templates Stats [Fri Feb 10 16:05:58 UTC 2023] 🤖	2023-02-10 16:05:58 +00:00
TOP-10.md	Auto Generated Templates Stats [Fri Feb 10 16:05:58 UTC 2023] 🤖	2023-02-10 16:05:58 +00:00
contributors.json	added template to check for spookyssl cve	2022-11-22 12:54:02 -07:00
cves.json	Auto Generated cves.json [Mon Feb 20 09:54:08 UTC 2023] 🤖	2023-02-20 09:54:08 +00:00
templates-checksum.txt	Auto Generated Templates Checksum [Wed Dec 7 09:27:27 UTC 2022] 🤖	2022-12-07 09:27:27 +00:00
wappalyzer-mapping.yml	Added additional tags mapping file (#4108 )	2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

Documentation • Contributions • Discussion • Community • FAQs • Join Discord

Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG	COUNT	AUTHOR	COUNT	DIRECTORY	COUNT	SEVERITY	COUNT	TYPE	COUNT
cve	1604	dhiyaneshdk	727	cves	1583	info	2038	http	4772
panel	850	daffainfo	662	exposed-panels	835	high	1166	network	86
wordpress	690	pikpikcu	348	technologies	548	medium	892	file	80
exposure	598	pdteam	274	vulnerabilities	536	critical	592	dns	18
edb	587	geeknik	221	misconfiguration	412	low	260
wp-plugin	585	ricardomaia	212	exposures	331	unknown	25
tech	585	pussycat0x	205	token-spray	239
xss	563	ritikchaddha	191	workflows	190
lfi	525	0x_akoko	175	default-logins	124
cve2021	377	dwisiswant0	171	file	80

340 directories, 5395 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️