Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
team-projectdiscovery 0cf38debaf Update exposed-alps-spring.yaml 2021-01-09 17:10:12 +05:30
.github ✏️ Add wildcards indict listing per-year subdirs CVE 2021-01-02 17:06:08 +07:00
cves Update CVE-2020-17518.yaml 2021-01-08 00:19:39 +05:30
default-credentials syntax update 2020-12-26 16:09:12 +05:30
dns added forcepoint 2020-11-11 23:22:57 +01:00
files Update exposed-alps-spring.yaml 2021-01-09 17:10:12 +05:30
fuzzing syntax update 2020-12-26 16:09:12 +05:30
generic-detections matcher update 2020-12-02 10:01:03 +05:30
misc Update old-copyright.yaml 2021-01-02 20:20:15 +00:00
panels Locate Fortigate Fortiweb panels, 2021-01-06 14:00:51 +00:00
payloads 🔨 Add CVE-2020-5776 payload 2020-09-04 20:19:30 +07:00
security-misconfiguration moving dirs 2021-01-06 23:31:08 +05:30
subdomain-takeover Netlify fix 2020-10-11 01:28:39 +05:30
technologies Delete monit-detect.yaml 2021-01-08 00:51:59 +05:30
tokens Update slack-access-token.yaml 2021-01-04 12:31:09 +05:30
vulnerabilities Removing as this is same as cve-2020-11738 2020-12-23 19:31:29 +05:30
wordlists Adding Wordpress Plugin Scanner 2020-11-07 18:40:51 +05:30
workflows 📝 Move to year-based CVE subtemplates 2021-01-03 09:23:09 +07:00
.gitignore Update .gitignore 2020-07-29 13:21:06 +05:30
.nuclei-ignore Adding CVE-2019-15858 back 2020-12-15 12:34:07 +05:30
.pre-commit-config.yaml Add pre-commit and yamllint configuration 2020-05-24 23:20:42 +02:00
.yamllint Fixed linting rules for more relaxed 2020-05-25 17:27:54 +05:30
LICENSE.md updating templates 2020-08-15 14:18:23 +05:30
README.md Auto Update README [Wed Jan 6 18:08:48 UTC 2021] 🤖 2021-01-06 18:08:48 +00:00

README.md

Nuclei Templates

License GitHub Release contributions welcome Follow on Twitter Chat on Discord

Templates are the core of nuclei scanner which power the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issue and grow the list.

An overview of the nuclei template directory including number of templates and HTTP request associated with each directory.

Nuclei templates v7.3.7 overview

Templates Counts Templates Counts
cves 147 files 50
vulnerabilities 42 panels 50
technologies 41 security-misconfiguration 29
workflows 17 tokens 8
dns 6 fuzzing 6
generic-detections 3 default-credentials 4
subdomain-takeover 2 payloads 2
wordlists 1 misc 14

Nuclei templates v7.3.7 tree overview

Nuclei templates
├── LICENSE.md
├── README.md
├── cves
│   ├── 2005
│   │   └── CVE-2005-2428.yaml
│   ├── 2008
│   │   └── CVE-2008-2398.yaml
│   ├── 2013
│   │   └── CVE-2013-2251.yaml
│   ├── 2014
│   │   └── CVE-2014-6271.yaml
│   ├── 2017
│   │   ├── CVE-2017-10075.yaml
│   │   ├── CVE-2017-11444.yaml
│   │   ├── CVE-2017-12637.yaml
│   │   ├── CVE-2017-14537.yaml
│   │   ├── CVE-2017-14849.yaml
│   │   ├── CVE-2017-5638.yaml
│   │   ├── CVE-2017-7391.yaml
│   │   ├── CVE-2017-7615.yaml
│   │   ├── CVE-2017-9506.yaml
│   │   └── CVE-2017-9841.yaml
│   ├── 2018
│   │   ├── CVE-2018-0296.yaml
│   │   ├── CVE-2018-1000129.yaml
│   │   ├── CVE-2018-11409.yaml
│   │   ├── CVE-2018-11759.yaml
│   │   ├── CVE-2018-1247.yaml
│   │   ├── CVE-2018-1271.yaml
│   │   ├── CVE-2018-1273.yaml
│   │   ├── CVE-2018-13379.yaml
│   │   ├── CVE-2018-13380.yaml
│   │   ├── CVE-2018-14728.yaml
│   │   ├── CVE-2018-16341.yaml
│   │   ├── CVE-2018-16763.yaml
│   │   ├── CVE-2018-17431.yaml
│   │   ├── CVE-2018-18069.yaml
│   │   ├── CVE-2018-19386.yaml
│   │   ├── CVE-2018-19439.yaml
│   │   ├── CVE-2018-20824.yaml
│   │   ├── CVE-2018-2791.yaml
│   │   ├── CVE-2018-3714.yaml
│   │   ├── CVE-2018-3760.yaml
│   │   ├── CVE-2018-5230.yaml
│   │   └── CVE-2018-7490.yaml
│   ├── 2019
│   │   ├── CVE-2019-1010287.yaml
│   │   ├── CVE-2019-10475.yaml
│   │   ├── CVE-2019-11248.yaml
│   │   ├── CVE-2019-11510.yaml
│   │   ├── CVE-2019-11580.yaml
│   │   ├── CVE-2019-11581.yaml
│   │   ├── CVE-2019-11869.yaml
│   │   ├── CVE-2019-12314.yaml
│   │   ├── CVE-2019-12461.yaml
│   │   ├── CVE-2019-12593.yaml
│   │   ├── CVE-2019-12725.yaml
│   │   ├── CVE-2019-14322.yaml
│   │   ├── CVE-2019-14696.yaml
│   │   ├── CVE-2019-14974.yaml
│   │   ├── CVE-2019-15043.yaml
│   │   ├── CVE-2019-15107.yaml
│   │   ├── CVE-2019-15858.yaml
│   │   ├── CVE-2019-16278.yaml
│   │   ├── CVE-2019-1653.yaml
│   │   ├── CVE-2019-16662.yaml
│   │   ├── CVE-2019-16759-1.yaml
│   │   ├── CVE-2019-16759.yaml
│   │   ├── CVE-2019-16920.yaml
│   │   ├── CVE-2019-17382.yaml
│   │   ├── CVE-2019-17558.yaml
│   │   ├── CVE-2019-18394.yaml
│   │   ├── CVE-2019-19368.yaml
│   │   ├── CVE-2019-19781.yaml
│   │   ├── CVE-2019-19908.yaml
│   │   ├── CVE-2019-19985.yaml
│   │   ├── CVE-2019-20141.yaml
│   │   ├── CVE-2019-2588.yaml
│   │   ├── CVE-2019-2725.yaml
│   │   ├── CVE-2019-3396.yaml
│   │   ├── CVE-2019-3402.yaml
│   │   ├── CVE-2019-3799.yaml
│   │   ├── CVE-2019-5418.yaml
│   │   ├── CVE-2019-6112.yaml
│   │   ├── CVE-2019-6340.yaml
│   │   ├── CVE-2019-6715.yaml
│   │   ├── CVE-2019-7256.yaml
│   │   ├── CVE-2019-7609.yaml
│   │   ├── CVE-2019-8442.yaml
│   │   ├── CVE-2019-8449.yaml
│   │   ├── CVE-2019-8451.yaml
│   │   ├── CVE-2019-8903.yaml
│   │   ├── CVE-2019-8982.yaml
│   │   ├── CVE-2019-9670.yaml
│   │   ├── CVE-2019-9733.yaml
│   │   └── CVE-2019-9978.yaml
│   └── 2020
│       ├── CVE-2020-0618.yaml
│       ├── CVE-2020-10148.yaml
│       ├── CVE-2020-10199.yaml
│       ├── CVE-2020-10204.yaml
│       ├── CVE-2020-11034.yaml
│       ├── CVE-2020-1147.yaml
│       ├── CVE-2020-11738.yaml
│       ├── CVE-2020-12116.yaml
│       ├── CVE-2020-12720.yaml
│       ├── CVE-2020-13167.yaml
│       ├── CVE-2020-13942.yaml
│       ├── CVE-2020-14179.yaml
│       ├── CVE-2020-14181.yaml
│       ├── CVE-2020-14864.yaml
│       ├── CVE-2020-14882.yaml
│       ├── CVE-2020-15129.yaml
│       ├── CVE-2020-15505.yaml
│       ├── CVE-2020-15920.yaml
│       ├── CVE-2020-16139.yaml
│       ├── CVE-2020-16846.yaml
│       ├── CVE-2020-16952.yaml
│       ├── CVE-2020-17505.yaml
│       ├── CVE-2020-17506.yaml
│       ├── CVE-2020-17518.yaml
│       ├── CVE-2020-17519.yaml
│       ├── CVE-2020-2096.yaml
│       ├── CVE-2020-2140.yaml
│       ├── CVE-2020-23972.yaml
│       ├── CVE-2020-24223.yaml
│       ├── CVE-2020-24312.yaml
│       ├── CVE-2020-2551.yaml
│       ├── CVE-2020-25540.yaml
│       ├── CVE-2020-26214.yaml
│       ├── CVE-2020-3187.yaml
│       ├── CVE-2020-3452.yaml
│       ├── CVE-2020-4463.yaml
│       ├── CVE-2020-5284.yaml
│       ├── CVE-2020-5405.yaml
│       ├── CVE-2020-5410.yaml
│       ├── CVE-2020-5412.yaml
│       ├── CVE-2020-5776.yaml
│       ├── CVE-2020-5777.yaml
│       ├── CVE-2020-5902.yaml
│       ├── CVE-2020-6287.yaml
│       ├── CVE-2020-7209.yaml
│       ├── CVE-2020-7318.yaml
│       ├── CVE-2020-7961.yaml
│       ├── CVE-2020-8091.yaml
│       ├── CVE-2020-8115.yaml
│       ├── CVE-2020-8163.yaml
│       ├── CVE-2020-8191.yaml
│       ├── CVE-2020-8193.yaml
│       ├── CVE-2020-8194.yaml
│       ├── CVE-2020-8209.yaml
│       ├── CVE-2020-8512.yaml
│       ├── CVE-2020-8982.yaml
│       ├── CVE-2020-9047.yaml
│       ├── CVE-2020-9344.yaml
│       ├── CVE-2020-9484.yaml
│       ├── CVE-2020-9496.yaml
│       └── CVE-2020-9757.yaml
├── default-credentials
│   ├── grafana-default-credential.yaml
│   ├── rabbitmq-default-admin.yaml
│   ├── solarwinds-default-admin.yaml
│   └── tomcat-manager-default.yaml
├── dns
│   ├── azure-takeover-detection.yaml
│   ├── cname-service-detector.yaml
│   ├── dead-host-with-cname.yaml
│   ├── mx-service-detector.yaml
│   ├── servfail-refused-hosts.yaml
│   └── spoofable-spf-records-ptr.yaml
├── files
│   ├── apc-info.yaml
│   ├── cgi-test-page.yaml
│   ├── composer-config.yaml
│   ├── docker-registry.yaml
│   ├── domcfg-page.yaml
│   ├── druid-monitor.yaml
│   ├── drupal-install.yaml
│   ├── ds_store.yaml
│   ├── elasticsearch.yaml
│   ├── elmah-log-file.yaml
│   ├── error-logs.yaml
│   ├── exposed-kibana.yaml
│   ├── exposed-svn.yaml
│   ├── filezilla.yaml
│   ├── firebase-detect.yaml
│   ├── git-config.yaml
│   ├── graylog-api-browser.yaml
│   ├── htpasswd-detection.yaml
│   ├── jkstatus-manager.yaml
│   ├── jolokia.yaml
│   ├── laravel-env.yaml
│   ├── lazy-file.yaml
│   ├── magento-config.yaml
│   ├── owncloud-config.yaml
│   ├── package-json.yaml
│   ├── php-errors.yaml
│   ├── phpinfo.yaml
│   ├── public-tomcat-instance.yaml
│   ├── redmine-db-config.yaml
│   ├── server-private-keys.yaml
│   ├── server-status-localhost.yaml
│   ├── shell-history.yaml
│   ├── sql-dump.yaml
│   ├── syfmony-profiler.yaml
│   ├── telerik-dialoghandler-detect.yaml
│   ├── telerik-fileupload-detect.yaml
│   ├── tomcat-scripts.yaml
│   ├── trace-axd-detect.yaml
│   ├── wadl-files.yaml
│   ├── web-config.yaml
│   ├── wordpress-db-backup.yaml
│   ├── wordpress-debug-log.yaml
│   ├── wordpress-directory-listing.yaml
│   ├── wordpress-emergency-script.yaml
│   ├── wordpress-installer-log.yaml
│   ├── wordpress-tmm-db-migrate.yaml
│   ├── wordpress-user-enumeration.yaml
│   ├── wsdl-detect.yaml
│   ├── xprober-service.yaml
│   └── zip-backup-files.yaml
├── fuzzing
│   ├── arbitrary-file-read.yaml
│   ├── basic-auth-bruteforce.yaml
│   ├── directory-traversal.yaml
│   ├── generic-lfi-fuzzing.yaml
│   ├── iis-shortname.yaml
│   └── wp-plugin-scan.yaml
├── generic-detections
│   ├── basic-xss-prober.yaml
│   ├── general-tokens.yaml
│   └── top-15-xss.yaml
├── misc
│   ├── basic-cors-flash.yaml
│   ├── dir-listing.yaml
│   ├── htaccess-config.yaml
│   ├── missing-csp.yaml
│   ├── missing-hsts.yaml
│   ├── missing-x-frame-options.yaml
│   ├── ntlm-directories.yaml
│   ├── old-copyright.yaml
│   ├── robots.txt.yaml
│   ├── security.txt.yaml
│   ├── trace-method.yaml
│   ├── unencrypted-bigip-ltm-cookie.yaml
│   ├── wp-xmlrpc.yaml
│   └── xml-schema-detect.yaml
├── panels
│   ├── adminer-panel.yaml
│   ├── aims-password-mgmt-client.yaml
│   ├── atlassian-crowd-panel.yaml
│   ├── cisco-asa-panel.yaml
│   ├── citrix-adc-gateway-detect.yaml
│   ├── citrix-vpn-detect.yaml
│   ├── compal.yaml
│   ├── crxde.yaml
│   ├── docker-api.yaml
│   ├── fortinet-fortigate-panel.yaml
│   ├── fortiweb-panel.yaml
│   ├── github-enterprise-detect.yaml
│   ├── gitlab-detect.yaml
│   ├── globalprotect-panel.yaml
│   ├── go-anywhere-client.yaml
│   ├── grafana-detect.yaml
│   ├── identityguard-selfservice-entrust.yaml
│   ├── iomega-lenovo-emc-shared-nas-detect.yaml
│   ├── jenkins-asyncpeople.yaml
│   ├── jmx-console.yaml
│   ├── kubernetes-pods.yaml
│   ├── manage-engine-admanager-panel.yaml
│   ├── mobileiron-login.yaml
│   ├── netscaler-gateway.yaml
│   ├── network-camera-detect.yaml
│   ├── oipm-detect.yaml
│   ├── parallels-html-client.yaml
│   ├── phpmyadmin-panel.yaml
│   ├── polycom-admin-detect.yaml
│   ├── pulse-secure-panel.yaml
│   ├── rabbitmq-dashboard.yaml
│   ├── rsa-self-service.yaml
│   ├── sap-hana-xsengine-panel.yaml
│   ├── sap-netweaver-detect.yaml
│   ├── sap-recon-detect.yaml
│   ├── solarwinds-orion.yaml
│   ├── sonarqube-login.yaml
│   ├── sonicwall-management-panel.yaml
│   ├── sonicwall-sslvpn-panel.yaml
│   ├── sophos-fw-version-detect.yaml
│   ├── supervpn-panel.yaml
│   ├── swagger-panel.yaml
│   ├── tikiwiki-cms.yaml
│   ├── traefik-dashboard.yaml
│   ├── virtual-ema-detect.yaml
│   ├── weave-scope-dashboard-detect.yaml
│   ├── webeditors.yaml
│   ├── webmin-panel.yaml
│   ├── workspace-one-uem.yaml
│   └── workspaceone-uem-airwatch-dashboard-detect.yaml
├── payloads
│   ├── CVE-2020-5776.csv
│   └── CVE-2020-6287.xml
├── security-misconfiguration
│   ├── aem-groovyconsole.yaml
│   ├── apache-tomcat-snoop.yaml
│   ├── aspx-debug-mode.yaml
│   ├── basic-cors.yaml
│   ├── django-debug-detect.yaml
│   ├── drupal-user-enum-ajax.yaml
│   ├── drupal-user-enum-redirect.yaml
│   ├── exposed-service-now.yaml
│   ├── front-page-misconfig.yaml
│   ├── jenkins-stack-trace.yaml
│   ├── jira-service-desk-signup.yaml
│   ├── jira-unauthenticated-dashboards.yaml
│   ├── jira-unauthenticated-popular-filters.yaml
│   ├── jira-unauthenticated-projects.yaml
│   ├── jira-unauthenticated-user-picker.yaml
│   ├── jupyter-ipython-unauth.yaml
│   ├── larvel-debug.yaml
│   ├── manage-engine-ad-search.yaml
│   ├── put-method-enabled.yaml
│   ├── rack-mini-profiler.yaml
│   ├── salesforce-aura-misconfig.yaml
│   ├── sidekiq-dashboard.yaml
│   ├── springboot-detect.yaml
│   ├── unauthenticated-airflow.yaml
│   ├── unauthenticated-jenkin-dashboard.yaml
│   ├── unauthenticated-nacos-access.yaml
│   ├── wamp-xdebug-detect.yaml
│   ├── wordpress-accessible-wpconfig.yaml
│   └── zenphoto-installation-sensitive-info.yaml
├── subdomain-takeover
│   ├── detect-all-takeovers.yaml
│   └── s3-subtakeover.yaml
├── technologies
│   ├── apache-detect.yaml
│   ├── artica-web-proxy-detect.yaml
│   ├── basic-auth-detection.yaml
│   ├── bigip-config-utility-detect.yaml
│   ├── cacti-detect.yaml
│   ├── clockwork-php-page.yaml
│   ├── couchdb-detect.yaml
│   ├── favicon-detection.yaml
│   ├── google-storage.yaml
│   ├── graphql.yaml
│   ├── home-assistant.yaml
│   ├── jaspersoft-detect.yaml
│   ├── jira-detect.yaml
│   ├── kibana-detect.yaml
│   ├── kong-detect.yaml
│   ├── liferay-portal-detect.yaml
│   ├── linkerd-badrule-detect.yaml
│   ├── linkerd-ssrf-detect.yaml
│   ├── lotus-domino-version.yaml
│   ├── magmi-detect.yaml
│   ├── mrtg-detect.yaml
│   ├── netsweeper-webadmin-detect.yaml
│   ├── nifi-detech.yaml
│   ├── oidc-detect.yaml
│   ├── pi-hole-detect.yaml
│   ├── prometheus-exporter-detect.yaml
│   ├── prometheus-exposed-panel.yaml
│   ├── prtg-detect.yaml
│   ├── redmine-cli-detect.yaml
│   ├── s3-detect.yaml
│   ├── sap-netweaver-as-java-detect.yaml
│   ├── sap-netweaver-detect.yaml
│   ├── shiro-detect.yaml
│   ├── sql-server-reporting.yaml
│   ├── tech-detect.yaml
│   ├── terraform-detect.yaml
│   ├── tomcat-detect.yaml
│   ├── tor-socks-proxy.yaml
│   ├── waf-detect.yaml
│   ├── weblogic-detect.yaml
│   └── werkzeug-debugger-detect.yaml
├── tokens
│   ├── amazon-mws-auth-token-value.yaml
│   ├── aws-access-key-value.yaml
│   ├── credentials-disclosure.yaml
│   ├── fcm-server-key.yaml
│   ├── google-api-key.yaml
│   ├── http-username-password.yaml
│   ├── mailchimp-api-key.yaml
│   └── slack-access-token.yaml
├── vulnerabilities
│   ├── bullwark-momentum-series-directory-traversal.yaml
│   ├── cached-aem-pages.yaml
│   ├── couchdb-adminparty.yaml
│   ├── crlf-injection.yaml
│   ├── discourse-xss.yaml
│   ├── easy-wp-smtp-listing.yaml
│   ├── eclipse-help-system-xss.yaml
│   ├── git-config-nginxoffbyslash.yaml
│   ├── ibm-infoprint-directory-traversal.yaml
│   ├── mcafee-epo-rce.yaml
│   ├── microstrategy-ssrf.yaml
│   ├── mida-eframework-xss.yaml
│   ├── moodle-filter-jmol-lfi.yaml
│   ├── moodle-filter-jmol-xss.yaml
│   ├── nginx-module-vts-xss.yaml
│   ├── nuuo-nvrmini2-rce.yaml
│   ├── open-redirect.yaml
│   ├── oracle-ebs-bispgraph-file-access.yaml
│   ├── pdf-signer-ssti-to-rce.yaml
│   ├── rails6-xss.yaml
│   ├── rce-shellshock-user-agent.yaml
│   ├── rce-via-java-deserialization.yaml
│   ├── rconfig-rce.yaml
│   ├── sassy-social-share.yaml
│   ├── sick-beard-xss.yaml
│   ├── springboot-actuators-jolokia-xxe.yaml
│   ├── springboot-h2-db-rce.yaml
│   ├── symantec-messaging-gateway.yaml
│   ├── symfony-debugmode.yaml
│   ├── tikiwiki-reflected-xss.yaml
│   ├── tomcat-manager-pathnormalization.yaml
│   ├── twig-php-ssti.yaml
│   ├── vmware-vcenter-lfi-linux.yaml
│   ├── vmware-vcenter-lfi.yaml
│   ├── vpms-auth-bypass.yaml
│   ├── w3c-total-cache-ssrf.yaml
│   ├── wems-manager-xss.yaml
│   ├── wordpress-emails-verification-for-woocommerce.yaml
│   ├── wordpress-social-metrics-tracker.yaml
│   ├── wordpress-wordfence-xss.yaml
│   ├── wordpress-wpcourses-info-disclosure.yaml
│   └── zms-auth-bypass.yaml
├── wordlists
│   └── wp-plugins.txt
└── workflows
    ├── artica-web-proxy-workflow.yaml
    ├── basic-auth-workflow.yaml
    ├── bigip-workflow.yaml
    ├── cisco-asa-workflow.yaml
    ├── grafana-workflow.yaml
    ├── jira-workflow.yaml
    ├── liferay-workflow.yaml
    ├── lotus-domino-workflow.yaml
    ├── magmi-workflow.yaml
    ├── mida-eframework-workflow.yaml
    ├── netsweeper-workflow.yaml
    ├── rabbitmq-workflow.yaml
    ├── sap-netweaver-workflow.yaml
    ├── solarwinds-orion-workflow.yaml
    ├── springboot-workflow.yaml
    ├── vbulletin-workflow.yaml
    └── wordpress-workflow.yaml

24 directories, 424 files.

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new and your own custom templates and many example templates for easy understanding.


Notes:

  1. Use YAMLlint (e.g. yamllint) to validate new templates when sending pull requests.
  2. Use YAML Formatter (e.g. jsonformatter) to format new templates when sending pull requests.

Thanks again for your contribution and keeping the community vibrant. ❤️