Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
Houziaux Mike 3564e64027
[Add] - Zimbra unauthenticated LFI (#3571)
* add zimbra lfi

* template updates

- CVE update
- Matchers update
- Additional LFI payload + matchers

* Update CVE-2013-7091.yaml

* Revert "Update CVE-2013-7091.yaml"

This reverts commit fdffa3944f29754d8971a2697754011d29677c42.

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: Prince Chaddha <cyberbossprince@gmail.com>
2022-01-21 13:02:08 +05:30
.github minor workflow update 2022-01-06 16:19:35 +05:30
cnvd template fix 2022-01-06 15:46:11 +05:30
cves [Add] - Zimbra unauthenticated LFI (#3571) 2022-01-21 13:02:08 +05:30
default-logins jboss-default-login.yaml (#1828) 2022-01-21 00:08:35 +05:30
dns Added more DNS Figerprinting templates (#3492) 2022-01-07 13:32:20 +05:30
exposed-panels Add versa-default-login template (#1324) 2022-01-20 23:46:51 +05:30
exposures Credentials disclosure refactor (#3552) 2022-01-18 16:25:55 +05:30
file Updated all templates tags with technologies (#3478) 2022-01-05 01:04:16 +05:30
fuzzing Updated all templates tags with technologies (#3478) 2022-01-05 01:04:16 +05:30
headless Updated all templates tags with technologies (#3478) 2022-01-05 01:04:16 +05:30
helpers Added wordpress-xmlrpc-brute-force.yaml (#3445) 2021-12-29 22:04:23 +05:30
iot Updated Axis Camera Template (#3557) 2022-01-19 12:49:00 +05:30
miscellaneous Enable redirects (#3545) 2022-01-17 11:38:12 +05:30
misconfiguration Added Misconfigured Concrete5 (#3563) 2022-01-19 16:28:00 +05:30
network Network template updates & fixes (#3497) 2022-01-07 12:58:37 +05:30
ssl Added Initial SSL Templates (#3339) 2021-12-15 20:43:36 +05:30
takeovers Updated all templates tags with technologies (#3478) 2022-01-05 01:04:16 +05:30
technologies Added drupal login template (#3471) 2022-01-18 12:35:19 +05:30
token-spray Add 3 token-spray templates (#3481) 2022-01-05 01:10:09 +05:30
vulnerabilities CVE-2021-22205 update (#3568) 2022-01-20 14:25:57 +05:30
workflows Go-Phish and Workflow (#3564) 2022-01-19 23:52:42 +05:30
.gitignore Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
.nuclei-ignore Adding self contained template identifier 2021-10-14 23:56:45 +05:30
.pre-commit-config.yml pre-commit-config update 2021-09-11 12:16:55 +05:30
.yamllint pre-commit-config update 2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-01-27 23:10:18 +05:30
CONTRIBUTING.md Misc (minor) 2021-08-19 17:25:01 +03:00
LICENSE.md misc changes 2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md typos 2021-07-10 22:06:59 +05:30
README.md Auto README Update [Tue Jan 18 11:10:29 UTC 2022] 🤖 2022-01-18 11:10:29 +00:00
TEMPLATES-STATS.json Auto Generated Templates Stats [Tue Jan 18 11:10:04 UTC 2022] 🤖 2022-01-18 11:10:04 +00:00
TEMPLATES-STATS.md Auto Generated Templates Stats [Tue Jan 18 11:10:04 UTC 2022] 🤖 2022-01-18 11:10:04 +00:00
TOP-10.md Auto Generated Templates Stats [Tue Jan 18 11:10:04 UTC 2022] 🤖 2022-01-18 11:10:04 +00:00
contributors.json Adding contributors.json from gh commit logs (#3540) 2022-01-16 22:21:22 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 960 daffainfo 529 cves 966 info 994 http 2668
lfi 401 dhiyaneshdk 360 exposed-panels 384 high 731 file 57
panel 385 pikpikcu 295 vulnerabilities 377 medium 547 network 48
xss 297 pdteam 241 technologies 214 critical 354 dns 16
wordpress 277 geeknik 173 exposures 199 low 171
exposure 273 dwisiswant0 160 workflows 182
rce 253 gy741 98 misconfiguration 182
tech 224 pussycat0x 98 token-spray 146
cve2021 214 0x_akoko 96 default-logins 67
wp-plugin 187 princechaddha 81 takeovers 65

203 directories, 3004 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

Alt

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️