Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
HAHWUL 51d185dd73
Add zap-api-detect (#5255)
* Add zap-api-detect

Signed-off-by: hahwul <hahwul@gmail.com>

* matchers simplified

Signed-off-by: hahwul <hahwul@gmail.com>
Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2022-08-31 17:51:02 +05:30
.github workflow fixes 2022-08-29 02:33:35 +05:30
cnvd Dashboard Enhancements + Severity Matching (#5245) 2022-08-29 16:21:30 -04:00
cves Auto Generated CVE annotations [Tue Aug 30 18:11:00 UTC 2022] 🤖 2022-08-30 18:11:00 +00:00
default-logins Dashboard Enhancements + Severity Matching (#5245) 2022-08-29 16:21:30 -04:00
dns Added Salesforce Lightning Community detection (#4843) 2022-07-16 18:03:42 +05:30
exposed-panels Auto Generated CVE annotations [Tue Aug 30 18:11:00 UTC 2022] 🤖 2022-08-30 18:11:00 +00:00
exposures misc update 2022-08-28 15:00:17 +05:30
file remove escaped quotes in expression (#4683) 2022-06-28 04:50:04 +05:30
fuzzing Auto Generated CVE annotations [Sat Aug 27 04:41:18 UTC 2022] 🤖 2022-08-27 04:41:18 +00:00
headless misc fixes to headless template (#5239) 2022-08-29 14:40:50 +05:30
helpers Merge branch 'master' into master 2022-05-23 13:30:04 +05:30
iot Auto Generated CVE annotations [Sat Aug 27 04:41:18 UTC 2022] 🤖 2022-08-27 04:41:18 +00:00
miscellaneous Update robots-txt.yaml (#4704) 2022-06-30 09:47:42 +05:30
misconfiguration Merge pull request #5241 from projectdiscovery/aem-sling-userinfo 2022-08-30 11:33:49 +05:30
network Auto Generated CVE annotations [Sat Aug 27 04:41:18 UTC 2022] 🤖 2022-08-27 04:41:18 +00:00
ssl update: deprecated-tls to show all the deprecated versions (#4926) 2022-07-27 20:30:42 +05:30
takeovers Merge pull request #5213 from MiryangJung/uv 2022-08-30 11:05:16 +05:30
technologies Add zap-api-detect (#5255) 2022-08-31 17:51:02 +05:30
token-spray Fixed VirusTotal API Test template 2022-08-07 14:57:18 +02:00
vulnerabilities Dashboard Enhancements + Severity Matching (#5245) 2022-08-29 16:21:30 -04:00
workflows workflow fixes 2022-08-29 02:33:35 +05:30
.gitignore Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
.new-additions Auto Generated New Template Addition List [Tue Aug 30 11:01:58 UTC 2022] 🤖 2022-08-30 11:01:59 +00:00
.nuclei-ignore Added do not edit message to nuclei-ignore (#4674) 2022-06-27 14:16:45 +05:30
.pre-commit-config.yml pre-commit-config update 2021-09-11 12:16:55 +05:30
.yamllint pre-commit-config update 2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-01-27 23:10:18 +05:30
CONTRIBUTING.md Remove: 2022-01-25 14:38:53 -05:00
LICENSE.md misc changes 2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md Fixes contribute link in PR template (#4152) 2022-04-15 13:30:01 +05:30
README.md Auto README Update [Mon Aug 29 06:44:18 UTC 2022] 🤖 2022-08-29 06:44:18 +00:00
README_KR.md Create README_KR.md (#5022) 2022-08-06 12:19:34 +05:30
TEMPLATES-STATS.json Auto Generated Templates Stats [Mon Aug 29 06:43:58 UTC 2022] 🤖 2022-08-29 06:43:58 +00:00
TEMPLATES-STATS.md Auto Generated Templates Stats [Mon Aug 29 06:43:58 UTC 2022] 🤖 2022-08-29 06:43:58 +00:00
TOP-10.md Auto Generated Templates Stats [Mon Aug 29 06:43:58 UTC 2022] 🤖 2022-08-29 06:43:58 +00:00
contributors.json Update contributors.json 2022-06-04 22:39:51 +01:00
wappalyzer-mapping.yml Added additional tags mapping file (#4108) 2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 1388 daffainfo 630 cves 1363 info 1450 http 3773
panel 642 dhiyaneshdk 558 exposed-panels 649 high 974 file 76
edb 548 pikpikcu 326 vulnerabilities 510 medium 811 network 51
lfi 496 pdteam 269 technologies 278 critical 469 dns 17
xss 472 geeknik 187 exposures 273 low 219
wordpress 415 dwisiswant0 169 token-spray 230 unknown 7
exposure 394 0x_akoko 158 misconfiguration 217
cve2021 343 princechaddha 150 workflows 189
rce 335 pussycat0x 133 default-logins 102
wp-plugin 312 ritikchaddha 130 file 76

294 directories, 4145 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

Alt

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️