nuclei-templates/README.md

4.9 KiB

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 666 dhiyaneshdk 248 cves 674 info 615 http 1859
panel 236 pikpikcu 246 vulnerabilities 284 high 535 file 46
lfi 228 pdteam 198 exposed-panels 235 medium 413 network 39
xss 225 daffainfo 183 exposures 186 critical 236 dns 11
exposure 221 geeknik 150 technologies 170 low 161
wordpress 206 dwisiswant0 132 misconfiguration 129
rce 193 gy741 72 takeovers 71
cve2020 159 madrobot 62 default-logins 54
wp-plugin 139 princechaddha 55 file 46
cve2021 112 pussycat0x 55 workflows 35

150 directories, 2015 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join our Discord Community. You can also follow us on Twitter to keep up with everything related to projectdiscovery.

💡 Notes

  • Use YAMLlint (e.g. yamllint to validate the syntax of templates before sending pull requests.

Thanks again for your contribution and keeping this community vibrant. ❤️