Community curated list of templates for the nuclei engine to find security vulnerabilities.

Go to file

Prince Chaddha 67a5f42427 Update piwik-installer.yaml		2022-10-25 18:30:04 +05:30
.github	workflow fixes	2022-08-29 02:33:35 +05:30
cnvd	Dashboard Content Enhancements (#5582 )	2022-10-10 15:22:59 -04:00
cves	Auto Generated CVE annotations [Mon Oct 24 13:22:12 UTC 2022] 🤖	2022-10-24 13:22:12 +00:00
default-logins	Update and rename default-logins/processwire-login.yaml to exposed-panels/processwire-login.yaml	2022-10-21 17:08:48 +05:30
dns	Revert "Delete elasticbeantalk-takeover.yaml"	2022-10-18 11:34:18 +05:30
exposed-panels	Update temenos-t24-login.yaml	2022-10-24 18:29:06 +05:30
exposures	Create go-mod-disclosure.yaml	2022-10-21 00:46:27 +05:30
file	Dashboard Content Enhancements (#5704 )	2022-10-19 17:11:27 -04:00
fuzzing	Dashboard Content Enhancements (#5704 )	2022-10-19 17:11:27 -04:00
headless	Dashboard Content Enhancements (#5372 )	2022-09-16 15:50:10 -04:00
helpers	Replace google-dork with google-query in all templates (#5328 )	2022-09-09 04:09:14 +05:30
iot	Using "host-redirects" instead of "redirects" to avoid scanning 3rd party / out of scope hosts. (#5491 )	2022-10-08 02:57:25 +05:30
miscellaneous	Merge pull request #5609 from geeknik/patch-64	2022-10-11 13:44:30 +05:30
misconfiguration	Update piwik-installer.yaml	2022-10-25 18:30:04 +05:30
network	Merge pull request #5718 from projectdiscovery/Xlight-FTP-Service-Detect	2022-10-20 14:30:00 +05:30
ssl	Update weak-cipher-suites.yaml	2022-10-18 14:27:32 +05:30
takeovers	Create surveysparrow-takeover (#5691 )	2022-10-16 12:23:14 +05:30
technologies	Update and rename technologies/qlik-sense-server-detect.yaml to exposed-panels/qlik-sense-server.yaml	2022-10-21 16:27:17 +05:30
token-spray	Update api-nytimes.yaml	2022-10-24 18:26:43 +05:30
vulnerabilities	Merge pull request #5494 from projectdiscovery/xenmobile-server-log4j	2022-10-21 16:12:02 +05:30
workflows	Update gogs-workflow.yaml	2022-10-14 17:43:54 +05:30
.gitignore	Merge branch 'master' into dynamic_attributes	2021-08-19 16:23:26 +03:00
.new-additions	Auto Generated New Template Addition List [Mon Oct 24 13:07:27 UTC 2022] 🤖	2022-10-24 13:07:27 +00:00
.nuclei-ignore	Update .nuclei-ignore	2022-10-07 16:56:58 +05:30
.pre-commit-config.yml	pre-commit-config update	2021-09-11 12:16:55 +05:30
.yamllint	pre-commit-config update	2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md	Create CODE_OF_CONDUCT.md	2021-01-27 23:10:18 +05:30
CONTRIBUTING.md	Remove:	2022-01-25 14:38:53 -05:00
LICENSE.md	misc changes	2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md	Fixes contribute link in PR template (#4152 )	2022-04-15 13:30:01 +05:30
README.md	Auto README Update [Fri Oct 21 11:48:27 UTC 2022] 🤖	2022-10-21 11:48:27 +00:00
README_KR.md	Create README_KR.md (#5022 )	2022-08-06 12:19:34 +05:30
TEMPLATES-STATS.json	Auto Generated Templates Stats [Fri Oct 21 11:48:04 UTC 2022] 🤖	2022-10-21 11:48:04 +00:00
TEMPLATES-STATS.md	Auto Generated Templates Stats [Fri Oct 21 11:48:04 UTC 2022] 🤖	2022-10-21 11:48:04 +00:00
TOP-10.md	Auto Generated Templates Stats [Fri Oct 21 11:48:04 UTC 2022] 🤖	2022-10-21 11:48:04 +00:00
contributors.json	chore: Add myself to the list	2022-08-31 00:02:50 +02:00
wappalyzer-mapping.yml	Added additional tags mapping file (#4108 )	2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

Documentation • Contributions • Discussion • Community • FAQs • Join Discord

Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG	COUNT	AUTHOR	COUNT	DIRECTORY	COUNT	SEVERITY	COUNT	TYPE	COUNT
cve	1493	daffainfo	650	cves	1471	info	1551	http	4036
panel	697	dhiyaneshdk	636	exposed-panels	703	high	1076	file	77
edb	574	pikpikcu	338	vulnerabilities	517	medium	794	network	58
xss	516	pdteam	273	technologies	299	critical	530	dns	17
lfi	515	geeknik	196	exposures	294	low	236
wordpress	448	dwisiswant0	170	misconfiguration	257	unknown	16
exposure	445	0x_akoko	167	token-spray	234
cve2021	363	princechaddha	151	workflows	190
wp-plugin	343	pussycat0x	142	default-logins	107
rce	342	ritikchaddha	138	file	77

305 directories, 4422 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️