Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
Roberto Nunes 69d72179db
Create CVE-2021-20123.yaml
2022-05-13 18:07:21 +09:00
.github workflow updates 2022-03-23 20:55:35 +05:30
cnvd Update metadata query (#4350) 2022-05-12 19:48:36 +05:30
cves Update CVE-2022-30525.yaml 2022-05-13 14:16:09 +05:30
default-logins Update and rename default-logins/others/h3c-secparh-default-login.yaml to misconfiguration/unauthorized-h3csecparh-login.yaml 2022-05-12 15:36:08 +05:30
dns refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
exposed-panels Update metadata query (#4350) 2022-05-12 19:48:36 +05:30
exposures Update metadata query (#4350) 2022-05-12 19:48:36 +05:30
file FortiGate config-audit (#4275) 2022-05-07 12:19:43 +05:30
fuzzing added reference 2022-05-07 13:03:25 +05:30
headless refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
helpers Added wordpress-xmlrpc-brute-force.yaml (#3445) 2021-12-29 22:04:23 +05:30
iot Improved AXIS detection (#4185) 2022-04-23 19:58:33 +05:30
miscellaneous Update metadata query (#4350) 2022-05-12 19:48:36 +05:30
misconfiguration Update metadata query (#4350) 2022-05-12 19:48:36 +05:30
network Increase judgment conditions to avoid false positives (#4317) 2022-05-08 12:20:52 +05:30
ssl refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
takeovers refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
technologies Update metadata query (#4350) 2022-05-12 19:48:36 +05:30
token-spray feat(token-spray): moonpay api test (#4380) 2022-05-13 02:31:08 +05:30
vulnerabilities Merge pull request #4341 from gy741/rule-add-v108 2022-05-13 01:14:28 +05:30
workflows oracle enterprise manager login and oracle container for jee panel (#4128) 2022-05-05 23:51:38 +05:30
.gitignore Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
.new-additions Auto Generated New Template Addition List [Fri May 13 08:48:14 UTC 2022] 🤖 2022-05-13 08:48:14 +00:00
.nuclei-ignore Update .nuclei-ignore 2022-03-25 23:58:22 +05:30
.pre-commit-config.yml pre-commit-config update 2021-09-11 12:16:55 +05:30
.yamllint pre-commit-config update 2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-01-27 23:10:18 +05:30
CONTRIBUTING.md Remove: 2022-01-25 14:38:53 -05:00
CVE-2021-20123.yaml Create CVE-2021-20123.yaml 2022-05-13 18:07:21 +09:00
LICENSE.md misc changes 2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md Fixes contribute link in PR template (#4152) 2022-04-15 13:30:01 +05:30
README.md Auto README Update [Fri May 13 09:00:48 UTC 2022] 🤖 2022-05-13 09:00:48 +00:00
TEMPLATES-STATS.json Auto Generated Templates Stats [Fri May 13 09:00:25 UTC 2022] 🤖 2022-05-13 09:00:25 +00:00
TEMPLATES-STATS.md Auto Generated Templates Stats [Fri May 13 09:00:25 UTC 2022] 🤖 2022-05-13 09:00:25 +00:00
TOP-10.md Auto Generated Templates Stats [Fri May 13 09:00:25 UTC 2022] 🤖 2022-05-13 09:00:25 +00:00
contributors.json Ivanti EPM CSA Code Injection(CVE-2021-44529) (#3937) 2022-03-20 13:14:37 +05:30
wappalyzer-mapping.yml Added additional tags mapping file (#4108) 2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 1156 daffainfo 560 cves 1160 info 1192 http 3187
panel 515 dhiyaneshdk 421 exposed-panels 523 high 874 file 68
lfi 461 pikpikcu 316 vulnerabilities 452 medium 662 network 50
xss 367 pdteam 262 technologies 255 critical 414 dns 17
wordpress 364 geeknik 179 exposures 204 low 183
exposure 293 dwisiswant0 168 misconfiguration 197 unknown 6
rce 291 princechaddha 133 workflows 186
cve2021 283 0x_akoko 130 token-spray 154
tech 271 gy741 118 default-logins 95
wp-plugin 264 pussycat0x 116 file 68

261 directories, 3543 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

Alt

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️