Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
GitHub Action 6c5d75e617 Auto Generated Templates Stats [Thu Apr 28 08:23:53 UTC 2022] 🤖 2022-04-28 08:23:53 +00:00
.github workflow updates 2022-03-23 20:55:35 +05:30
cnvd refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
cves Add CVE-2021-22054.yaml (#4251) 2022-04-28 13:18:32 +05:30
default-logins Update and rename default-login/openemr/OpenEMR-default-login.yaml to default-logins/openemr/openemr-default-login.yaml 2022-04-26 03:58:39 +04:00
dns refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
exposed-panels Update ruckus-unleashed-panel.yaml 2022-04-28 00:43:14 +05:30
exposures tags update 2022-04-27 03:06:21 +05:30
file refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
fuzzing refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
headless refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
helpers Added wordpress-xmlrpc-brute-force.yaml (#3445) 2021-12-29 22:04:23 +05:30
iot Improved AXIS detection (#4185) 2022-04-23 19:58:33 +05:30
miscellaneous Update and rename extract-firebase-database.yaml to firebase-database-extractor.yaml 2022-04-25 03:04:22 +04:00
misconfiguration tags update 2022-04-27 03:06:21 +05:30
network refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
ssl refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
takeovers refactor: Description field uniformization 2022-04-22 13:38:41 +03:00
technologies Updated favicon-detection.yaml (#4252) 2022-04-28 13:19:04 +05:30
token-spray Merge pull request #4186 from daffainfo/patch-18 2022-04-22 18:29:55 +04:00
vulnerabilities Dashboard Content Enhancements (#4238) 2022-04-25 10:35:07 -04:00
workflows Google API Token Usage Enumeration (#4131) 2022-04-24 16:12:04 +05:30
.gitignore Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
.new-additions Auto Generated New Template Addition List [Thu Apr 28 07:48:50 UTC 2022] 🤖 2022-04-28 07:48:50 +00:00
.nuclei-ignore Update .nuclei-ignore 2022-03-25 23:58:22 +05:30
.pre-commit-config.yml pre-commit-config update 2021-09-11 12:16:55 +05:30
.yamllint pre-commit-config update 2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-01-27 23:10:18 +05:30
CONTRIBUTING.md Remove: 2022-01-25 14:38:53 -05:00
LICENSE.md misc changes 2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md Fixes contribute link in PR template (#4152) 2022-04-15 13:30:01 +05:30
README.md Auto README Update [Thu Apr 21 19:22:26 UTC 2022] 🤖 2022-04-21 19:22:26 +00:00
TEMPLATES-STATS.json Auto Generated Templates Stats [Thu Apr 28 08:23:53 UTC 2022] 🤖 2022-04-28 08:23:53 +00:00
TEMPLATES-STATS.md Auto Generated Templates Stats [Thu Apr 28 08:23:53 UTC 2022] 🤖 2022-04-28 08:23:53 +00:00
TOP-10.md Auto Generated Templates Stats [Thu Apr 28 08:23:53 UTC 2022] 🤖 2022-04-28 08:23:53 +00:00
contributors.json Ivanti EPM CSA Code Injection(CVE-2021-44529) (#3937) 2022-03-20 13:14:37 +05:30
wappalyzer-mapping.yml Added additional tags mapping file (#4108) 2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 1114 daffainfo 558 cves 1116 info 1157 http 3103
panel 503 dhiyaneshdk 415 exposed-panels 509 high 854 file 60
lfi 454 pikpikcu 315 vulnerabilities 445 medium 642 network 49
xss 351 pdteam 261 technologies 249 critical 401 dns 17
wordpress 341 geeknik 177 exposures 199 low 178
exposure 287 dwisiswant0 165 misconfiguration 194 unknown 6
rce 281 princechaddha 127 workflows 185
cve2021 273 0x_akoko 126 token-spray 152
tech 263 gy741 115 default-logins 93
wp-plugin 246 pussycat0x 107 takeovers 67

253 directories, 3449 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

Alt

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️