Community curated list of templates for the nuclei engine to find security vulnerabilities.

Go to file

GitHub Action cc3e2ba7fa Auto Generated CVE annotations [Sat Apr 30 20:57:29 UTC 2022] 🤖		2022-04-30 20:57:29 +00:00
.github	workflow updates	2022-03-23 20:55:35 +05:30
cnvd	refactor: Description field uniformization	2022-04-22 13:38:41 +03:00
cves	Auto Generated CVE annotations [Sat Apr 30 20:57:29 UTC 2022] 🤖	2022-04-30 20:57:29 +00:00
default-logins	Update and rename default-login/openemr/OpenEMR-default-login.yaml to default-logins/openemr/openemr-default-login.yaml	2022-04-26 03:58:39 +04:00
dns	refactor: Description field uniformization	2022-04-22 13:38:41 +03:00
exposed-panels	Create xoops-installation-wizard.yaml	2022-05-01 01:05:24 +05:30
exposures	tags update	2022-04-27 03:06:21 +05:30
file	refactor: Description field uniformization	2022-04-22 13:38:41 +03:00
fuzzing	Tenda Template Enhancementleanup (#4257 )	2022-04-29 10:34:34 +05:30
headless	refactor: Description field uniformization	2022-04-22 13:38:41 +03:00
helpers	Added wordpress-xmlrpc-brute-force.yaml (#3445 )	2021-12-29 22:04:23 +05:30
iot	Improved AXIS detection (#4185 )	2022-04-23 19:58:33 +05:30
miscellaneous	Update and rename extract-firebase-database.yaml to firebase-database-extractor.yaml	2022-04-25 03:04:22 +04:00
misconfiguration	Update aem-xss-childlist-selector.yaml	2022-05-01 02:04:56 +05:30
network	refactor: Description field uniformization	2022-04-22 13:38:41 +03:00
ssl	refactor: Description field uniformization	2022-04-22 13:38:41 +03:00
takeovers	refactor: Description field uniformization	2022-04-22 13:38:41 +03:00
technologies	Sucuri Website Firewall - Not Configured Default page (#4254 )	2022-04-29 12:14:52 +05:30
token-spray	Update api-bitly.yaml (#4265 )	2022-04-29 22:58:27 +05:30
vulnerabilities	Update and rename vulnerabilities/other/viaware-rce.yaml to cves/2021/CVE-2021-36356.yaml	2022-05-01 01:57:39 +05:30
workflows	Google API Token Usage Enumeration (#4131 )	2022-04-24 16:12:04 +05:30
.gitignore	Merge branch 'master' into dynamic_attributes	2021-08-19 16:23:26 +03:00
.new-additions	Auto Generated New Template Addition List [Sat Apr 30 20:57:23 UTC 2022] 🤖	2022-04-30 20:57:23 +00:00
.nuclei-ignore	Update .nuclei-ignore	2022-03-25 23:58:22 +05:30
.pre-commit-config.yml	pre-commit-config update	2021-09-11 12:16:55 +05:30
.yamllint	pre-commit-config update	2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md	Create CODE_OF_CONDUCT.md	2021-01-27 23:10:18 +05:30
CONTRIBUTING.md	Remove:	2022-01-25 14:38:53 -05:00
LICENSE.md	misc changes	2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md	Fixes contribute link in PR template (#4152 )	2022-04-15 13:30:01 +05:30
README.md	Auto README Update [Thu Apr 28 08:24:14 UTC 2022] 🤖	2022-04-28 08:24:15 +00:00
TEMPLATES-STATS.json	Auto Generated Templates Stats [Thu Apr 28 08:23:53 UTC 2022] 🤖	2022-04-28 08:23:53 +00:00
TEMPLATES-STATS.md	Auto Generated Templates Stats [Thu Apr 28 08:23:53 UTC 2022] 🤖	2022-04-28 08:23:53 +00:00
TOP-10.md	Auto Generated Templates Stats [Thu Apr 28 08:23:53 UTC 2022] 🤖	2022-04-28 08:23:53 +00:00
contributors.json	Ivanti EPM CSA Code Injection(CVE-2021-44529) (#3937 )	2022-03-20 13:14:37 +05:30
wappalyzer-mapping.yml	Added additional tags mapping file (#4108 )	2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

Documentation • Contributions • Discussion • Community • FAQs • Join Discord

Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG	COUNT	AUTHOR	COUNT	DIRECTORY	COUNT	SEVERITY	COUNT	TYPE	COUNT
cve	1131	daffainfo	559	cves	1135	info	1165	http	3129
panel	505	dhiyaneshdk	415	exposed-panels	511	high	861	file	60
lfi	457	pikpikcu	315	vulnerabilities	444	medium	649	network	49
xss	356	pdteam	262	technologies	250	critical	405	dns	17
wordpress	349	geeknik	177	exposures	202	low	178
exposure	289	dwisiswant0	165	misconfiguration	194	unknown	6
rce	285	0x_akoko	127	workflows	186
cve2021	278	princechaddha	127	token-spray	153
tech	264	gy741	116	default-logins	93
wp-plugin	251	pussycat0x	107	takeovers	67

254 directories, 3476 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️