Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
GitHub Action de7abb3f09 Auto Generated CVE annotations [Thu Oct 6 19:51:19 UTC 2022] 🤖 2022-10-06 19:51:19 +00:00
.github workflow fixes 2022-08-29 02:33:35 +05:30
cnvd Dashboard Content Enhancements (#5497) 2022-09-29 09:38:41 -04:00
cves Auto Generated CVE annotations [Thu Oct 6 19:51:19 UTC 2022] 🤖 2022-10-06 19:51:19 +00:00
default-logins Update and rename prtg-weak-login.yaml to prtg-default-login.yaml 2022-10-01 14:19:54 +05:30
dns Added Salesforce Lightning Community detection (#4843) 2022-07-16 18:03:42 +05:30
exposed-panels Update and rename exposed-panels/glpi-status-page.yaml to tech/glpi-status-page.yaml 2022-10-07 00:54:35 +05:30
exposures Update s3cfg-config.yaml 2022-10-06 02:05:53 +05:30
file Dashboard Content Enhancements (#5497) 2022-09-29 09:38:41 -04:00
fuzzing Auto Generated CVE annotations [Sat Aug 27 04:41:18 UTC 2022] 🤖 2022-08-27 04:41:18 +00:00
headless Dashboard Content Enhancements (#5372) 2022-09-16 15:50:10 -04:00
helpers Replace google-dork with google-query in all templates (#5328) 2022-09-09 04:09:14 +05:30
iot Update hp-color-laserjet-detect.yaml 2022-09-29 11:25:24 +05:30
miscellaneous Update and rename miscellaneous/glpi-detect.yaml to exposed-panels/glpi-status-page.yaml 2022-10-06 11:15:39 +05:30
misconfiguration Update aem-dump-contentnode.yaml 2022-10-02 00:16:29 +05:30
network Merge pull request #5420 from projectdiscovery/network-templates-enhancements 2022-09-26 21:01:10 +05:30
ssl Add template to detect SSL Issuer 2022-09-19 12:02:54 +05:45
takeovers Delete brightcove-takeover.yaml 2022-09-23 13:59:20 +05:30
tech Update and rename exposed-panels/glpi-status-page.yaml to tech/glpi-status-page.yaml 2022-10-07 00:54:35 +05:30
technologies Merge pull request #5569 from pascalheidmann/extend-shopware-template 2022-10-07 00:57:27 +05:30
token-spray Merge pull request #5542 from 0xlittleboy/patch-4 2022-10-04 15:03:18 +05:30
vulnerabilities Update unauthenticated-duplicator-disclosure.yaml 2022-10-01 20:59:50 +05:30
workflows Add oracle-peoplesoft-workflow.yaml (#5390) 2022-09-16 22:56:56 +05:30
.gitignore Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
.new-additions Auto Generated New Template Addition List [Thu Oct 6 19:41:14 UTC 2022] 🤖 2022-10-06 19:41:14 +00:00
.nuclei-ignore Update .nuclei-ignore 2022-09-22 00:34:17 +05:30
.pre-commit-config.yml pre-commit-config update 2021-09-11 12:16:55 +05:30
.yamllint pre-commit-config update 2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-01-27 23:10:18 +05:30
CONTRIBUTING.md Remove: 2022-01-25 14:38:53 -05:00
LICENSE.md misc changes 2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md Fixes contribute link in PR template (#4152) 2022-04-15 13:30:01 +05:30
README.md Auto README Update [Sat Oct 1 18:56:33 UTC 2022] 🤖 2022-10-01 18:56:33 +00:00
README_KR.md Create README_KR.md (#5022) 2022-08-06 12:19:34 +05:30
TEMPLATES-STATS.json Auto Generated Templates Stats [Sat Oct 1 18:56:15 UTC 2022] 🤖 2022-10-01 18:56:15 +00:00
TEMPLATES-STATS.md Auto Generated Templates Stats [Sat Oct 1 18:56:15 UTC 2022] 🤖 2022-10-01 18:56:15 +00:00
TOP-10.md Auto Generated Templates Stats [Sat Oct 1 18:56:15 UTC 2022] 🤖 2022-10-01 18:56:15 +00:00
contributors.json chore: Add myself to the list 2022-08-31 00:02:50 +02:00
wappalyzer-mapping.yml Added additional tags mapping file (#4108) 2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 1459 daffainfo 633 cves 1438 info 1491 http 3929
panel 667 dhiyaneshdk 606 exposed-panels 674 high 1066 file 77
edb 573 pikpikcu 329 vulnerabilities 515 medium 776 network 52
lfi 513 pdteam 270 technologies 287 critical 513 dns 17
xss 504 geeknik 193 exposures 281 low 228
wordpress 430 dwisiswant0 169 misconfiguration 246 unknown 14
exposure 419 0x_akoko 167 token-spray 230
cve2021 356 princechaddha 151 workflows 190
rce 340 ritikchaddha 138 default-logins 106
wp-plugin 327 pussycat0x 135 file 77

299 directories, 4307 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

Alt

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️