Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
Prince Chaddha ecef1e65f9
Merge pull request #5640 from robotshell/nozomi-panel
Added nozomi-panel.yaml Template
2022-10-14 15:01:54 +05:30
.github workflow fixes 2022-08-29 02:33:35 +05:30
cnvd Dashboard Content Enhancements (#5582) 2022-10-10 15:22:59 -04:00
cves Auto Generated CVE annotations [Fri Oct 14 09:24:23 UTC 2022] 🤖 2022-10-14 09:24:23 +00:00
default-logins Update jmx-default-login.yaml 2022-10-13 12:10:06 +05:30
dns Added Salesforce Lightning Community detection (#4843) 2022-07-16 18:03:42 +05:30
exposed-panels Merge pull request #5640 from robotshell/nozomi-panel 2022-10-14 15:01:54 +05:30
exposures update tags 2022-10-13 15:42:07 +05:30
file Dashboard Content Enhancements (#5582) 2022-10-10 15:22:59 -04:00
fuzzing Using "host-redirects" instead of "redirects" to avoid scanning 3rd party / out of scope hosts. (#5491) 2022-10-08 02:57:25 +05:30
headless Dashboard Content Enhancements (#5372) 2022-09-16 15:50:10 -04:00
helpers Replace google-dork with google-query in all templates (#5328) 2022-09-09 04:09:14 +05:30
iot Using "host-redirects" instead of "redirects" to avoid scanning 3rd party / out of scope hosts. (#5491) 2022-10-08 02:57:25 +05:30
miscellaneous Merge pull request #5609 from geeknik/patch-64 2022-10-11 13:44:30 +05:30
misconfiguration Update and rename misconfiguration/apache/apache-tomcat-snoop.yaml to cves/2007/CVE-2007-2449.yaml 2022-10-13 14:56:08 +05:30
network Dashboard Content Enhancements (#5582) 2022-10-10 15:22:59 -04:00
ssl mismatched ssl detection + ssl template updates (#5256) 2022-10-08 03:06:24 +05:30
takeovers Delete brightcove-takeover.yaml 2022-09-23 13:59:20 +05:30
technologies Merge pull request #5641 from UdinChan/udin 2022-10-14 14:47:34 +05:30
token-spray Dashboard Content Enhancements (#5582) 2022-10-10 15:22:59 -04:00
vulnerabilities Auto Generated CVE annotations [Wed Oct 12 10:44:42 UTC 2022] 🤖 2022-10-12 10:44:42 +00:00
workflows Revert "Update mantisbt-workflow.yaml" 2022-10-13 14:13:42 +05:30
.gitignore Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
.new-additions Auto Generated New Template Addition List [Fri Oct 14 09:21:16 UTC 2022] 🤖 2022-10-14 09:21:16 +00:00
.nuclei-ignore Update .nuclei-ignore 2022-10-13 20:53:59 +05:30
.pre-commit-config.yml pre-commit-config update 2021-09-11 12:16:55 +05:30
.yamllint pre-commit-config update 2021-09-11 12:16:55 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-01-27 23:10:18 +05:30
CONTRIBUTING.md Remove: 2022-01-25 14:38:53 -05:00
LICENSE.md misc changes 2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md Fixes contribute link in PR template (#4152) 2022-04-15 13:30:01 +05:30
README.md Auto README Update [Sat Oct 8 07:55:45 UTC 2022] 🤖 2022-10-08 07:55:45 +00:00
README_KR.md Create README_KR.md (#5022) 2022-08-06 12:19:34 +05:30
TEMPLATES-STATS.json Auto Generated Templates Stats [Sat Oct 8 07:55:26 UTC 2022] 🤖 2022-10-08 07:55:26 +00:00
TEMPLATES-STATS.md Auto Generated Templates Stats [Sat Oct 8 07:55:26 UTC 2022] 🤖 2022-10-08 07:55:26 +00:00
TOP-10.md Auto Generated Templates Stats [Sat Oct 8 07:55:26 UTC 2022] 🤖 2022-10-08 07:55:26 +00:00
contributors.json chore: Add myself to the list 2022-08-31 00:02:50 +02:00
wappalyzer-mapping.yml Added additional tags mapping file (#4108) 2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 1474 daffainfo 638 cves 1453 info 1515 http 3970
panel 680 dhiyaneshdk 610 exposed-panels 687 high 1071 file 77
edb 573 pikpikcu 336 vulnerabilities 515 medium 779 network 52
lfi 515 pdteam 271 technologies 292 critical 520 dns 17
xss 506 geeknik 194 exposures 285 low 229
wordpress 438 dwisiswant0 170 misconfiguration 246 unknown 16
exposure 424 0x_akoko 167 token-spray 234
cve2021 358 princechaddha 151 workflows 190
rce 342 ritikchaddha 139 default-logins 106
wp-plugin 333 pussycat0x 135 file 77

299 directories, 4349 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

Alt

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️