Community curated list of templates for the nuclei engine to find security vulnerabilities.
Go to file
GitHub Action fb854ab029 Auto Generated Templates Checksum [Mon Apr 24 18:30:44 UTC 2023] 🤖 2023-04-24 18:30:44 +00:00
.github Revert "Update cve-annotate.yml" 2023-03-27 00:25:49 +05:30
cnvd Merge pull request #7019 from j4vaovo/patch-9 2023-04-13 23:37:38 +05:30
cves Auto Generated CVE annotations [Mon Apr 24 12:46:24 UTC 2023] 🤖 2023-04-24 12:46:24 +00:00
default-logins Update trassir-default-login.yaml 2023-04-21 17:09:55 +05:30
dns Merge branch 'projectdiscovery:main' into main 2023-03-04 15:42:00 +05:30
exposed-panels Delete tomcat-exposed-examples.yaml 2023-04-21 17:25:27 +05:30
exposures Merge pull request #7087 from kazet/ftp-creds-high-severity 2023-04-24 15:56:11 +05:30
file Merge pull request #7062 from sduc/patch-5 2023-04-16 10:51:15 +05:30
fuzzing Cleanups. 2023-03-10 15:24:54 -05:00
headless rename variable suffix->filename 2023-03-23 00:34:20 +05:30
helpers Auto WordPress Plugins Update [Mon Apr 24 04:02:21 UTC 2023] 🤖 2023-04-24 04:02:21 +00:00
iot dos2unix conversions (#6969) 2023-03-27 14:22:40 -04:00
miscellaneous dos2unix conversions (#6969) 2023-03-27 14:22:40 -04:00
misconfiguration Merge pull request #6995 from eremit4/patch-1 2023-04-21 18:23:40 +05:30
network Update beanstalk-service.yaml 2023-04-21 17:12:11 +05:30
osint Update rubygems.yaml 2023-04-21 17:14:01 +05:30
ssl Merge pull request #6958 from kchason/kubernetes-fake-certificate 2023-03-28 11:57:49 +05:30
takeovers matcher update for aws-bucket-takeover 2023-03-07 21:32:07 +05:30
technologies updated the fingerprint for Caddy 2023-04-23 08:29:57 -05:00
token-spray dos2unix conversions (#6969) 2023-03-27 14:22:40 -04:00
vulnerabilities Merge pull request #7107 from projectdiscovery/requests 2023-04-21 17:30:09 +05:30
workflows updated name 2023-02-11 10:30:33 +05:30
.gitignore Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
.new-additions Auto Generated New Template Addition List [Mon Apr 24 10:26:31 UTC 2023] 🤖 2023-04-24 10:26:31 +00:00
.nuclei-ignore misc update 2023-03-18 14:23:30 +05:30
.pre-commit-config.yml pre-commit-config update 2021-09-11 12:16:55 +05:30
.yamllint Added max empty lines + yml extension exclusion (#6639) 2023-01-30 11:33:41 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-01-27 23:10:18 +05:30
CONTRIBUTING.md Remove: 2022-01-25 14:38:53 -05:00
LICENSE.md misc changes 2021-01-30 12:15:43 +05:30
PULL_REQUEST_TEMPLATE.md Fixes contribute link in PR template (#4152) 2022-04-15 13:30:01 +05:30
README.md Auto README Update [Mon Apr 24 04:53:58 UTC 2023] 🤖 2023-04-24 04:53:58 +00:00
README_KR.md Create README_KR.md (#5022) 2022-08-06 12:19:34 +05:30
TEMPLATES-STATS.json Auto Generated Templates Stats [Mon Apr 24 04:53:32 UTC 2023] 🤖 2023-04-24 04:53:32 +00:00
TEMPLATES-STATS.md Auto Generated Templates Stats [Mon Apr 24 04:53:32 UTC 2023] 🤖 2023-04-24 04:53:32 +00:00
TOP-10.md Auto Generated Templates Stats [Mon Apr 24 04:53:32 UTC 2023] 🤖 2023-04-24 04:53:32 +00:00
contributors.json added template to check for spookyssl cve 2022-11-22 12:54:02 -07:00
cves.json Auto Generated cves.json [Fri Apr 21 11:46:15 UTC 2023] 🤖 2023-04-21 11:46:15 +00:00
cves.json-checksum.txt Auto Generated cves.json [Fri Apr 21 11:46:15 UTC 2023] 🤖 2023-04-21 11:46:15 +00:00
templates-checksum.txt Auto Generated Templates Checksum [Mon Apr 24 18:30:44 UTC 2023] 🤖 2023-04-24 18:30:44 +00:00
wappalyzer-mapping.yml Added additional tags mapping file (#4108) 2022-04-11 18:46:37 +05:30

README.md

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

DocumentationContributionsDiscussionCommunityFAQsJoin Discord


Templates are the core of the nuclei scanner which powers the actual scanning engine. This repository stores and houses various templates for the scanner provided by our team, as well as contributed by the community. We hope that you also contribute by sending templates via pull requests or Github issues to grow the list.

Nuclei Templates overview

An overview of the nuclei template project, including statistics on unique tags, author, directory, severity, and type of templates. The table below contains the top ten statistics for each matrix; an expanded version of this is available here, and also available in JSON format for integration.

Nuclei Templates Top 10 statistics

TAG COUNT AUTHOR COUNT DIRECTORY COUNT SEVERITY COUNT TYPE COUNT
cve 1770 dhiyaneshdk 805 cves 1749 info 2816 http 5695
panel 873 dwisiswant0 793 exposed-panels 865 high 1230 file 117
wordpress 769 daffainfo 662 osint 633 medium 1007 network 90
wp-plugin 660 pikpikcu 353 technologies 562 critical 654 dns 18
exposure 657 pdteam 278 vulnerabilities 554 low 215
osint 638 pussycat0x 235 misconfiguration 432 unknown 25
xss 624 geeknik 219 exposures 375
tech 599 ricardomaia 214 token-spray 240
edb 595 ritikchaddha 196 workflows 190
lfi 538 0x_akoko 179 default-logins 128

382 directories, 6373 files.

📖 Documentation

Please navigate to https://nuclei.projectdiscovery.io for detailed documentation to build new or your own custom templates. We have also added a set of templates to help you understand how things work.

💪 Contributions

Nuclei-templates is powered by major contributions from the community. Template contributions , Feature Requests and Bug Reports are more than welcome.

Alt

💬 Discussion

Have questions / doubts / ideas to discuss? Feel free to open a discussion on Github discussions board.

👨‍💻 Community

You are welcome to join the active Discord Community to discuss directly with project maintainers and share things with others around security and automation. Additionally, you may follow us on Twitter to be updated on all the things about Nuclei.

Thanks again for your contribution and keeping this community vibrant. ❤️