Nuclei

Nuclei is a vulnerability scanner that leverages simple YAML-based templates. It allows design of custom vulnerability detection scenarios that mimic real-world conditions.

Table of Contents

• Installation
• Usage
• Reference

Installation

sudo apt install nuclei

Update templates

nuclei -update-templates

Usage

Executing nuclei on multiple targets (urls, hosts, ips, cidrs, asn):

nuclei -l targets.txt

Examples

nuclei -l targets.burp -im burp

nuclei -l openapi.yaml -im openapi

nuclei -u https://ginandjuice.shop/

nuclei -w workflows/wordpress-workflow.yaml -severity critical,high -list http_urls.txt

nuclei -proxy http://proxy.example.com:8080 -u https://ginandjuice.shop/

Reference

• Nuclei (GitHub)
• Nuclei Overview (ProjectDiscovery)
• Nuclei templates (GitHub)