From f1b8f466c8e9a8b446b958d86543d1c244487522 Mon Sep 17 00:00:00 2001 From: Fazle Arefin Date: Fri, 16 Feb 2024 03:24:06 +1100 Subject: [PATCH] nuclei: add page (#12252) * nuclei: add page * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> * Update pages/common/nuclei.md Co-authored-by: Juri Dispan * Update pages/common/nuclei.md Co-authored-by: K.B.Dharun Krishna * Update pages/common/nuclei.md Co-authored-by: K.B.Dharun Krishna * Update pages/common/nuclei.md Co-authored-by: K.B.Dharun Krishna * Update pages/common/nuclei.md Co-authored-by: K.B.Dharun Krishna * Update pages/common/nuclei.md Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> --------- Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> Co-authored-by: Juri Dispan Co-authored-by: K.B.Dharun Krishna --- pages/common/nuclei.md | 36 ++++++++++++++++++++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 pages/common/nuclei.md diff --git a/pages/common/nuclei.md b/pages/common/nuclei.md new file mode 100644 index 000000000..a606fe347 --- /dev/null +++ b/pages/common/nuclei.md @@ -0,0 +1,36 @@ +# nuclei + +> Fast and customizable vulnerability scanner based on a simple YAML based DSL. +> More information: . + +- [u]pdate `nuclei` [t]emplates to the latest released version: + +`nuclei -ut` + +- [l]ist all [t]emplates with a specific [p]rotocol [t]ype: + +`nuclei -tl -pt {{dns|file|http|headless|tcp|workflow|ssl|websocket|whois|code|javascript}}` + +- Run an [a]utomatic web [s]can using wappalyzer technology detection specifying a target [u]RL/host to scan: + +`nuclei -as -u {{scanme.nmap.org}}` + +- Run HTTP [p]rotocol [t]ype templates of high and critical severity, [e]xporting results to [m]arkdown files inside a specific directory: + +`nuclei -severity high,critical -pt http -u {{http://scanme.sh}} -me {{markdown_directory}}` + +- Run all templates using a different [r]ate [l]imit and maximum [b]ulk [s]ize with silent output (only showing the findings): + +`nuclei -rl {{150}} -bs {{25}} -c {{25}} -silent -u {{http://scanme.sh}}` + +- Run the WordPress [w]orkflow against a WordPress site: + +`nuclei -w {{path/to/nuclei-templates/workflows/wordpress-workflow.yaml}} -u {{https://sample.wordpress.site}}` + +- Run one or more specific [t]emplates or directory with [t]emplates with [v]erbose output in `stderr` and [o]utput detected issues/vulnerabilities to a file: + +`nuclei -t {{path/to/nuclei-templates/http}} -u {{http://scanme.sh}} -v -o {{results}}` + +- Run scan based on one or more [t]emplate [c]onditions: + +`nuclei -tc {{"contains(tags, 'xss') && contains(tags, 'cve')"}} -u {{https://vulnerable.website}}`