Fast YAML-based vulnerability scanner for applications, APIs, networks, DNS, and cloud configs
- Stars29.2k
- Forks3.5k
- Open Issues103
MIT
- Go
- TypeScript
- HTML
About Nuclei
Nuclei is a high-performance vulnerability scanner that uses simple YAML templates to define detection logic. It finds issues across applications, APIs, networks, DNS, and cloud configurations, with scans you can customize for specific targets and checks.
Ultra-fast parallel scan processing and request clustering keep large scans quick, and multiple protocols are supported including TCP, DNS, HTTP, SSL, WHOIS, JavaScript, and Code. It runs against single targets, target lists, or whole networks and slots into CI/CD pipelines for detection and regression testing.
A large community template library covers known CVEs and misconfigurations, and templates are easy to write and extend. Nuclei runs as a standalone CLI tool on your own machine, with optional integrations for Jira, Splunk, GitHub, Elastic, and GitLab.
Key features
- YAML templates for custom vulnerability detection scenarios
- Parallel scan processing with request clustering
- Multiple protocols including TCP, DNS, HTTP, SSL, WHOIS, JavaScript, and Code
- CI/CD integration for vulnerability detection and regression testing
- Integrates with Jira, Splunk, GitHub, Elastic, and GitLab
Details
- First released
- 2020
- Platforms
- CLI
- Deployment
- Self-hostable
- License
- MIT
- Templates
- YAML-based
- Protocols
- TCP, DNS, HTTP, SSL, WHOIS