Skip to content

Nuclei

Nuclei is a fast, template-based vulnerability scanner that targets web services.

Installation

# Go install
go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest

Basic Usage

# Single target
nuclei -u https://target.com

# List of targets
nuclei -l targets.txt

# Update templates
nuclei -update-templates

Template Selection

# Run only high severity
nuclei -u https://target.com -severity high,critical

# Filter by tags
nuclei -u https://target.com -tags cve,misconfig

# Exclude noisy templates
nuclei -u https://target.com -exclude-tags dos,bruteforce

Scenarios

# Scan a list of live hosts from httpx
nuclei -l live-hosts.txt -severity medium,high,critical

# Focus on critical CVEs only
nuclei -u https://target.com -tags cve -severity critical

# Run templates for exposed panels and admin portals
nuclei -u https://target.com -tags panel,exposed,login

# Use a custom template directory
nuclei -u https://target.com -t ./templates/custom

Output

# JSON output
nuclei -u https://target.com -json -o nuclei.json