Nuclei

Nuclei automates the detection of vulnerabilities in IT systems (web apps, cloud infrastructure, networks, etc.).

Docs

Nuclei Overview - ProjectDiscovery DocumentationProjectDiscovery Documentation

Basic Parameters

-u URL
-t template directory
-as automatic scan
-s critical,high,medium (SEVERITY)

Markdown results
-me results/

Update Nuclei Engine

nuclei -update

Update Nulcei templates (-ut) but this is done automatically!

nuclei -ut

Network Scan (-target)

nuclei -target 192.168.1.0/24

Web URL scan (-u)

nuclei -u http://server 

Automatic scan (-as) with HTTP proxy

nuclei -u http://server -as --proxy http://127.0.0.1:8080

Automatic scans with (-rate-limit) 4 requests per second against proxy 8088

nuclei -u http://server -as -rate-limit 4 --proxy http://127.0.0.1:8088

Scan according severities (-s)

nuclei -u http://server -s critical,high,medium

Templates (-t) and Tags (-tags)

GitHub - projectdiscovery/nuclei-templates: Community curated list of templates for the nuclei engine to find security vulnerabilities.GitHub

nuclei -u http://server -t  http/exposures/ --proxy http://127.0.0.1:8080

nuclei -u http://server -tags cve --proxy http://127.0.0.1:8080