SaaSHub helps you find the best software and product alternatives Learn more →
Top 11 nuclei Open-Source Projects
-
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
-
scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
-
axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
-
cent
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place (by xm1k3)
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
Discord-Recon
Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server
-
OrgASM
A tool for Oragnized ASM (Attack Surface Mapper). Subdomains enumeration, IPs scans, Vulnerability assesment...
-
Nuclei-Template-CVE-2022-1388-BIG-IP-iControl-REST-Exposed
This vulnerability may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands, create or delete files, or disable services. There is no data plane exposure; this is a control plane issue only.
Project mention: Script kiddie tools preferred by the hackers of this channel? | /r/hacking | 2023-07-08Check https://github.com/projectdiscovery/nuclei mostly for CVEs.
For the query string, you don’t have to implement your own DSL. Elasticsearch supports it out of the box. You could POST a JSON object to “/_search” but you can also do a GET with the “q” query parameter.
Documentation: https://www.elastic.co/guide/en/elasticsearch/reference/curr...
In the Golang library you can use the “Search.WithQuery” option. This means you don’t have to construct a JSON request body.
Here’s an example: https://github.com/taythebot/archer/blob/main/pkg/elasticsea...
The Elasticsearch Golang library is a real pain to use. It was meant as a low level library so they didn’t add any types. However they are currently working on a typed client! The documentation is a bit lacking but going through go.dev you can find all the methods you need. This still means you need to JSON decode the response, but it helps you build queries, which is a step up.
Typed Client: https://www.elastic.co/guide/en/elasticsearch/client/go-api/...
nuclei related posts
-
Script kiddie tools preferred by the hackers of this channel?
-
The Elasticsearch Rant
-
Link CVE to installed applications?
-
XSS vulnerabilities discovered in ServiceNow - CVE-2022-38463
-
Are there any good automated attack tools besides Pentera?
-
Free vulnerability scanners
-
Spring4Shell: An Application Vulnerable to RCE
-
A note from our sponsor - SaaSHub
www.saashub.com | 11 May 2024
Index
What are some of the best open-source nuclei projects? This list will help you:
Project | Stars | |
---|---|---|
1 | nuclei-templates | 8,075 |
2 | scan4all | 5,261 |
3 | reconftw | 5,252 |
4 | axiom | 3,837 |
5 | cent | 775 |
6 | ReconPi | 705 |
7 | nuclei-sdk | 109 |
8 | Discord-Recon | 69 |
9 | archer | 39 |
10 | OrgASM | 26 |
11 | Nuclei-Template-CVE-2022-1388-BIG-IP-iControl-REST-Exposed | 24 |
Sponsored