projectdiscovery / nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
☆23,001Updated this week
Alternatives and similar repositories for nuclei:
Users that are interested in nuclei are comparing it to the libraries listed below
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆10,010Updated this week
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.☆8,401Updated this week
- Fast passive subdomain enumeration tool.☆11,533Updated last week
- Fast web fuzzer written in Go☆13,818Updated 2 weeks ago
- In-depth attack surface mapping and asset discovery☆12,840Updated this week
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for att…☆5,111Updated this week
- Directory/File, DNS and VHost busting tool written in Go☆11,451Updated last week
- A fast, simple, recursive content discovery tool written in Rust.☆6,425Updated 2 weeks ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,194Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,769Updated 8 months ago
- An OOB interaction gathering server and client library☆3,714Updated this week
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,316Updated 3 months ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,203Updated 6 months ago
- Monitor linux processes without root permissions☆5,370Updated 2 years ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆6,203Updated this week
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆17,366Updated this week
- Adversary Emulation Framework☆9,210Updated this week
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆7,865Updated 2 months ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,652Updated 4 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,125Updated 2 months ago
- Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management☆3,946Updated 3 weeks ago
- HTTP parameter discovery suite.☆5,584Updated 2 months ago
- A Tool for Domain Flyovers☆5,751Updated 2 years ago
- Fetch all the URLs that the Wayback Machine knows about for a domain☆3,848Updated 11 months ago
- A Workflow Engine for Offensive Security☆5,565Updated this week
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,265Updated 6 months ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,606Updated 3 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,495Updated last year
- Nikto web server scanner☆9,194Updated 2 months ago
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️☆6,048Updated last week