dast-nuclei

Solid

Fast, template-based vulnerability scanning using ProjectDiscovery's Nuclei with extensive community templates covering CVEs, OWASP Top 10, misconfigurations, and security issues across web applications, APIs, and infrastructure. Use when: (1) Performing rapid vulnerability scanning with automated CVE detection, (2) Testing for known vulnerabilities and security misconfigurations in web apps and APIs, (3) Running template-based security checks in CI/CD pipelines with customizable severity thresholds, (4) Creating custom security templates for organization-specific vulnerability patterns, (5) Scanning multiple targets efficiently with concurrent execution and rate limiting controls.

DevOps & Infrastructure 335 stars 29 forks Updated today

Install

View on GitHub

Quality Score: 85/100

Stars 20%
84
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
80
License 10%
0
Description 5%
100

Skill Content

# DAST with Nuclei ## Overview Nuclei is a fast, template-based vulnerability scanner from ProjectDiscovery that uses YAML templates to detect security vulnerabilities, misconfigurations, and exposures across web applications, APIs, networks, and cloud infrastructure. With 7,000+ community templates covering CVEs, OWASP vulnerabilities, and custom checks, Nuclei provides efficient automated security testing with minimal false positives. ## Quick Start ### Installation ```bash # Install via Go go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest # Or using Docker docker pull projectdiscovery/nuclei:latest # Update templates (automatically downloads 7000+ community templates) nuclei -update-templates ``` ### Basic Vulnerability Scan ```bash # Scan single target with all templates nuclei -u https://target-app.com # Scan with specific severity levels nuclei -u https://target-app.com -severity critical,high # Scan multiple targets from file nuclei -list targets.txt -severity critical,high,medium -o results.txt ``` ### Quick CVE Scan ```bash # Scan for specific CVEs nuclei -u https://target-app.com -tags cve -severity critical,high # Scan for recent CVEs nuclei -u https://target-app.com -tags cve -severity critical -template-condition "contains(id, 'CVE-')" ``` ## Core Workflow ### Workflow Checklist Progress: [ ] 1. Install Nuclei and update templates to latest version [ ] 2. Define target scope (URLs, domains, IP ranges) [ ] 3. Select appropriate...

Details

Author
aiskillstore
Repository
aiskillstore/marketplace
Created
5 months ago
Last Updated
today
Language
Python
License
None

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

dast-scanner

Dynamic Application Security Testing execution and management. Configure and execute OWASP ZAP and Nuclei scans, run authenticated scanning, manage scan policies and scope, correlate findings with SAST results, and generate comprehensive vulnerability reports.

1,160 Updated today
a5c-ai
DevOps & Infrastructure Listed

security-analyzer

Comprehensive security vulnerability analysis for codebases and infrastructure. Scans dependencies (npm, pip, gem, go, cargo), containers (Docker, Kubernetes), cloud IaC (Terraform, CloudFormation), and detects secrets exposure. Fetches live CVE data from OSV.dev, calculates risk scores, and generates phased remediation plans with TDD validation tests. Use when users mention security scan, vulnerability, CVE, exploit, security audit, penetration test, OWASP, hardening, dependency audit, container security, or want to improve security posture.

335 Updated today
aiskillstore
Data & Documents Solid

vulnerability-scanning--assessment

Dependency auditing, CVE detection, configuration security review, CVSS scoring, and prioritized vulnerability reporting

50 Updated 2 days ago
Masriyan
AI & Automation Solid

vulnerability-scanner

Security vulnerability scanning for dependencies and code, with CVE database checking and risk assessment

1,160 Updated today
a5c-ai
API & Backend Featured

performing-vulnerability-scanning-with-nessus

Performs authenticated and unauthenticated vulnerability scanning using Tenable Nessus to identify known vulnerabilities, misconfigurations, default credentials, and missing patches across network infrastructure, servers, and applications. The scanner correlates findings with CVE databases and CVSS scores to produce prioritized remediation guidance. Activates for requests involving vulnerability scanning, Nessus assessment, patch compliance checking, or automated vulnerability detection.

13,115 Updated today
mukul975