Nuclei Vulnerability Scanner tools | fast and customizable
Hello, Everyone Today we discuss one awesome tool for security engineers (bug hunter and pentester) that is one Nuclei project discovery tool. Nuclei have written in go language. This tool work on YAML templates. Nuclei providing fast scanning on a collection of hosts. Nuclei give scanning for various types of protocols including TCP, DNS, HTTP, etc. With powerful and flexible templating, All kinds of security checks with Nuclei.
How do works:
How to install and use Nuclei-Templates?
so here we started nuclei installation firstly we need a go language in our os so we install a golang in our machines.
Install golang: Download links: https://golang.org/doc/install?download=go1.14.6.linux-amd64.tar.gz
Go To Download Folder And Run the command:
- tar -C /usr/local -xzf go1.14.6.linux-amd64.tar.gz
Add path environment in our os:
- export PATH=$PATH:/usr/local/go/bin
Now we have installed go language in our machine. Now we started the installation of nuclei.
Nuclei Download Github link: https://github.com/projectdiscovery/nuclei.git
firstly copy this link and go to terminal
- git clone https://github.com/projectdiscovery/nuclei.git
- cd nuclei/v2/cmd/nuclei/
- go build
- cp nuclei /usr/local/bin
Now we have successfully installed nuclei in our machine
As above seen we have successfully installed both things so we need nuclei-templates
Nuclei-template GitHub link: https://github.com/projectdiscovery/nuclei-templates.git
- git clone https://github.com/projectdiscovery/nuclei-templates.git
- cd nuclei-templates
then here we have templates also so now we started testing on hosts
finally its works.
command: cat domain.txt | nuclei -t /home/crion007/nuclei-templates/cves > result.txt
but we can also scan individual URL testing with nuclei
command: nuclei -u http://example.com
For more Reference: https://github.com/projectdiscovery/nuclei