Nuclei
by projectdiscovery
Community-Powered Vulnerability Scanner with YAML Templates
Lightning-fast security scanner using community-driven YAML templates to detect vulnerabilities across web apps, APIs, networks, and cloud infrastructure.
- 26,647+ GitHub stars
- Built with Go
- Community-maintained library with 5000+ YAML-based vulnerability templates
- MIT License license
About This Project
Nuclei transforms vulnerability scanning by leveraging a global community of security researchers who contribute detection templates written in simple YAML. Instead of maintaining complex scanning logic, you can tap into thousands of pre-built templates that identify everything from CVEs to misconfigurations across your entire attack surface.
Built with Go for exceptional performance, Nuclei excels at scanning large-scale infrastructure without the overhead of traditional security tools. The YAML-based DSL makes it remarkably easy to write custom detection rules, allowing security teams to quickly respond to emerging threats by creating and sharing templates within hours of disclosure.
What sets Nuclei apart is its versatilityβit seamlessly scans web applications, REST APIs, network services, DNS records, and cloud configurations from a single tool. The community-driven template library grows daily, ensuring you're always protected against the latest vulnerabilities without waiting for vendor updates.
Whether you're running security audits, monitoring production systems, or integrating automated scanning into CI/CD pipelines, Nuclei provides the speed and flexibility needed for modern DevSecOps workflows. Its lightweight architecture and extensive template ecosystem make it an essential tool for proactive security testing.
Key Features
- Community-maintained library with 5000+ YAML-based vulnerability templates
- High-performance concurrent scanning engine built in Go for speed at scale
- Simple YAML DSL for creating custom detection rules without programming expertise
- Multi-target scanning across web apps, APIs, networks, DNS, and cloud platforms
- Seamless CI/CD integration with JSON output and workflow automation support
- Active community contributing daily templates for zero-day and trending vulnerabilities
How You Can Use It
Automated vulnerability scanning in CI/CD pipelines before production deployment
Continuous monitoring of web applications and APIs for newly disclosed CVEs
Bug bounty reconnaissance to identify security weaknesses across target domains
Cloud infrastructure security audits to detect misconfigurations in AWS, Azure, or GCP
Network service enumeration and vulnerability assessment during penetration testing
Subdomain takeover detection across organizational web properties
Who Is This For?
Security engineers, penetration testers, DevSecOps teams, bug bounty hunters, and application security professionals seeking automated vulnerability detection