nuclei v2.4.1 releases: fast tool for configurable targeted scanning

nuclei

Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.

It is used to send requests across targets based on a template leading to zero false positives and providing effective scanning for known paths. Main use cases for nuclei are during the initial reconnaissance phase to quickly check for low-hanging fruits or CVEs across targets that are known and easily detectable. It uses a retryablehttp-go library designed to handle various errors and retries in case of blocking by WAFs, this is also one of our core modules from custom-queries.

Feature

• Simple and modular codebase making it easy to contribute.
• Fast And fully configurable using a template-based engine.
• Handles edge cases doing retries, backoffs, etc for handling WAFs.
• Smart matching functionality for zero false-positive scanning.

Changelog v2.4.1

04667f6 Added Deserialization helpers to generate payloads within templates
76de3a1 Added Optional self update for nuclei engine (nuclei -update)
c227e6c Added Refreshed CLI Help menu with Grouping options (nuclei -h)
9aa7834 Added DS (DNSSec) query support in DNS module by @ChriZzn
25be233 Fixed a bug to allow tags + exclude tags to work together (nuclei -tags exposure -etags config)
97460f3 Fixed a bug causing stats to print on stdout
48307e3 Fixed a bug to display cookie headers with debug flag
3143d5a Multiple improvements 2dc3b0a, 2b735c2, 3143d5a by @TheSecEng

Use

1. Running nuclei with a single template.

This will run the tool against all the hosts in urls.txt and returns the matched results.

> nuclei -l urls.txt -t git-core.yaml -o results.txt

You can also pass the list of hosts at standard input (STDIN). This allows for easy integration in automation pipelines.

This will run the tool against all the hosts in urls.txt and returns the matched results.

> cat urls.txt | nuclei -t git-core.yaml -o results.txt

2. Running nuclei with multiple templates.

This will run the tool against all the hosts in urls.txt with all the templates in the path-to-templates directory and returns the matched results.

> nuclei -l urls.txt -t "path-to-templates/*.yaml" -o results.txt

3. Automating nuclei with subfinder and any other similar tool.

> subfinder -d hackerone.com | httprob | nuclei -t "path-to-templates/*.yaml" -o results.txt

Nuclei supports glob expression ending in .yaml meaning multiple templates can be easily passed to be executed one after the other. Please refer to this guide to build your own custom templates.

Download

Copyright (c) 2020 Exposed Atoms