h0tak88r/nuclei_templates

# Nuclei 模板集合 一个由社区整理的 Nuclei 模板集合，用于漏洞扫描和安全测试。 ## 关于 [Nuclei](https://github.com/projectdiscovery/nuclei) 是一个基于简单 YAML 模板的快速且可定制的漏洞扫描器。该仓库汇集了来自各种安全研究人员和组织的高质量 Nuclei 模板，为安全测试提供全面的资源。 ## 什么是 Nuclei 模板？ Nuclei 模板是 YAML 文件，定义了如何检测 Web 应用程序、API 和基础设施中的特定漏洞、配置错误或安全问题。每个模板包含： - 检测逻辑 - 严重性分类 - 参考和修复指南 ## 用法 要在 Nuclei 中使用这些模板： ``` # 安装 Nuclei go install -v github.com/projectdiscovery/nuclei/v2/cmd/nuclei@latest # 克隆此仓库 git clone https://github.com/yourusername/nuclei_templates.git cd nuclei_templates # 使用自定义 templates 运行 Nuclei nuclei -u https://example.com -t ./templates/ # 或使用特定的 template 目录 nuclei -u https://example.com -t ./templates/cves/ ``` ## 模板来源 此集合包含来自以下社区贡献者的模板： ### 通用模板 - [ayadim/Nuclei-bug-hunter](https://github.com/ayadim/Nuclei-bug-hunter) - [pikpikcu/nuclei-templates](https://github.com/pikpikcu/nuclei-templates) - [esetal/nuclei-bb-templates](https://github.com/esetal/nuclei-bb-templates) - [ARPSyndicate/kenzer-templates](https://github.com/ARPSyndicate/kenzer-templates) - [medbsq/ncl](https://github.com/medbsq/ncl) - [notnotnotveg/nuclei-custom-templates](https://github.com/notnotnotveg/nuclei-custom-templates) - [foulenzer/foulenzer-templates](https://github.com/foulenzer/foulenzer-templates) - [clarkvoss/Nuclei-Templates](https://github.com/clarkvoss/Nuclei-Templates) - [z3bd/nuclei-templates](https://github.com/z3bd/nuclei-templates) - [joanbono/nuclei-templates](https://github.com/joanbono/nuclei-templates) - [peanuth8r/Nuclei_Templates](https://github.com/peanuth8r/Nuclei_Templates) - [ree4pwn/my-nuclei-templates](https://github.com/ree4pwn/my-nuclei-templates) - [im403/nuclei-temp](https://github.com/im403/nuclei-temp) - [geeknik/nuclei-templates-1](https://github.com/geeknik/nuclei-templates-1) - [geeknik/the-nuclei-templates](https://github.com/geeknik/the-nuclei-templates) - [obreinx/nuceli-templates](https://github.com/obreinx/nuceli-templates) - [zinminphyo0/KozinTemplates](https://github.com/zinminphyo0/KozinTemplates) - [n1f2c3/mytemplates](https://github.com/n1f2c3/mytemplates) - [kabilan1290/templates](https://github.com/kabilan1290/templates) - [smaranchand/nuclei-templates](https://github.com/smaranchand/nuclei-templates) - [Saimonkabir/Nuclei-Templates](https://github.com/Saimonkabir/Nuclei-Templates) - [yavolo/nuclei-templates](https://github.com/yavolo/nuclei-templates) - [sadnansakin/my-nuclei-templates](https://github.com/sadnansakin/my-nuclei-templates) - [5cr1pt/templates](https://github.com/5cr1pt/templates) - [rahulkadavil/nuclei-templates](https://github.com/rahulkadavil/nuclei-templates) - [Nithissh0708/Custom-Nuclei-Templates](https://github.com/Nithissh0708/Custom-Nuclei-Templates) - [shifa123/detections](https://github.com/shifa123/detections) - [daffainfo/my-nuclei-templates](https://github.com/daffainfo/my-nuclei-templates) - [javaongsan/nuclei-templates](https://github.com/javaongsan/nuclei-templates) - [AshiqurEmon/nuclei_templates](https://github.com/AshiqurEmon/nuclei_templates.git) - [ChiaraNRTT96/BountySkill](https://github.com/ChiaraNRTT96/BountySkill) - [NitinYadav00/My-Nuclei-Templates](https://github.com/NitinYadav00/My-Nuclei-Templates) - [securitytest3r/nuclei_templates_work](https://github.com/securitytest3r/nuclei_templates_work) - [MR-pentestGuy/nuclei-templates](https://github.com/MR-pentestGuy/nuclei-templates) - [thelabda/nuclei-templates](https://github.com/thelabda/nuclei-templates) - [1in9e/my-nuclei-templates](https://github.com/1in9e/my-nuclei-templates) - [redteambrasil/nuclei-templates](https://github.com/redteambrasil/nuclei-templates) - [Saptak9983/Nuclei-Template](https://github.com/Saptak9983/Nuclei-Template) - [Harish4948/Nuclei-Templates](https://github.com/Harish4948/Nuclei-Templates) - [R-s0n/Custom_Vuln_Scan_Templates](https://github.com/R-s0n/Custom_Vuln_Scan_Templates) - [meme-lord/Custom-Nuclei-Templates](https://github.com/meme-lord/Custom-Nuclei-Templates) - [Akokonunes/Private-Nuclei-Templates](https://github.com/Akokonunes/Private-Nuclei-Templates) - [rafaelwdornelas/my-nuclei-templates](https://github.com/rafaelwdornelas/my-nuclei-templates) - [rafaelcaria/Nuclei-Templates](https://github.com/rafaelcaria/Nuclei-Templates) - [panch0r3d/nuclei-templates](https://github.com/panch0r3d/nuclei-templates) - [0x727/ObserverWard_0x727](https://github.com/0x727/ObserverWard_0x727) - [ethicalhackingplayground/erebus-templates](https://github.com/ethicalhackingplayground/erebus-templates) - [Str1am/my-nuclei-templates](https://github.com/Str1am/my-nuclei-templates) - [d3sca/Nuclei_Templates](https://github.com/d3sca/Nuclei_Templates) - [c-sh0/nuclei_templates](https://github.com/c-sh0/nuclei_templates) - [glyptho/templatesallnuclei](https://github.com/glyptho/templatesallnuclei) - [0xAwali/Virtual-Host](https://github.com/0xAwali/Virtual-Host) - [praetorian-inc/chariot-launch-nuclei-templates](https://github.com/praetorian-inc/chariot-launch-nuclei-templates) - [brinhosa/brinhosa-nuclei-templates](https://github.com/brinhosa/brinhosa-nuclei-templates) - [wr00t/templates](https://github.com/wr00t/templates) - [alexrydzak/rydzak-nuclei-templates](https://github.com/alexrydzak/rydzak-nuclei-templates) - [adampielak/nuclei-templates](https://github.com/adampielak/nuclei-templates) - [ShangRui-hash/my-nuclei-templates](https://github.com/ShangRui-hash/my-nuclei-templates) - [dk4trin/templates-nuclei](https://github.com/dk4trin/templates-nuclei) - [Elsfa7-110/mynuclei-templates](https://github.com/Elsfa7-110/mynuclei-templates) - [ping-0day/templates](https://github.com/ping-0day/templates) - [wasp76b/nuclei-templates](https://github.com/wasp76b/nuclei-templates) - [th3r4id/nuclei-templates](https://github.com/th3r4id/nuclei-templates) - [themastersunil/Nuclei-TamplatesBackup](https://github.com/themastersunil/Nuclei-TamplatesBackup.git) - [blazeinfosec/nuclei-templates](https://github.com/blazeinfosec/nuclei-templates) - [ekinsb/Nuclei-Templates](https://github.com/ekinsb/Nuclei-Templates) - [KeepHowling/all_freaking_nuclei_templates](https://github.com/KeepHowling/all_freaking_nuclei_templates) - [Odayex/Random-Nuclei-Templates](https://github.com/Odayex/Random-Nuclei-Templates) - [themastersunil/nucleiDB](https://github.com/themastersunil/nucleiDB) - [Linuxinet/nuclei-templates](https://github.com/Linuxinet/nuclei-templates) - [aels/CVE-2022-37042](https://github.com/aels/CVE-2022-37042) - [tamimhasan404/Open-Source-Nuclei-Templates-Downloader](https://github.com/tamimhasan404/Open-Source-Nuclei-Templates-Downloader) - [pentest-dev/Profesional-Nuclei-Templates](https://github.com/pentest-dev/Profesional-Nuclei-Templates) - [Aituglo/nuclei-templates](https://github.com/Aituglo/nuclei-templates) - [badboy-sft/badboy_17-Nuclei-Templates-Collection](https://github.com/badboy-sft/badboy_17-Nuclei-Templates-Collection) - [NightRang3r/misc_nuclei_templates](https://github.com/NightRang3r/misc_nuclei_templates) - [0XParthJ/Nuclei-Templates](https://github.com/0XParthJ/Nuclei-Templates) - [trungkay2/Nuclei-template](https://github.com/trungkay2/Nuclei-template) - [ExpLangcn/NucleiTP](https://github.com/ExpLangcn/NucleiTP) ### 专用模板 #### 移动安全 - [optiv/mobile-nuclei-templates](https://github.com/optiv/mobile-nuclei-templates) #### SAP 系统 - [randomstr1ng/nuclei-sap-templates](https://github.com/randomstr1ng/nuclei-sap-templates) #### Kubernetes - [sharathkramadas/k8s-nuclei-templates](https://github.com/sharathkramadas/k8s-nuclei-templates) #### 特定漏洞 - [thebrnwal/Content-Injection-Nuclei-Script](https://github.com/thebrnwal/Content-Injection-Nuclei-Script) - [System00-Security/backflow](https://github.com/System00-Security/backflow) - [kh4sh3i/CVE-2022-23131](https://github.com/kh4sh3i/CVE-2022-23131) - [justmumu/SpringShell](https://github.com/justmumu/SpringShell) #### Log4j - [trickest/log4j](https://github.com/trickest/log4j) - [toramanemre/apache-solr-log4j-CVE-2021-44228](https://github.com/toramanemre/apache-solr-log4j-CVE-2021-44228) - [toramanemre/log4j-rce-detect-waf-bypass](https://github.com/toramanemre/log4j-rce-detect-waf-bypass) - [test502git/log4j-fuzz-head-poc](https://github.com/test502git/log4j-fuzz-head-poc) ### Gists - [ResistanceIsUseless](https://gist.github.com/ResistanceIsUseless/e46848f67706a8aa1205c9d2866bff31) - [0x240x23elu](https://gist.github.com/0x240x23elu) ## 免责声明 ⚠️ **重要提示**：这些模板仅用于授权的安全测试。在扫描您不拥有或没有明确授权测试的系统之前，请务必获取适当的许可。 - 本仓库的维护者不对这些模板的滥用负责 - 请在合法和道德的范围内使用这些工具 - 请遵循负责任的披露实践 ## 许可证 此集合汇总了来自各种来源的模板。请参阅各个仓库以了解其特定的许可证。 ## 资源 - [Nuclei 文档](https://nuclei.projectdiscovery.io/) - [官方 Nuclei 模板](https://github.com/projectdiscovery/nuclei-templates) - [模板编写指南](https://nuclei.projectdiscovery.io/templating-guide/) - [Nuclei Discord 社区](https://discord.gg/projectdiscovery) ## 致谢 感谢所有向社区贡献其模板的安全研究人员和组织。您的工作有助于使互联网更加安全。

标签：API安全, CVE, Google, Go语言, JSON输出, Nuclei, PoC, Web安全, YAML, 反取证, 安全库, 安全模板, 安全测试, 安全评估, 密码管理, 插件系统, 攻击性安全, 数字签名, 数据展示, 日志审计, 暴力破解, 程序破解, 红队, 网络安全, 蓝队分析, 误配置检测, 隐私保护