[NUCLEI 101] Nuclei 101 #bash #linux #go #nuclei #101

NUCLEI-101.md

NUCLEI 101

• Keep installing templates (bug) /root/go/bin/nuclei -ut -ud nuclei-templates -v

• List templates /root/go/bin/nuclei -tl

• Run on a website /root/go/bin/nuclei -u hxxps://xxx.xxx.xxx.xxx

• Run a custom template on a website /root/go/bin/nuclei -u https://this.local -t nuclei_templates/this.yaml

• Run a custom template on a list of websites and output to file /root/go/bin/nuclei -t nuclei_templates/this.yaml -t list.txt -o output.txt

• Run a folder of templates on a list of websites and output to file /root/go/bin/nuclei -t nuclei_templates -t list.txt -o output.txt

• Run a workflow for wordpress /root/go/bin/nuclei -w workflows/wordpress-workflow.yaml -u https://mywebsite.local -o output.txt

template_example.yaml

id: xmlrpc_access
info:
  name: xmlrpc access
  author: me
  severity: high
  description: Check if xmlrpc is not accessible
  tags: wordpress,xmlrpc
requests:
  - method: GET
    redirects: true
    path:
      - "{{BaseURL}}/xmlrpc.php"
    max-redirects: 3
    matchers:
      - type: status
        status: 
          - 403
        negative: yes

workflow_example.yaml

id: wordpress-workflow

info:
  name: Wordpress Security Checks
  author: kiblyn11,zomsop82
  description: A simple workflow that runs all wordpress related nuclei templates on a given target.

workflows:
  - template: http/technologies/wordpress-detect.yaml
    subtemplates:
      - tags: wordpress