Skip to main content

nuclei

Nuclei is a fast, multi-purpose template-based vulnerability scanner designed to enhance automated security workflows in Canva. It identifies vulnerabilities through a methodical scanning process, making it integral to proactive security assessment strategies.

Ideal Use Cases & Fit

Nuclei excels in scenarios where rapid vulnerability assessments are required across multiple targets. It is particularly effective for organizations using a CI/CD pipeline that benefits from automated security testing through rapid scans. The tool is best suited for environments that involve scanning lists of URLs or hosts for vulnerabilities, making it an ideal choice during early reconnaissance phases. However, it's less appropriate for deeper, context-specific explorations that may require more tailored tools.

Value in Workflows

In security workflows, Nuclei enhances efficiency and accuracy by enabling quick scans and automated detection of known vulnerabilities. It serves well in the reconnaissance phase, integrating seamlessly into automated workflows for continuous security monitoring. Its capabilities to utilize various templates also allow for adaptability in responding to different security needs, providing a robust foundation for layered security strategies.

Input Data

Nuclei expects input data as a file containing newline-separated URLs or hosts to scan. This is crucial for directing the scanning process effectively. For example, an input file might look like:

https://example1.com
https://example2.com

Configuration

  • input: Defines the primary target file containing URLs or hosts (required).
  • silent: Silently save output to the specified output file (default: true).
  • jsonl: Write output in JSON Line format (default: true).
  • proxy: List of HTTP/SOCKS5 proxies to utilize for requests (required).
  • timeout: Duration in seconds to wait before considering a request as a timeout (default: 10).
  • rate-limit: Sets the maximum number of requests to send per second (default: 150).
  • max-host-error: Specifies the maximum allowed errors for a host before skipping it in the scan (default: 30).
  • scan-strategy: Chooses a strategy to employ during scanning (default: auto).
  • concurrency: Maximum number of templates to execute in parallel (default: 25).