Nuclei is a tool that allows you to scan web targets for various vulnerabilities and misconfigurations using predefined templates¹. Here are 10 powerful one-liners that you can use with Nuclei to find interesting and potentially exploitable issues:
Scan for all CVEs in a target list:
cat targets.txt | nuclei -t cves/ -o results.txt
Scan for all exposed panels in a target list:
cat targets.txt | nuclei -t exposed-panels/ -o results.txt
Scan for all subdomain takeovers in a target list:
cat targets.txt | nuclei -t subdomain-takeover/ -o results.txt
Scan for all XSS vulnerabilities in a target list:
cat targets.txt | nuclei -t xss/ -o results.txt
Scan for all SSRF vulnerabilities in a target list:
cat targets.txt | nuclei -t ssrf/ -o results.txt
Scan for all SQL injection vulnerabilities in a target list:
cat targets.txt | nuclei -t sqli/ -o results.txt
Scan for all open redirects in a target list:
cat targets.txt | nuclei -t redirects/ -o results.txt
Scan for all misconfigured CORS policies in a target list:
cat targets.txt | nuclei -t cors/ -o results.txt
Scan for all prototype pollution vulnerabilities in a target list:
cat targets.txt | nuclei -t prototype-pollution/ -o results.txt
Scan for all RCE vulnerabilities in a target list:
cat targets.txt | nuclei -t rce/ -o results.txt