Nuclei (ProjectDiscovery)

Fast, YAML-templated vulnerability scanner — community-driven rules for web, API, network, and cloud misconfig.

Free

Pricing Tier

Medium

Learning Curve

1–2 weeks to tune templates

Implementation

small, medium, large, enterprise

Best For

Visit website ↗🔖 Save to Stack Ask AI about Nuclei (ProjectDiscovery)

✓ Use when

Security teams running continuous surface scans, bug bounty hunters, and red teams needing fast signature-driven testing.

✗ Avoid when

Teams looking for deep SAST or SCA — Nuclei is about active probing of exposed assets, not codebase analysis.

What is Nuclei (ProjectDiscovery)?

Nuclei is an open-source scanner from ProjectDiscovery where templates (YAML) define exactly what to check — a CVE signature, an exposed admin panel, a misconfigured header. The community maintains 10,000+ templates covering CVEs, misconfigurations, default creds, and exposures. Widely used by red teams, bug bounty hunters, and security operations. ProjectDiscovery Cloud adds managed scanning and asset discovery.

Key features

✓10,000+ community templates

✓YAML template language

✓Fast parallel scanning

✓DNS, HTTP, TCP, headless, code templates

✓CI integration for continuous scanning

Integrations

GitHubJiraSlack

💰 Real-world pricing

What people actually pay

No price data yet — be the first to share

No price data yet for Nuclei (ProjectDiscovery). Help the community — share what you pay (anonymized).

User Reviews

Be the first to review this tool