Community template engine
Thousands of YAML detection templates contributed by security researchers worldwide and pulled from the upstream feed.
Scanner · CVE
Nuclei CVE Scanner.
Hosted. Templates kept current.
Nuclei is a fast, template-based vulnerability scanner from ProjectDiscovery, with thousands of community-contributed detections. VulnScanners runs the scanner and keeps templates current — you pick a target, get findings, get a PDF.
About the project
What is Nuclei?
ProjectDiscovery describes Nuclei as “a fast, template based vulnerability scanner focusing on extensive configurability, massive extensibility and ease of use.” Detections are authored as YAML files; the upstream template repository is updated continuously by the community. We track that feed so your scans run against current templates.
- Maintainer
- ProjectDiscovery
- Templates
- Community feed, YAML
- License
- MIT
- Source
- GitHub ↗
Capabilities
What Nuclei does
All features below come from upstream Nuclei. We don't re-implement them — we host them.
Multi-protocol coverage
Templates target HTTP, DNS, TCP, SSL, WHOIS, JavaScript, and file/code patterns — not just web.
CVE detection
Named-CVE templates for high-impact issues like Log4Shell, alongside thousands of lesser-known CVE checks.
Misconfiguration & exposure checks
Default credentials, exposed config files, open admin panels, takeover-prone DNS records, SSL/TLS misconfigurations.
Low false-positive design
Templates encode real-world conditions — Nuclei reduces noise by only matching when the actual exploit precondition is observed.
Parallel request execution
Request clustering and concurrency built into the engine; large targets finish quickly.
Why hosted
Same scanner. None of the operational tax.
Templates kept current
We sync the community template feed on our side. You never ship a scan against last month's detection set.
Static source IP
Scans originate from our fixed range — allowlist once, scan forever.
PDF report on every scan
Findings grouped by severity with the raw Nuclei output preserved alongside the deliverable.
Use cases
Where Nuclei earns its keep
Continuous CVE sweep
Run after every major CVE drop to see which client assets are exposed before the news cycle catches up.
Pre-engagement triage
Point Nuclei at a target on day one of an engagement and immediately surface the low-hanging known issues.
Pair with Nmap output
Run Nmap first for the surface map, then Nuclei to deepen the assessment on the services Nmap surfaces.
From the blog
Nuclei guides
Nuclei Templates: A Practical Guide
Template syntax, matchers, custom templates, and how to keep the feed current.
Nmap vs Nuclei vs ZAP
When each tool is the right answer — and how to layer all three.
Best Open-Source Vulnerability Scanners (2026)
Honest comparison of Nmap, Nuclei, ZAP, OpenVAS, and Trivy.
Vulnerability Management SLAs
Setting realistic SLAs by severity and asset criticality — and hitting them.
One credit. One Nuclei scan. One PDF.
Credit packs start at $10. No subscription, no seats, no overages.