PyNuclei is an unofficial Python library for Nuclei Scanner.
- Run Nuclei Scans for all or selected templates
- By default uses random User-Agents for every scan.
- User-defined rate limit (Default: 150)
pip3 install PyNucleifrom PyNuclei import Nuclei
"""
Nuclei(templatePath)
Args:
nucleiPath [str][Optional]: The path of nuclei binary file
Returns:
PyNuclei.Nuclei class object
nucleiScanner.scan()
Args:
host [str]: The hostname of the target which Nuclei will run against
templates [list][Optional]: If the templates list is not provided all nuclei templates from the "nucleiTemplates" property will be executed
generatePoc [str]: Generate Burpsuite like Request-Response or Terminal screenshot.
userAgents [str][Optional]: If not provided random User-Agents will be used.
rateLimit [int][Optional]: Defaults to 150.
maxHostError [int][Optional]: It determines to skip host for scanning after n number of connection failures
stopAfter [int][Optional]: Stop scanning after getting n number of findings, only use for template paths instead of template categories
metrics [bool][Optional]: It shows the scan progress.
verbose [bool][Optional]: Show nuclei results output and PyNuclei warning logs.
Returns:
result [dict]: Scan results from all templates.
"""
nucleiPath = "/opt/app/src/bin/nuclei"
nucleiScanner = Nuclei(nucleiPath)
scanResult = nucleiScanner.scan(
"example.com",
templates=["cves", "network", "ssl"],
generatePoc=True,
rateLimit=150,
verbose=False,
metrics=False,
maxHostError=30,
stopAfter=None
)
print(scanResult)from PyNuclei import Nuclei
nucleiScanner = Nuclei()
"""
All active templates.
"""
print(nucleiScanner.nucleiTemplates)
[
"cnvd", "cves", "default-logins", "exposed-panels",
"exposures", "file", "misconfiguration",
"miscellaneous", "takeovers", "technologies",
"token-spray", "vulnerabilities", "network",
"dns", "iot", "ssl"
]
"""
All ignored templates.
"""
print(nucleiScanner.ignoredTemplates)
[
"headless", "fuzzing", "helpers",
]
"""
Returns details of all nuclei templates in JSON format
"""
print(nucleiScanner.returnTemplatesDetails())NOTE: You can run ignored templates by passing them in the template parameter in nucleiScanner.scan(<host>, template=nucleiScanner.ignoredTemplates)
PyNuclei extends its core capabilities with a powerful feature for generating visual Proof-of-Concepts (PoCs). This functionality allows users to create image-based representations of identified vulnerabilities, significantly enhancing reporting and communication.
You can generate Terminal based PoCs, BurpSuite like request/response PoCs, visually displaying the HTTP interactions that demonstrate the vulnerability, and even code execution POCs, showing the resulting output of arbitrary code run.
Furthermore, PyNuclei automates the process of highlighting critical vulnerability details within the generated PoC images, making it instantly clear where the identified issues lie.
from PyNuclei import Nuclei
"""
This will update Nuclei engine & Nuclei Templates.
"""
Nuclei.updateNuclei(verbose=True)
