Home / projectdiscovery / nuclei-templates
Repository Analysis

projectdiscovery/nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

1.1 Likely human-written View on GitHub
1.1
Adjusted Score
1.1
Raw Score
100%
Time Factor
2026-05-30
Last Push
12,432
Stars
JavaScript
Language
802,537
Lines of Code
13569
Files
654
Pattern Hits
2026-05-31
Scan Date

Score History

Severity Breakdown

CRITICAL 19HIGH 0MEDIUM 26LOW 609

Pattern Findings

654 matches across 11 categories. Click a row to expand file-level details.

Over-Commented Block511 hits · 511 pts
SeverityFileLineSnippet
LOWfile/nodejs/admzip-path-overwrite.yaml21# digest: 490a00463044022061517677a0b41a2048a4ca951bba30d615fe02b7791d2e1a33d1f771f6f4da6f02204501001dfc2023b6991ba087ac
LOWfile/malware/linux-billgates-malware.yaml21# digest: 490a004630440220184c397c7fd836ea859b4d2a559c5b4e4b7323d74457b54e1425d550bb8f9b3102202d6c8f5248559f1cf6516b1954
LOWfile/malware/linux-elknot-malware.yaml21# digest: 4b0a00483046022100c734a4af006f818bc037684ff4e8e50ad8158ded1ddb0ae486c9ecea65468dcd0221008dccff81b7f3c764ebe273
LOWfile/malware/linux-mrblack-malware.yaml21# digest: 4a0a00473045022100e33c5be30571d2e839165e054cda2e79a2d87dc28285530c5fab366fdb2a7a9a0220243c5d77c7710a005371cb28
LOWfile/malware/powerware-malware.yaml21# digest: 4b0a0048304602210099ced653db22ecf65b1d4b8e105184c008e8b8c456b3cb1d3ac4ceb007b164ea02210080f8bbf9349523226c46b2
LOWfile/malware/genome-malware.yaml21# digest: 490a0046304402203885c1e1fea58815fb62065dd769049fdd748e0b25fcce78990173dfaf964b28022010f716e17f0aefd8101aca28f9
LOWfile/malware/cerber-malware.yaml21# digest: 490a0046304402206e71cd3a48736a66f5e8b1d7e443705bdabdaff67e236381606825cfe80e085502207deb258e8a2bcc1fadbe4db78e
LOWfile/malware/backoff-malware.yaml21# digest: 490a0046304402203be42bb6e2c6a9da7f40bc606243c208e54aecd65f0111c040fd1ded4b86688b022030f1d6bbdfdc558f7ab0ee0ac5
LOWfile/malware/linux-tsunami-malware.yaml21# digest: 4a0a00473045022030b2c32323237e320255f092a6a9bffb534a060af91d09bfb2786b2fa7aa6580022100a01e4ac473c910cd45167c9f
LOWfile/malware/alina-malware.yaml21# digest: 4a0a00473045022100c78a826afc54c6d9c0160502c72c5675fb24eaaea70c2e9945b7a94734321aee022079b875270352e32cb1412365
LOWfile/malware/hash/bluetermite-emdivi-sfx-hash.yaml21# digest: 4b0a00483046022100c3951dfa51d81f15562dfc7ef7e1497fa05b5213c180f176f881ea810893180e022100aebc7f5996bd826ebad5aa
LOWfile/malware/hash/neuron2-malware-hash.yaml21# digest: 4a0a00473045022057a3cc9016ee089610bcc5af109d9dbaf0bde60bc5fdfdb057ffd3e4bae1455d022100f1bbca254ab98e605b988949
LOW…/malware/hash/ironpanda-dnstunclient-malware-hash.yaml21# digest: 4a0a00473045022100d7ab00733ccf321352d7a3e46fd6e5767d90c417f23272272cee2b55530c112102203ab101444e91c1161c2322b6
LOWfile/malware/hash/rokrat-malware-hash.yaml21# digest: 4b0a00483046022100ada9ced2dcd53e3a02f97b0edfbf8a37251c835f792b65df53d65eb2e6561f1102210088142fd7a1a621177759a9
LOWfile/malware/hash/blackenergy-vbs-malware-hash.yaml21# digest: 4a0a00473045022002c76751e5ad566cb8413c023da8be49add7c2ae10cf0bd813bbef9df4e4653c022100c702b2bf659b7b6b394d0e3d
LOWfile/malware/hash/ironPanda-htran-malware-hash.yaml21# digest: 490a0046304402206abb355203e7a99d65a1e59fce6d6af343c71e971ce80b1ee29b1dc5643099a00220794c4b795c756b64b19e054718
LOWfile/malware/hash/sofacy-Winexe-malware-hash.yaml21# digest: 4a0a00473045022008dcf54a9d49c8cf96f45b7dd7f2bf24111fdb47bd90b009ca4d56ca7e74a30d022100e0d6ca405635d596d4e13e31
LOWfile/malware/hash/red-leaves-malware-hash.yaml21# digest: 490a00463044022033af3784098a74644e2dc58f04dd4d8d73c8033f94de00612205abccd3ca990902201f191afd7b60b1819756f6c0c0
LOWfile/malware/hash/locky-ransomware-hash.yaml21# digest: 4a0a0047304502206640dae42866d0e1f2b4cc08c9d50c9f16f06ead5f0fbaf4833a9002092be713022100f4ed1b00e32d8237ca1f1eda
LOWfile/malware/hash/passcv-signingcert-malware-hash.yaml21# digest: 4b0a00483046022100a770da1fd60f418f273cc937ac584fd19dbeb7b38324053c69c0c8d157ba87fb022100a69eef6ed853f0df982360
LOWfile/android/certificate-validation.yaml21# digest: 4a0a0047304502203a5b4da3f1e3509a4b87979b577ff32582a0e97a8592efd9da2249787b69766f022100a143c64fd79c5b864de39f00
LOWfile/android/dynamic-broadcast-receiver.yaml21# digest: 4a0a0047304502201d6d9d91f3bf0688b2e197b1e65e99ed215402020c93a41ee1d50f60a8017bca022100c90751e3ca81c6660254c7aa
LOWfile/android/file-scheme.yaml21
LOWfile/android/content-scheme.yaml21# digest: 490a004630440220024969d745e24011a0317f218f188bb52dd98791fee366406c8b32120306c44502201a5594ea0237b46b7d8008814b
LOWfile/android/webview-universal-access.yaml21# digest: 4a0a004730450220244279d551ed3d6c7866e2cda38b56b84243b747d999aeeb5c461bca9abfc494022100eacf68ac27db623c24f07c1a
LOWfile/android/webview-load-url.yaml21
LOWfile/android/webview-javascript.yaml21# digest: 4a0a0047304502203cdc416a537e7de6c000b408745102d25b14a776ee40ee722b884cca8db77570022100fc980c5288f4bf6e9b306806
LOWfile/android/webview-addjavascript-interface.yaml21
LOWfile/keys/credential-exposure-file.yaml1id: credentials-disclosure-file
LOWfile/keys/cloudinary.yaml21
LOWfile/keys/credentials.yaml21# digest: 4a0a00473045022100ed45636930eea463c9a324e1560f6b99c93be5752fa24a0f8043fb766c8264df022014c96d397124545cef351ead
LOWfile/keys/sauce-access-token.yaml21# digest: 490a0046304402205417b26b39c6d675c9a9ec4076d20265bf72ee71c8d4e0709c0c27ddfc24a70f022013c0639360eef3e6018835f3f2
LOWfile/keys/dynatrace-token.yaml21
LOWfile/keys/google/google-clientid.yaml21# digest: 490a004630440220787ce359623a444b8176ec5d794c8ea393b8848d2a3a8d9b60f6067f5fbdb5730220353b6961a1531dde14cfd1433f
LOWfile/keys/google/google-oauth-clientsecret.yaml21# digest: 490a00463044022032cc7a362b0fc8d5ae569b6817c209aaeb80bc3d44a78ff006d9fbc43bd0380502205c9def4766491f7b627ced96ef
LOWfile/electron/node-integration-enabled.yaml21# digest: 4a0a00473045022074f2ab6fd9101377f1652a7f843122204eb287fde08fb7e1a0e40290b921801f022100f8150b68cef266ec7a07d754
LOWnetwork/exposures/checkmk-info-disclosure.yaml41# digest: 490a0046304402203d93c8bc3581136a2a7e3435e98426f31f75fe5ad9f6ed5d9cfed6ba6af9db5b02201be8e4837c675880a8f2e8b619
LOWnetwork/enumeration/smtp/smtp-user-enum.yaml41# digest: 490a004630440220314d97a1538349418f1c1f44eb1cebfb049d692e8ade1c2795a1a67c47a4dd960220028f035b5d52a220cbe526fcf2
LOW…cs/schneider-modicon/schneider-modicon-340-detect.yaml41# digest: 4b0a00483046022100f303f6b5422f78165bfe13d5840ae4df9f7d81fde7a5afcbdfcf3467f7e5ba99022100ec4a67e0a26a40fa45510e
LOW…n/ics/allen-bradley/allen-bradley-guardplc-detect.yaml41# digest: 4b0a004830460221009e93039b52b35dd8fcd9f8a02d3151f158c1b56bc022581370edf5c3b857cf65022100f8b179d16bab2f9d60f9e1
LOWnetwork/cves/2023/CVE-2023-33246.yaml61# digest: 4a0a00473045022100ab8c53199b0c16e4c4fdb7add69bd54f85dcddc0cd46c651c15db110ac9a987702202672456828a216c47a79f024
LOWnetwork/cves/2020/CVE-2020-9274.yaml61# digest: 4b0a00483046022100983d9786603160d98f90ef54d75eae11d16dbe9ff557431ec6684d1ec1bbadb1022100d8ca4e477d329983663f38
LOWnetwork/cves/2011/CVE-2011-0762.yaml61# digest: 4a0a0047304502205056b3a338398d97caae87828726653b2ab709e0977013d5ec586ae4d0cabe22022100d716dc1b281c5cf9a7efc5ea
LOWcode/linux/audit/ssh-gssapiauthentication-disabled.yaml61# digest: 490a0046304402203ea0832a8c4b917fb2679f7ad2ab9487115c54adfcff441be71dbb40d59da13a02201683771b631252e5015bae4fbe
LOWcode/cves/2024/CVE-2024-10443.yaml61# digest: 4b0a00483046022100b3479464b35198103e5e792e4fd55cbfa332b9cfd6355365fdef7ba657c9b983022100b5e38af264cddc9bc23084
LOWcode/cves/2020/CVE-2020-13935.yaml181 }
LOWhttp/credential-stuffing/cloud/gitea-login-check.yaml41# digest: 4a0a00473045022100a81bf6c726ec7924b245a9163fc205edf54d09ff7f6f0ab7fd5c8a1a238968470220220cd6cd6aef5b9499ff83b7
LOWhttp/technologies/geth-server-detect.yaml41# digest: 4b0a00483046022100e8be33d56f52d9817da0794a1fa35380156824d4929441d64b03c4c20329cacb022100b15fd470d4715d21a41b71
LOWhttp/technologies/tyk-gateway-detect.yaml41# digest: 4a0a004730450220507c421ba38e391b181ac3ba0491f48abd5d249c0018b6fd987afb7705de60bb0221008e10a4e4a65a252f482d35d1
LOWhttp/technologies/citrix-hypervisor-page.yaml41# digest: 490a00463044022000c87f8c0f649a427599b10c96379ff9c3045f8e786aef1d1577ef7ed326388f022076522d2d4f03205a9f143b6b47
LOWhttp/technologies/pbootcms-detect.yaml41# digest: 4a0a004730450220378f37a85e77b1e829761e09d1845e3df7d8cd8e2e58f3235ec36d15e8421a25022100ce5e5f54b40998e318ee8ad3
LOWhttp/technologies/llamacpp-detect.yaml41# digest: 4b0a00483046022100d251dc3ced29f03682258ba8083d111a0d5e886ac162f83854fe69d64befe28c022100f5140cddf8faab2f109a45
LOWhttp/technologies/yeswiki-detect.yaml41# digest: 4b0a00483046022100de15cb9442febbc5205d06ea0616e01d0df70f5632f334c3afc816d742a699ec022100ecf9944b06791440a32a0a
LOWhttp/technologies/bigip-config-utility-detect.yaml41# digest: 490a00463044022027462e21bb7b71f15bac073ec5ebabf9ba8b0ae2e7e0cbbddf6cdaea72973e1b022075616aab34c08f3c0ce49ed0bb
LOWhttp/technologies/traggo-server-detect.yaml41# digest: 4a0a004730450220691cd0e1df99ca2d14e412cdd4a1427962300a7a7a73bb6ccfe5299faa632211022100bb15f0796577c30abb42e316
LOWhttp/technologies/versa-flexvnf-server.yaml41# digest: 4b0a00483046022100a602587c66de95351f17ac65b688c84b3b41c5ae80ae0f49b3d8cef6e7b461c2022100e71e5b5366b28f28675583
LOWhttp/technologies/catalog-creator-detect.yaml41# digest: 490a00463044022038dd76b0d391a12f1ae7eab818b82d052cda71341c21d4e9fa0dd7a65716ab3f0220155c8f8b0799bafcf1febe9b06
LOWhttp/technologies/wappalyzer-mapping.yml1# This is custom wappalyzer tech to tags mapping file used with nuclei automatic scan (-as)
LOWhttp/technologies/identity-server-v3-detect.yaml41# digest: 490a0046304402200dc53daace9ded2e829218937524a8aecb6e48a865b4e8a9fb086e54d3c3b02902204de45e0e29c448455fc811bfa8
LOWhttp/technologies/besu-server-detect.yaml41# digest: 4a0a0047304502205099b16c8704c567e9925d880135f4ff3904134f4bcbec1f16cdd8e5ebca2e92022100a6a298ad0405c9a9b7af1a90
451 more matches not shown…
Hallucination Indicators19 hits · 190 pts
SeverityFileLineSnippet
CRITICALhttp/cnvd/2023/CNVD-C-2023-76801.yaml44 cmd=org.apache.commons.io.IOUtils.toString(Runtime.getRuntime().exec("ipconfig").getInputStream())
CRITICALhttp/cves/2022/CVE-2022-38130.yaml8 The com.keysight.tentacle.config.ResourceManager.smsRestoreDatabaseZip() method is used to restore the HSQLDB databa
CRITICALhttp/cves/2024/CVE-2024-3408.yaml132 GET /dtale/test-filter/{{data_id}}?query=%40pd.core.frame.com.builtins.__import__(%27os%27).system(%27curl+{{int
CRITICALhttp/cves/2024/CVE-2024-0799.yaml8 An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-w
CRITICALhttp/cves/2020/CVE-2020-14750.yaml51 _nfpb=true&_pageLabel=&handle=com.tangosol.coherence.mvel2.sh.ShellSession("weblogic.work.ExecuteThread executeT
CRITICALhttp/cves/2020/CVE-2020-14883.yaml52 test_handle=com.tangosol.coherence.mvel2.sh.ShellSession('weblogic.work.ExecuteThread currentThread = (weblogic.
CRITICALhttp/cves/2020/CVE-2020-14882.yaml40 - "{{BaseURL}}/console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel=&handle=com.bea.core.repackaged.
CRITICAL…/kubernetes/deployments/k8s-memory-limits-not-set.yaml38 if (!deployment.spec.template.spec.containers.some(container => container.resources && container.resources.limit
CRITICAL…ubernetes/deployments/k8s-memory-requests-not-set.yaml38 if (!deployment.spec.template.spec.containers.some(container => container.resources && container.resources.reque
CRITICAL…ud/kubernetes/deployments/k8s-seccomp-profile-set.yaml39 deployment.spec.template.spec.containers.forEach(container => {
CRITICAL…ud/kubernetes/deployments/k8s-image-tag-not-fixed.yaml40 deployment.spec.template.spec.containers.forEach(container => {
CRITICAL…ubernetes/deployments/k8s-readiness-probe-not-set.yaml39 if (!deployment.spec.template.spec.containers.some(container => container.readinessProbe)) {
CRITICAL…bernetes/deployments/k8s-image-pull-policy-always.yaml39 if (!deployment.spec.template.spec.containers.every(container => container.imagePullPolicy === 'Always')) {
CRITICAL…tes/deployments/k8s-liveness-probe-not-configured.yaml38 if (!deployment.spec.template.spec.containers.some(container => container.livenessProbe)) {
CRITICAL…d/kubernetes/deployments/k8s-cpu-requests-not-set.yaml40 if (!deployment.spec.template.spec.containers.some(container => container.resources && container.resources.reque
CRITICAL…oud/kubernetes/deployments/k8s-cpu-limits-not-set.yaml40 if (!deployment.spec.template.spec.containers.some(container => container.resources && container.resources.limit
CRITICAL…bernetes/deployments/k8s-root-container-admission.yaml39 if (deployment.spec.template.spec.containers.some(container => container.securityContext && container.securityCo
CRITICALdast/vulnerabilities/ssti/oob/jinjava-oob.yaml23 - "{{%27a%27.getClass().forName(%27javax.script.ScriptEngineManager%27).newInstance().getEngineByName(%27JavaScr
CRITICALdast/vulnerabilities/ssti/oob/jinjava-oob.yaml24 - "{{%27a%27.getClass().forName(%27javax.script.ScriptEngineManager%27).newInstance().getEngineByName(%27JavaScr
Excessive Try-Catch Wrapping41 hits · 53 pts
SeverityFileLineSnippet
LOWcode/windows/enumeration/rdp-ntlm-info.yaml93 except Exception:
LOWcode/cves/2022/CVE-2022-42475.yaml94 except Exception as e:
LOWcode/cves/2022/CVE-2022-42475.yaml118 except Exception as e:
LOWcode/cves/2022/CVE-2022-42475.yaml166 except Exception as e:
LOWcode/cves/2025/CVE-2025-32433.yaml126 except Exception as e:
LOWcode/cves/2025/CVE-2025-32433.yaml169 except Exception as e:
LOWcode/cves/2025/CVE-2025-54309.yaml84 except Exception as e:
LOWcode/cves/2025/CVE-2025-54309.yaml110 except Exception as e:
LOWcode/cves/2025/CVE-2025-9242.yaml516 except Exception as e:
LOWcode/cves/2025/CVE-2025-9242.yaml538 except Exception as e:
MEDIUMcode/cves/2025/CVE-2025-9242.yaml477def test_connection(ip, port, timeout=20):
LOWcode/cves/2024/CVE-2024-55556.yaml128 except Exception:
LOWcode/cves/2024/CVE-2024-55556.yaml141 except Exception:
LOWcode/cves/2024/CVE-2024-55556.yaml148 except Exception:
MEDIUMcode/cves/2024/CVE-2024-55556.yaml149 print("Error decoding base64 values in the cipher data.")
LOWcode/cves/2024/CVE-2024-56331.yaml75 except Exception as e:
LOWcode/cves/2024/CVE-2024-56331.yaml117 except Exception as err:
LOWcode/cves/2024/CVE-2024-47575.yaml68 except Exception as e:
LOWcode/cves/2024/CVE-2024-47575.yaml113 except Exception:
LOWcode/cves/2026/CVE-2026-20182.yaml238 except Exception as e:
LOWcode/cves/2026/CVE-2026-20182.yaml246 except Exception:
LOWcode/cves/2026/CVE-2026-20182.yaml249 except Exception:
LOW.github/scripts/update-kev.py67 except Exception as e:
MEDIUM.github/scripts/update-kev.py68 print(f"Error reading {file_path}: {e}")
LOW.github/scripts/update-kev.py101 except Exception as e:
LOW.github/scripts/update-kev.py182 except Exception as e:
LOW.github/scripts/update-kev.py298 except Exception as e:
MEDIUM.github/scripts/update-kev.py299 print(f"Error updating {file_path}: {e}")
LOW.github/scripts/count-kev-stats.py28 except Exception as e:
MEDIUM.github/scripts/count-kev-stats.py29 print(f"Error reading {file_path}: {e}", file=sys.stderr)
LOW.github/scripts/enhance-cve-fields.py99 except Exception as e:
LOW.github/scripts/assign_tasks.py100 except Exception as e:
LOW.github/scripts/assign_tasks.py117 except Exception as e:
LOW.github/scripts/assign_tasks.py134 except Exception as e:
LOW.github/scripts/update-readme.py35 except Exception as e:
MEDIUM.github/scripts/update-readme.py36 print(f"Error getting KEV stats: {e}")
LOW.github/scripts/update-epss.py65 except Exception as e:
MEDIUM.github/scripts/update-epss.py66 print(f"Error reading {file_path}: {e}")
LOW.github/scripts/update-epss.py109 except Exception as e:
LOW.github/scripts/update-epss.py196 except Exception as e:
MEDIUM.github/scripts/update-epss.py197 print(f"Error updating {file_path}: {e}")
Verbosity Indicators24 hits · 40 pts
SeverityFileLineSnippet
LOWnetwork/cves/2019/CVE-2019-5544.yaml38 # Step 1: Verify OpenSLP is actually running by sending a valid SLP ServiceType request
LOWnetwork/cves/2019/CVE-2019-5544.yaml53 # Step 2: Send heap overflow payload to crash OpenSLP
LOWnetwork/cves/2019/CVE-2019-5544.yaml62 # Step 3: Re-query OpenSLP — if the service crashed, we get no response
LOWcode/cves/2022/CVE-2022-42475.yaml260 # Step 1: Pre-flight connectivity check
LOWcode/cves/2022/CVE-2022-42475.yaml266 # Step 2: Vulnerability check with false positive prevention
LOWcode/cves/2025/CVE-2025-22457.yaml114 # Step 1: Pre-check - must be reachable, return 200, and be Ivanti
LOWcode/cves/2025/CVE-2025-22457.yaml125 # Step 2: Send crash payload - POST with oversized X-Forwarded-For
LOWcode/cves/2025/CVE-2025-22457.yaml142 # Step 3: Follow-up check - server should recover and return 200
LOWhttp/cves/2025/CVE-2025-57819.yaml51 # Step 1: SQL Injection Detection in brand parameter
LOWhttp/cves/2025/CVE-2025-57819.yaml73 # Step 2: RCE Exploitation - Create cron job with self-deleting PHP payload
LOWhttp/cves/2019/CVE-2019-7194.yaml52 # Step 1: Set up a fake album slideshow to obtain a usable album_id
LOWhttp/cves/2019/CVE-2019-7194.yaml69 # Step 2: Use album_id to get access_code and PHPSESSID from slideshow.php
LOWhttp/cves/2019/CVE-2019-7194.yaml91 # Step 3: Use directory traversal to extract application token (app_token)
LOWhttp/cves/2019/CVE-2019-7194.yaml108 # Step 4: Authenticate using the app_token to get NAS_SID
LOWhttp/cves/2019/CVE-2019-7194.yaml126 # Step 5: Inject self-deleting PHP payload via SMTP config
LOWhttp/cves/2019/CVE-2019-7194.yaml136 # Step 6: Trigger slideshow with QMS_SID pointing to dropper path
LOWhttp/cves/2019/CVE-2019-7194.yaml143 # Step 7: Execute the dropper (which deletes the file via unlink after poc request)
LOWhttp/cves/2016/CVE-2016-9299.yaml54 # Step 1: Send the download request without waiting for a response or closing the socket
LOWhttp/cves/2016/CVE-2016-9299.yaml74 # Step 2: Send the upload request
LOWhttp/cves/2016/CVE-2016-9299.yaml104 # Step 3: After upload request, read the download request's response
LOWhttp/cves/2016/CVE-2016-9299.yaml114 # Step 1: Send download request (don't wait for response, keep the socket open)
LOWhttp/cves/2016/CVE-2016-9299.yaml117 # Step 2: Send upload request
LOWjavascript/cves/2026/CVE-2026-1731.yaml64 // Step 1: WebSocket upgrade handshake
LOWjavascript/cves/2026/CVE-2026-1731.yaml80 // Step 2: Build binary WebSocket frame with command injection payload
AI Slop Vocabulary13 hits · 35 pts
SeverityFileLineSnippet
MEDIUMhttp/osint/phishing/seamless-phish.yaml10 - https://seamless.com
MEDIUMhttp/cves/2019/CVE-2019-7481.yaml13 - https://www.crowdstrike.com/blog/how-ecrime-groups-leverage-sonicwall-vulnerability-cve-2019-7481/
MEDIUMhttp/cves/2021/CVE-2021-39165.yaml8 Cachet is an open source status page. With Cachet prior to and including 2.3.18, there is a SQL injection which is i
MEDIUMhttp/cves/2021/CVE-2021-27850.yaml15 - https://lists.apache.org/thread.html/r237ff7f286bda31682c254550c1ebf92b0ec61329b32fbeb2d1c8751%40%3Cusers.tapestry
MEDIUMprofiles/windows-audit.yml9# This configuration references specific templates tagged with 'windows-audit' to cover comprehensive scanning of Window
MEDIUMprofiles/privilege-escalation.yml9# This configuration references specific templates tagged with 'privesc' and 'local' to cover comprehensive detection of
MEDIUMprofiles/ai.yml8# This profile enables comprehensive security testing of AI ecosystems, covering: LLM Application Security, AI Infrastru
MEDIUMprofiles/alibaba-cloud-config.yml9# This configuration references specific templates tagged with 'alibaba-cloud-config' to cover comprehensive scanning of
MEDIUMprofiles/all.yml3# This configuration file is specifically tailored for performing comprehensive scans using Nuclei, All the avaliable te
MEDIUMprofiles/aws-cloud-config.yml9# This configuration references specific templates tagged with 'aws-cloud-config' to cover comprehensive scanning of AWS
MEDIUMprofiles/compliance.yml6# This profile is focused on identifying a wide range of security issues to ensure compliance with various security stan
MEDIUMprofiles/azure-cloud-config.yml9# This configuration references specific templates tagged with 'azure-cloud-config' to cover comprehensive scanning of A
MEDIUMprofiles/gcp-cloud-config.yml8# This configuration references specific templates tagged with 'gcp-cloud-config' to cover comprehensive scanning of Azu
Redundant / Tautological Comments15 hits · 22 pts
SeverityFileLineSnippet
LOWcode/linux/audit/ssh-gssapiauthentication-disabled.yaml39 # Check if the value is explicitly set to 'no'
LOWcode/linux/audit/nis-client.yaml27 # Check if the nis package is installed
LOWcode/linux/audit/rsh-client.yaml26 # Check if the rsh-client package is installed
LOWcode/linux/audit/ftp-client.yaml27 # Check if ftp or tnftp packages are installed
LOWcode/linux/audit/talk-client.yaml26 # Check if the talk package is installed
LOWcode/linux/audit/telnet-client.yaml27 # Check if telnet or inetutils-telnet package is installed
LOWcode/linux/audit/ldap-client.yaml27 # Check if the ldap-utils package is installed
LOWcode/linux/audit/ssh-hostbasedauth-disabled.yaml28 # Check if the parameter is set to yes (bad)
LOWcode/windows/audit/kisa/rds-removal-check.yaml43 # Check if IIS (W3SVC) service is present; if not, IIS is not used and RDS is implicitly compliant.
LOWcode/windows/audit/kisa/unnecessary-accounts-check.yaml44 # Output results
LOWcode/windows/audit/kisa/remote-system-shutdown.yaml38 # Check if only the Administrators SID (S-1-5-32-544) is present.
LOWcode/cves/2025/CVE-2025-54309.yaml162 # Check if either response contains the user list pattern
LOW.github/auto_assign.yml14# Set 0 to add all the reviewers (default: 0)
LOW.github/scripts/update-kev.py153 # Check if we've reached the last page
LOW.github/scripts/update-epss.py149 # Check if update is needed
Self-Referential Comments5 hits · 13 pts
SeverityFileLineSnippet
MEDIUM…windows/audit/kisa/ftp-directory-permission-check.yaml32 # Define the FTP home directory path (adjust if necessary)
MEDIUMcode/cves/2014/CVE-2014-0160.yaml119 # Create a socket connection
MEDIUMcode/cves/2024/CVE-2024-45409.yaml77 # Create a deep copy of the assertion for digest calculation
MEDIUMcode/cves/2024/CVE-2024-9487.yaml90 # Create a random AES key for encrypting the data
MEDIUMhttp/cves/2024/CVE-2024-45488.yaml241 # Create the HMAC (sign) over the entire blob except for the sign field
Deep Nesting8 hits · 8 pts
SeverityFileLineSnippet
LOW.github/scripts/update-kev.py72
LOW.github/scripts/update-kev.py107
LOW.github/scripts/update-kev.py247
LOW.github/scripts/count-kev-stats.py34
LOW.github/scripts/enhance-cve-fields.py36
LOW.github/scripts/assign_tasks.py76
LOW.github/scripts/update-epss.py70
LOW.github/scripts/update-epss.py200
Hyper-Verbose Identifiers6 hits · 7 pts
SeverityFileLineSnippet
LOWcode/cves/2022/CVE-2022-42475.yaml169 def post_exploit_connectivity_check(self):
LOWcode/cves/2025/CVE-2025-54309.yaml113 def check_vulnerable_response(response_text):
LOWcode/cves/2025/CVE-2025-54309.yaml123 def race_requests_with_detection(target_url, num_requests=100):
LOWcode/cves/2024/CVE-2024-55556.yaml60 def laravel_encrypt_session_cookie(value_to_encrypt, hash_value, key, cipher_mode):
LOWcode/cves/2026/CVE-2026-20182.yaml117 def generate_self_signed_cert():
LOW.github/scripts/assign_tasks.py39def get_pr_assignee_and_reviewer(pull_request_number):
Fake / Example Data6 hits · 6 pts
SeverityFileLineSnippet
LOWcode/cves/2025/CVE-2025-25291.yaml54 username='admin@example.com'
LOWcode/cves/2024/CVE-2024-45409.yaml48 username='admin@example.com'
LOWhttp/token-spray/api-mailboxvalidator.yaml26 - '"email_address":"test@test.com"'
LOW…lt-logins/nginx/nginx-proxy-manager-default-login.yaml22 {"identity": "admin@example.com","secret": "changeme"}
LOWhttp/cves/2024/CVE-2024-8698.yaml51 username = b'admin@example.com'
LOWhttp/cves/2023/CVE-2023-34362.yaml77 X-siLock-SessVar1: MyPkgSelfProvisionedRecips: SQL Injection'); INSERT INTO activesessions (SessionID) values ('
Unused Imports6 hits · 6 pts
SeverityFileLineSnippet
LOW.github/scripts/wordpress-plugins-update.py23
LOW.github/scripts/update-kev.py19
LOW.github/scripts/update-kev.py19
LOW.github/scripts/count-kev-stats.py12
LOW.github/scripts/update-readme.py4
LOW.github/scripts/update-epss.py19