Discover and read the best of Twitter Threads about #nuclei
Most recents (4)
Big update! #nuclei just got a major update, adding URL Fuzzing and many new features 🧵
Release Blog –– blog.projectdiscovery.io/nuclei-fuzz-al…
Release CL –– github.com/projectdiscove…
Fuzzing Templates –– github.com/projectdiscove…
#hackwithautomation #dast #opensource #cybersecurity #bugbounty
Release Blog –– blog.projectdiscovery.io/nuclei-fuzz-al…
Release CL –– github.com/projectdiscove…
Fuzzing Templates –– github.com/projectdiscove…
#hackwithautomation #dast #opensource #cybersecurity #bugbounty
Nuclei (by @pdiscoveryio) is a vulnerability detection tool used by thousands of people every day.
But only a few master it at 100%
Here is how you can improve the use of the tool 🧵 👇
#nuclei #bugbounty #bugbountytips #hackwithautomation
But only a few master it at 100%
Here is how you can improve the use of the tool 🧵 👇
#nuclei #bugbounty #bugbountytips #hackwithautomation
1/6 Default mode
By default nuclei use almost all templates, so if your objective is a complete scan, you can try:
$ nuclei -u http://site. com
$ nuclei -l url_list.txt
$ cat urls.txt | nuclei
(WARNING: this could overload servers)
By default nuclei use almost all templates, so if your objective is a complete scan, you can try:
$ nuclei -u http://site. com
$ nuclei -l url_list.txt
$ cat urls.txt | nuclei
(WARNING: this could overload servers)
2/6 Templates Scan
You can specify templates, folders, tags or severity:
$ nuclei -u http://site. com -t my-template.yaml
$ nuclei -u http://site. com -t nuclei-templates/cves/
$ nuclei -u http://site. com -tags log4j
$ nuclei -u http://site. com -severity low
You can specify templates, folders, tags or severity:
$ nuclei -u http://site. com -t my-template.yaml
$ nuclei -u http://site. com -t nuclei-templates/cves/
$ nuclei -u http://site. com -tags log4j
$ nuclei -u http://site. com -severity low
[1/5] A small thread.
#nuclei is a really nice and fast scanner by @pdnuclei that is also popular with #bugbounty #hackers.
Being so fast out of box, quite often it can overwhelm the target server(s).
Here are couple of tips on how to improve your #nuclei scanning results:
#nuclei is a really nice and fast scanner by @pdnuclei that is also popular with #bugbounty #hackers.
Being so fast out of box, quite often it can overwhelm the target server(s).
Here are couple of tips on how to improve your #nuclei scanning results:
[2/5] The -rl flag defines the number of requests per second, and it is set to 150 by default.
This can be too much for some sites so drop it down to about 50 (or even less if you fear WAF/IPS blocking you) which should not be too much.
This can be too much for some sites so drop it down to about 50 (or even less if you fear WAF/IPS blocking you) which should not be too much.
[3/5] The -c flag defines the number of templates to run in parallel. In my tests this didn't affect the results a lot until I dropped it to a very low value such as 1 or 2.
Disable the interactsh server if you do not need it with -ni
This will remove OAST tests.
Disable the interactsh server if you do not need it with -ni
This will remove OAST tests.
Le #cellule #Car-T “peptide-centriche” contro i #tumori solidi: in questo caso ha come #target i #frammenti proteici nelle cellule di #neuroblastoma. Studio di #Nature riassunto in questo thread un po' lungo ma spero interessante. 1/13
Le basi/1. Le terapie CAR-T si basano sull’ingegnerizzazione delle #cellule T (o #linfociti T) del sistema #immunitario del #paziente, che vengono “potenziate” per combattere il #tumore. 2/13
Le basi/2. Per farlo gli scienziati usano un #vettore #virale inattivato contenente un #gene in grado di far esprimere sulla superficie delle cellule T un #recettore chimerico (il recettore dell’antigene chimerico, #CAR, a cui la terapia deve il suo nome). 3/13
