Acunetix
Web vulnerability scanner for automated security testing of websites and web apps
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Fast, template-driven vulnerability scanner with zero false positives
Nuclei is a high‑performance vulnerability scanner that uses simple YAML templates, supports many protocols, integrates with CI/CD and popular tools, and reduces false positives by simulating real‑world steps.
Nuclei is a high‑performance vulnerability scanner built around simple YAML templates, allowing security professionals to model real‑world attack steps and achieve near‑zero false positives. It supports a wide range of protocols—including HTTP, DNS, TCP, SSL, WHOIS, JavaScript, and code‑based checks—and can run thousands of requests in parallel thanks to request clustering.
The tool is ideal for penetration testers, DevOps engineers, and enterprise security teams that need to embed continuous scanning into CI/CD pipelines or conduct large‑scale asset assessments. Nuclei can be installed locally via Go (≥1.24.1) or accessed through a free cloud tier that stores findings, visualizes results, and provides the latest community templates. For organizations requiring collaboration, compliance reporting, and advanced integrations (AWS, GCP, Azure, Jira, Slack, etc.), the Pro and Enterprise editions deliver 50× faster scans, SSO, SOC 2 compliance, and shared workspaces.
Thousands of contributors continuously expand the template library, and users can create custom templates or workflows to target specific technologies. Integration hooks let you push results to Splunk, Elastic, GitHub, or custom webhooks, making Nuclei a flexible component of any security automation stack.
When teams consider Nuclei, these hosted platforms usually appear on the same shortlist.
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
CI/CD pipeline integration
Automatically detect regressions on each commit and prevent vulnerable code from reaching production.
Penetration testing
Craft custom templates to validate complex vulnerabilities in target applications.
Large‑scale asset inventory
Efficiently scan thousands of hosts across multiple protocols to discover hidden exposures.
Compliance reporting
Generate executive‑grade reports via Pro edition integrations for audit and regulatory needs.
Yes, a free cloud tier provides storage, visualization of findings, and access to the latest community templates with generous monthly limits.
It simulates real‑world steps in the template definitions, verifying each vulnerability before reporting it.
The Pro/Enterprise editions add 50× faster scans, large‑scale collaboration, SSO, SOC 2 compliance, advanced integrations, and executive reporting on top of the open‑source core.
Nuclei supports HTTP, DNS, TCP, SSL, WHOIS, JavaScript, code‑based checks, and many others via extensible template types.
Nuclei requires Go version 1.24.1 or newer to install via the `go install` command.
Project at a glance
ActiveLast synced 4 days ago
