dast-nucleilisted

# DAST with Nuclei ## Overview Nuclei is a fast, template-based vulnerability scanner from ProjectDiscovery that uses YAML templates to detect security vulnerabilities, misconfigurations, and exposures across web applications, APIs, networks, and cloud infrastructure. With 7,000+ community templates covering CVEs, OWASP vulnerabilities, and custom checks, Nuclei provides efficient automated security testing with minimal false positives. ## Quick Start ### Installation ```bash # Install via Go go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest # Or using Docker docker pull projectdiscovery/nuclei:latest # Update templates (automatically downloads 7000+ community templates) nuclei -update-templates ``` ### Basic Vulnerability Scan ```bash # Scan single target with all templates nuclei -u https://target-app.com # Scan with specific severity levels nuclei -u https://target-app.com -severity critical,high # Scan multiple targets from file nuclei -list targets.txt -severity critical,high,medium -o results.txt ``` ### Quick CVE Scan ```bash # Scan for specific CVEs nuclei -u https://target-app.com -tags cve -severity critical,high # Scan for recent CVEs nuclei -u https://target-app.com -tags cve -severity critical -template-condition "contains(id, 'CVE-')" ``` ## Core Workflow ### Workflow Checklist Progress: [ ] 1. Install Nuclei and update templates to latest version [ ] 2. Define target scope (URLs, domains, IP ranges) [ ] 3. Select appropriate