macOS
brew install nucleilocal Homebrew formula metadata
sudo port install nucleiMacPorts ports tree · security/nuclei/Portfile · source: api.github.com
brew
HTTP/DNS scanner configurable via YAML templates. Version 3.11.0 via Homebrew; verified 2026-07-06.
install
brew install nucleilocal Homebrew formula metadata
sudo port install nucleiMacPorts ports tree · security/nuclei/Portfile · source: api.github.com
sudo apk add nucleiAlpine Linux edge package indexes · nuclei · source: dl-cdn.alpinelinux.org
sudo dnf install nucleiFedora Rawhide package metadata · nuclei · source: dl.fedoraproject.org
nix profile install nixpkgs#nucleinixpkgs package indexes · pkgs/by-name/nu/nuclei/package.nix · source: api.github.com
scoop install main/nucleiScoop official bucket manifest trees · bucket/nuclei.json · source: api.github.com
overview
HTTP/DNS scanner configurable via YAML templates
history
Nuclei is ProjectDiscovery's Go-based, template-driven vulnerability scanner. Its core package identity is the split between a fast scanning engine and a community-maintained YAML template ecosystem.
The nuclei repository was created on 2020-04-03, and the companion nuclei-templates repository followed on 2020-04-04. The README describes Nuclei as a modern high-performance scanner using simple YAML templates to model real vulnerability checks with low false positives.
ProjectDiscovery's documentation and README emphasize extensibility: templates can cover HTTP, DNS, TCP, SSL, WHOIS, JavaScript, code, file, headless, and other protocol modes, with bulk scanning, template filtering, workflows, output formats, and CI/CD integration.
Nuclei's adoption is inseparable from nuclei-templates. The template repository describes itself as a community-curated list for the nuclei engine; on 2026-07-01 its README statistics listed 11,997 files, 873 directories, thousands of CVE/vulnerability/discovery tags, and KEV-oriented coverage.
The upstream README says Nuclei is used and contributed to by Fortune 500 enterprises, government agencies, and universities. It is common in bug bounty, attack-surface management, pentest regression, and DevSecOps workflows because checks can be shared as small YAML files rather than compiled scanner plugins.
Typical package use starts with `nuclei -u target` or `nuclei -l targets.txt`, then narrows by template path, tags, severity, protocol type, or template ID. Users update templates, run new templates only, export JSONL or reports, write custom templates, and chain Nuclei after discovery tools that produce host or URL lists.
Security teams use it as a repeatable regression scanner: turn a finding into a template, commit the template, rerun it across staging or production, and keep checking that the vulnerability does not reappear.
Nuclei matters because it made the packageable unit of vulnerability knowledge a readable YAML template. That lowered the cost of sharing checks across bug bounty hunters, consultancies, and internal security teams.
security posture
broad file, network, media, or database tool signal.
blue risk · medium confidence · tool
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
~/.config/nuclei/config.yamlCredential-bearing paths to review before unattended agent runs.
~/.pdcp/credentials.yamlexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
nuclei | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/projectdiscovery/nuclei
install metadata
| Package key | brew:nuclei |
|---|---|
| Version | 3.11.0 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/nuclei |
| Homepage | https://docs.projectdiscovery.io/tools/nuclei/overview |
| Repository | https://github.com/projectdiscovery/nuclei |
| Upstream docs | https://docs.projectdiscovery.io/opensource/nuclei |
| License | MIT |
| Source archive | https://github.com/projectdiscovery/nuclei/archive/refs/tags/v3.11.0.tar.gz |
| Last updated | 2026-07-06T10:13:48Z |
| Pulse | updated |
| Build dependencies | go |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | nuclei |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
nuclei
nix profile install nixpkgs#nucleinuclei 3.8.0-r1
Vulnerability scanner built on a simple YAML-based DSL
https://docs.projectdiscovery.io/tools/nuclei
sudo apk add nucleinuclei-doc 3.8.0-r1
Vulnerability scanner built on a simple YAML-based DSL (documentation)
https://docs.projectdiscovery.io/tools/nuclei
sudo apk add nuclei-docnuclei 3.8.0-1.fc45
Fast, customizable YAML-based vulnerability scanner
https://github.com/projectdiscovery/nuclei
sudo dnf install nucleinuclei
sudo port install nucleimain/nuclei
scoop install main/nucleisource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.