Merge pull request #2188 from blacklanternsecurity/nuclei-presets

Add nuclei presets

bbot/presets/nuclei/nuclei-budget.yml

@@ -0,0 +1,19 @@
+description: Run nuclei scans against all discovered targets, using budget mode to look for low hanging fruit with greatly reduced number of requests
+
+modules:
+  - httpx
+  - nuclei
+  - portfilter
+
+config:
+  modules:
+    nuclei:
+      mode: budget
+      budget: 10
+      directory_only: true # Do not run nuclei on individual non-directory URLs
+
+conditions:
+  - |
+    {% if config.web.spider_distance != 0 %}
+      {{ warn("Running nuclei with spider enabled is generally not recommended. Consider removing 'spider' preset.") }}
+    {% endif %}

bbot/presets/nuclei/nuclei-intense.yml

@@ -0,0 +1,28 @@
+description: Run nuclei scans against all discovered targets, allowing for spidering, against ALL URLs, and with additional discovery modules.
+
+modules:
+  - httpx
+  - nuclei
+  - robots
+  - urlscan
+  - portfilter
+  - wayback
+
+config:
+  modules:
+    nuclei:
+      directory_only: False # Will run nuclei on ALL discovered URLs - Be careful!
+    wayback:
+      urls: true
+
+conditions:
+  - |
+    {% if config.web.spider_distance == 0 and config.modules.nuclei.directory_only == False %}
+      {{ warn("The 'nuclei-intense' preset turns the 'directory_only' limitation off on the nuclei module. To make the best use of this, you may want to enable spidering with 'spider' or 'spider-intense' preset.") }}
+    {% endif %}
+
+
+# Example for also running a dirbust
+
+#include:
+#  - dirbust-light

bbot/presets/nuclei/nuclei-technology.yml

@@ -0,0 +1,23 @@
+description: Run nuclei scans against all discovered targets, running templates which match discovered technologies
+
+modules:
+  - httpx
+  - nuclei
+  - portfilter
+
+config:
+  modules:
+    nuclei:
+      mode: technology
+      directory_only: True # Do not run nuclei on individual non-directory URLs. This is less unsafe to disable with technology mode.
+
+conditions:
+  - |
+    {% if config.web.spider_distance != 0 %}
+      {{ warn("Running nuclei with spider enabled is generally not recommended. Consider removing 'spider' preset.") }}
+    {% endif %}
+
+# Example for also running a dirbust
+
+#include:
+#  - dirbust-light

bbot/presets/nuclei/nuclei.yml

@@ -0,0 +1,34 @@
+description: Run nuclei scans against all discovered targets
+
+modules:
+  - httpx
+  - nuclei
+  - portfilter
+
+config:
+  modules:
+    nuclei:
+      directory_only: True # Do not run nuclei on individual non-directory URLs
+
+
+conditions:
+  - |
+    {% if config.web.spider_distance != 0 %}
+      {{ warn("Running nuclei with spider enabled is generally not recommended. Consider removing 'spider' preset.") }}
+    {% endif %}
+
+
+
+# Additional Examples:
+
+# Slowing Down Scan
+
+#config:
+#  modules:
+#    nuclei:
+#      ratelimit: 10
+#      concurrency: 5
+
+
+
+