https://github.com/miladhzzzz/nuclei-api

MCP Server / API Wrapper For Nuclei Scanner
https://github.com/miladhzzzz/nuclei-api

automation bugbounty cybersecurity mcp-server platform python reconnaissance

Last synced: 10 months ago
JSON representation

MCP Server / API Wrapper For Nuclei Scanner

• Host: GitHub
• URL: https://github.com/miladhzzzz/nuclei-api
• Owner: miladhzzzz
• Created: 2025-01-27T08:54:33.000Z (over 1 year ago)
• Default Branch: master
• Last Pushed: 2025-07-30T10:23:28.000Z (11 months ago)
• Last Synced: 2025-07-30T12:52:02.984Z (11 months ago)
• Topics: automation, bugbounty, cybersecurity, mcp-server, platform, python, reconnaissance
• Language: Python
• Homepage:
• Size: 263 KB
• Stars: 1
• Watchers: 1
• Forks: 0
• Open Issues: 1
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# Nuclei API: Automated Vulnerability Template Generation & Scanning Platform

## Overview

**Nuclei API** is an advanced, AI-augmented platform for automated vulnerability scanning and template management, built around [Nuclei](https://nuclei.projectdiscovery.io/). It provides a REST API for running scans, managing templates, and orchestrating a pipeline that fetches new vulnerabilities, generates detection templates using an LLM, validates them, and refines them as needed. The system leverages FastAPI, Celery, Redis, Docker, and Ollama (LLM) to deliver scalable, intelligent, and automated security scanning.

---

## Key Features

- **Automated CVE Template Generation:**  

  Fetches recent vulnerabilities (CVEs) from public sources and uses an LLM to generate Nuclei YAML templates for each.

- **Template Validation & Refinement:**  

  Validates generated templates by running them against known vulnerable hosts. If validation fails, templates are refined using the LLM and retried.

- **Flexible Scanning API:**  

  Exposes endpoints to run Nuclei scans on targets (IP/domain), with support for custom templates, AI-generated templates, and standard templates.

- **Asynchronous Pipeline:**  

  Uses Celery for distributed, asynchronous task orchestration (fetching, generating, validating, refining).

- **Metrics & Caching:**  

  Uses Redis for caching vulnerability data and tracking pipeline metrics.

- **Containerized Scanning:**  

  Runs Nuclei scans in Docker containers for isolation and resource control.

- **Custom Template Support:**  

  Upload and use your own Nuclei templates.

- **Real-Time Log Streaming:**  

  Stream scan logs directly from running Docker containers.

- **Extensible & Modular:**  

  Modular controllers for Docker, Nuclei, Fingerprinting, and Templates.

---

## Architecture

```mermaid

flowchart TD

    subgraph User

        A1[API Client / UI]

    end

    subgraph API

        B1[FastAPI App]

        B2[NucleiRoutes]

        B3[PipelineRoutes]

    end

    subgraph Celery

        C1[fetch_vulnerabilities]

        C2[process_vulnerabilities]

        C3[generate_nuclei_template]

        C4[store_templates]

        C5[validate_template]

        C6[refine_nuclei_template]

    end

    subgraph Services

        D1[Ollama LLM]

        D2[Redis]

        D3[Docker Engine]

        D4[Nuclei Scanner]

    end

    A1--REST-->B1

    B1--routes-->B2

    B1--routes-->B3

    B2--triggers-->Celery

    B3--triggers-->Celery

    C1--uses-->D2

    C2--uses-->D1

    C3--uses-->D1

    C4--stores-->FileSystem

    C5--runs-->D4

    C5--in-->D3

    C5--metrics-->D2

    C6--uses-->D1

    D4--runs in-->D3

```

---

## Pipeline Flow

```mermaid

flowchart TD

    A[fetch_vulnerabilities] --> B[process_vulnerabilities]

    B --> C[generate_nuclei_templates (group)]

    C --> D[store_templates]

    D --> E[validate_templates_callback (group)]

    E --> F[validate_template (per template)]

    F --fail--> G[refine_nuclei_template]

    G --> H[store_refined_template]

    H --> F

    F --success--> I[Done]

```

---

## Setup Instructions

### Prerequisites

- **Python 3.8+**

- **Docker & Docker Compose**

- **Redis**

- **Ollama (or compatible LLM API)**

- *(Optional)* **Node.js & npm** (if using the UI)

### Clone the Repository

```sh

git clone 

cd nuclei-api

```

### Install Python Dependencies

```sh

pip install -r requirements.txt

```

### Clone Nuclei Templates

```sh

git clone https://github.com/projectdiscovery/nuclei-templates.git

```

### Start Redis and Ollama

You can use Docker Compose to start all services (API, Redis, Ollama, etc.):

```sh

docker-compose up -d

```

Or start them individually as needed.

### Run the API

```sh

cd app/

python3 main.py

```

The API will be available at `http://localhost:8080`.

---

## Usage Examples

### 1. **Trigger the Automated Template Generation Pipeline**

```sh

curl -X GET http://localhost:8080/nuclei/template/generate

```

This will fetch new CVEs, generate templates using the LLM, store, and validate them.

### 2. **Run a Scan (API)**

#### Basic Scan

```sh

curl -X POST \

  -H "Content-Type: application/json" \

  -d '{ "target": "https://example.com", "templates": ["cves/"] }' \

  http://localhost:8080/nuclei/scan

```

#### Custom Template Scan

```sh

curl -X POST \

  -F "target=https://example.com" \

  -F "template_file=@/path/to/custom-template.yaml" \

  http://localhost:8080/nuclei/scan/custom

```

#### Fetch Scan Logs

```sh

curl http://localhost:8080/nuclei/scan/nuclei_scan_123456/logs

```

---

## API Endpoints

### Health Check

- **GET /**  

  Returns `{ "ping": "pong!" }`

### Run a Scan

- **POST /nuclei/scan**  

  Request:

  ```json

  {

    "target": "https://example.com",

    "templates": ["cves/"] // Optional

  }

  ```

  Response:  

  Returns scan result or task ID for async scans.

### Run a Custom Scan

- **POST /nuclei/scan/custom**  

  Form Data:

    - `target`: The target domain or IP to scan.

    - `template_file`: Custom template YAML file (optional).

    - `templates`: Comma-separated list of templates (optional).

### Get Scan Logs

- **GET /nuclei/scan/{container_id}/logs**  

  Streams logs from the running scan container.

### Upload a Custom Template

- **POST /nuclei/template/upload**  

  Upload and validate a custom Nuclei template.

### Trigger Template Generation Pipeline

- **GET /nuclei/template/generate**  

  Starts the full CVE-to-template pipeline.

---

## Metrics & Monitoring

- **Redis** is used for caching vulnerability data and tracking pipeline metrics (templates generated, validated, refinements, failures, etc.).

- **Sentry** integration is available for error monitoring (configure via environment).

---

## Extending & Customizing

- **Add new vulnerability sources** by editing the `fetch_vulnerabilities` task.

- **Change LLM model or endpoint** via configuration.

- **Integrate with your own UI** or use the provided API directly.

---

## Contributing

Contributions are welcome! Please open issues or pull requests for bug fixes, new features, or improvements.

---

## License

[MIT](LICENSE) or as specified in the repository.

---

## Contact

For more details or support, please contact the development team.