Threat Surface Probe
loginThis tool actively probes a target for vulnerabilities. Running it without verifying the user owns or has permission to test the target is indistinguishable from attack tooling, so it requires authorization.
This tool isn't available in the anonymous view. Sign in to access it.
Monitor this automatically
NetTests can run this check on a schedule, preserve historical results, compare changes over time, and alert you the moment something breaks.
Start monitoring free → See all monitoring productsFrequently Asked Questions
What are Nuclei templates?
Nuclei is a fast, template-based scanner where each template defines a specific check — a CVE probe, a misconfiguration test, or a default-credential attempt. The community maintains thousands of templates covering CVEs for popular software, exposed admin panels, cloud misconfigurations, and network services. New CVE templates are typically published within hours of disclosure.
What can Nuclei detect that a web scanner misses?
Nuclei's templates cover the full stack: HTTP endpoints, DNS, SSL, network services, and cloud APIs. It excels at detecting specific CVEs (e.g. Log4Shell, ProxyLogon) where precise request patterns are needed, exposed cloud storage buckets, default credentials on routers/IoT, and tech-specific misconfigurations that generic scanners don't target.