Documentation Index
Fetch the complete documentation index at: https://projectdiscovery-nuclei-syntax-docs.mintlify.app/llms.txt
Use this file to discover all available pages before exploring further.
Untitled object in undefined Schema
https://template#/$defs/Template/properties/javascript/items
| Abstract | Extensible | Status | Identifiable | Custom Properties | Additional Properties | Access Restrictions | Defined In |
|---|
| Can be instantiated | No | Unknown status | No | Forbidden | Forbidden | none | nuclei-schema.schema.json* |
items Type
object (Details)
items Properties
| Property | Type | Required | Nullable | Defined by |
|---|
| matchers | array | Optional | cannot be null | Untitled schema |
| extractors | array | Optional | cannot be null | Untitled schema |
| matchers-condition | string | Optional | cannot be null | Untitled schema |
| path | array | Optional | cannot be null | Untitled schema |
| raw | array | Optional | cannot be null | Untitled schema |
| id | string | Optional | cannot be null | Untitled schema |
| name | string | Optional | cannot be null | Untitled schema |
| attack | object | Optional | cannot be null | Untitled schema |
| method | object | Optional | cannot be null | Untitled schema |
| body | string | Optional | cannot be null | Untitled schema |
| payloads | object | Optional | cannot be null | Untitled schema |
| headers | object | Optional | cannot be null | Untitled schema |
| race_count | integer | Optional | cannot be null | Untitled schema |
| max-redirects | integer | Optional | cannot be null | Untitled schema |
| pipeline-concurrent-connections | integer | Optional | cannot be null | Untitled schema |
| pipeline-requests-per-connection | integer | Optional | cannot be null | Untitled schema |
| threads | integer | Optional | cannot be null | Untitled schema |
| max-size | integer | Optional | cannot be null | Untitled schema |
| fuzzing | array | Optional | cannot be null | Untitled schema |
| self-contained | boolean | Optional | cannot be null | Untitled schema |
| signature | object | Optional | cannot be null | Untitled schema |
| cookie-reuse | boolean | Optional | cannot be null | Untitled schema |
| disable-cookie | boolean | Optional | cannot be null | Untitled schema |
| read-all | boolean | Optional | cannot be null | Untitled schema |
| redirects | boolean | Optional | cannot be null | Untitled schema |
| host-redirects | boolean | Optional | cannot be null | Untitled schema |
| pipeline | boolean | Optional | cannot be null | Untitled schema |
| unsafe | boolean | Optional | cannot be null | Untitled schema |
| race | boolean | Optional | cannot be null | Untitled schema |
| req-condition | boolean | Optional | cannot be null | Untitled schema |
| stop-at-first-match | boolean | Optional | cannot be null | Untitled schema |
| skip-variables-check | boolean | Optional | cannot be null | Untitled schema |
| iterate-all | boolean | Optional | cannot be null | Untitled schema |
| digest-username | string | Optional | cannot be null | Untitled schema |
| digest-password | string | Optional | cannot be null | Untitled schema |
| disable-path-automerge | boolean | Optional | cannot be null | Untitled schema |
| filter | array | Optional | cannot be null | Untitled schema |
| filter-condition | string | Optional | cannot be null | Untitled schema |
matchers
Detection mechanism to identify whether the request was successful by doing pattern matching
matchers
matchers Type
object[] (Details)
Extractors contains the extraction mechanism for the request to identify and extract parts of the response
extractors
object[] (Details)
matchers-condition
Conditions between the matchers
matchers-condition
matchers-condition Type
string (condition between the matchers)
matchers-condition Constraints
enum: the value of this property must be equal to one of the following values:
| Value | Explanation |
|---|
"and" | |
"or" | |
path
Path(s) to send http requests to
path
path Type
string[]
raw
HTTP Requests in Raw Format
raw
raw Type
string[]
ID for the HTTP Request
id
id Type
string (id for the http request)
name
Optional name for the HTTP Request
name
name Type
string (name for the http request)
attack
Attack is the type of payload combinations to perform
attack
attack Type
object (attack is the payload combination)
method
Method is the HTTP Request Method
method
method Type
object (method is the http request method)
body
Body is an optional parameter which contains HTTP Request body
body
body Type
string (body is the http request body)
payloads
Payloads contains any payloads for the current request
payloads
payloads Type
object (payloads for the http request)
Headers contains HTTP Headers to send with the request
headers
object (headers to send with the http request)
race_count
Number of times to send a request in Race Condition Attack
race_count
race_count Type
integer (number of times to repeat request in race condition)
max-redirects
Maximum number of redirects that should be followed
max-redirects
max-redirects Type
integer (maximum number of redirects to follow)
pipeline-concurrent-connections
Number of connections to create during pipelining
pipeline-concurrent-connections
pipeline-concurrent-connections Type
integer (number of pipelining connections)
pipeline-requests-per-connection
Number of requests to send per connection when pipelining
pipeline-requests-per-connection
pipeline-requests-per-connection Type
integer (number of requests to send per pipelining connections)
threads
Threads specifies number of threads to use sending requests. This enables Connection Pooling
threads
threads Type
integer (threads for sending requests)
max-size
Maximum size of http response body to read in bytes
max-size
max-size Type
integer (maximum http response body size)
fuzzing
Fuzzing describes rule schema to fuzz http requests
fuzzing
fuzzing Type
object[] (Details)
self-contained
self-contained
self-contained Type
boolean
signature
Signature is the HTTP Request signature Method
signature
signature Type
object (signature is the http request signature method)
cookie-reuse
Optional setting that enables cookie reuse
cookie-reuse
cookie-reuse Type
boolean (optional cookie reuse enable)
disable-cookie
Optional setting that disables cookie reuse
disable-cookie
disable-cookie Type
boolean (optional disable cookie reuse)
read-all
Enables force reading of entire unsafe http request body
read-all
read-all Type
boolean (force read all body)
redirects
Specifies whether redirects should be followed by the HTTP Client
redirects
redirects Type
boolean (follow http redirects)
host-redirects
Specifies whether redirects to the same host should be followed by the HTTP Client
host-redirects
host-redirects Type
boolean (follow same host http redirects)
pipeline
Pipeline defines if the attack should be performed with HTTP 1.1 Pipelining
pipeline
pipeline Type
boolean (perform HTTP 1.1 pipelining)
unsafe
Unsafe specifies whether to use rawhttp engine for sending Non RFC-Compliant requests
unsafe
unsafe Type
boolean (use rawhttp non-strict-rfc client)
race
Race determines if all the request have to be attempted at the same time (Race Condition)
race
race Type
boolean (perform race-http request coordination attack)
req-condition
Automatically assigns numbers to requests and preserves their history
req-condition
req-condition Type
boolean (preserve request history)
stop-at-first-match
Stop the execution after a match is found
stop-at-first-match
stop-at-first-match Type
boolean (stop at first match)
skip-variables-check
Skips the check for unresolved variables in request
skip-variables-check
skip-variables-check Type
boolean (skip variable checks)
iterate-all
Iterates all the values extracted from internal extractors
iterate-all
iterate-all Type
boolean (iterate all the values)
digest-username
Optional parameter which specifies the username for digest auth
digest-username
digest-username Type
string (specifies the username for digest authentication)
digest-password
Optional parameter which specifies the password for digest auth
digest-password
digest-password Type
string (specifies the password for digest authentication)
disable-path-automerge
Disable merging target url path with raw request path
disable-path-automerge
disable-path-automerge Type
boolean (disable auto merging of path)
filter
Filter is matcher-like field to check if fuzzing should be performed on this request or not
filter
filter Type
object[] (Details)
filter-condition
Conditions between the filters
filter-condition
filter-condition Type
string (condition between the filters)
filter-condition Constraints
enum: the value of this property must be equal to one of the following values:
| Value | Explanation |
|---|
"and" | |
"or" | |
