Skip to content
@projectdiscovery

ProjectDiscovery

Monitor your infrastructure. Real vulnerabilities. Zero noise.
README.md

Our mission is to Democratize Security.

ProjectDiscovery is an open source powered security company. We specialize in detecting new, exploitable vulnerabilities and misconfigurations so you can remediate them before hackers exploit them.

Getting Started

  • ProjectDiscovery Cloud Platform (PDCP) helps you find and quickly detect vulnerabiltiies for your most critcal assets. Get started for free and upgrade if needed to enable cloud scanning and other features.
  • Documentation where you can learn all about ProjectDiscovery and our tools
  • Run a Nuclei scan now with just a few steps
  • Learn more about templates, the cornerstone of the Nuclei scanning engine. Nuclei templates enable precise and rapid scanning across various protocols like TCP, DNS, HTTP, and more.
  • Need help? We're available on GitHub and Discord - feel free to reach out and join our community!

PD Open Source Tools

ProjectDiscovery produces a suite of open source tools tailored for offensive security: security engineers, bug bounty hunters, and red teamers. Our toolkit is structured around three distinct layers to optimize your security assessment and penetration testing processes. We also provide utilities and libraries as building blocks for an offensive security or bug bounty hunting program.

To learn about all of the tools, see our tools documentation or check out this video. You can also find the tools in our various GitHub repositories. A few of our most popular projects include:

  • nuclei: A fast and customizable vulnerability scanner based on simple YAML based DSL.
  • nuclei-templates: Community curated list of templates for the nuclei engine to find security vulnerabilities.
  • subfinder: A fast passive subdomain enumeration tool leveraging dozens of APIs.
  • httpx: A fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
  • cvemap: A CLI to Navigate the CVE jungle with ease.
  • katana: A next-generation crawling and spidering framework.
  • naabu: A fast port scanner written in go with a focus on reliability and simplicity.

Community

Our community is a dedicated space for security engineers and developers to collaborate, share knowledge, and learn how to manage vulnerability workflows more efficiently and effectively. By participating, you gain access to a wealth of resources, including tutorials, best practices, and the collective expertise of industry professionals, all aimed at enhancing your skills and improving your ability to handle security challenges.

Join Discord Follow Twitter

Contributing

Work with us

Love our mission and work? If you decide to contribute to any of our projects, we would be delighted to collaborate with you and refine your pull requests to near perfection. If you like the experience and think you might want to do this full-time, we are always hiring 🙌

Other Questions

Write us to hello@projectdiscovery.io for any other questions you might have.

Pinned Loading

  1. nuclei nuclei Public

    Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

    Go 27.9k 3.4k

  2. nuclei-templates nuclei-templates Public

    Community curated list of templates for the nuclei engine to find security vulnerabilities.

    JavaScript 12.2k 3.4k

  3. subfinder subfinder Public

    Fast passive subdomain enumeration tool.

    Go 13.4k 1.5k

  4. httpx httpx Public

    httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

    Go 9.8k 1.1k

  5. naabu naabu Public

    A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

    Go 5.9k 670

  6. vulnx vulnx Public

    Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.

    Go 2.4k 177

Repositories

Showing 10 of 119 repositories
  • tldfinder Public

    A streamlined tool for discovering private TLDs for security research.

    projectdiscovery/tldfinder’s past year of commit activity
    Go 319 MIT 12 1 13 Updated Apr 13, 2026
  • katana Public

    A next-generation crawling and spidering framework.

    projectdiscovery/katana’s past year of commit activity
    Go 16,510 MIT 1,082 7 13 Updated Apr 13, 2026
  • chaos-client Public

    Go client to communicate with Chaos DB API.

    projectdiscovery/chaos-client’s past year of commit activity
    Go 848 MIT 108 2 7 Updated Apr 13, 2026
  • awesome-search-queries Public

    Community curated list of search queries for various products across multiple search engines.

    projectdiscovery/awesome-search-queries’s past year of commit activity
    Go 382 MIT 42 1 1 Updated Apr 13, 2026
  • vulnx Public

    Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.

    projectdiscovery/vulnx’s past year of commit activity
    Go 2,415 MIT 177 9 5 Updated Apr 13, 2026
  • wappalyzergo Public

    A high performance go implementation of Wappalyzer Technology Detection Library

    projectdiscovery/wappalyzergo’s past year of commit activity
    Go 1,009 MIT 160 1 2 Updated Apr 13, 2026
  • nuclei-templates Public

    Community curated list of templates for the nuclei engine to find security vulnerabilities.

    projectdiscovery/nuclei-templates’s past year of commit activity
    JavaScript 12,155 MIT 3,424 65 (3 issues need help) 63 Updated Apr 13, 2026
  • httpx Public

    httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

    projectdiscovery/httpx’s past year of commit activity
    Go 9,806 MIT 1,051 4 8 Updated Apr 13, 2026
  • nuclei Public

    Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

    projectdiscovery/nuclei’s past year of commit activity
    Go 27,888 MIT 3,352 106 34 Updated Apr 13, 2026
  • dnsx Public

    dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.

    projectdiscovery/dnsx’s past year of commit activity
    Go 2,698 MIT 310 2 0 Updated Apr 13, 2026
View all repositories

Sponsoring

  • @bscript
  • @renniepak
  • @bvaughn
  • @sqlmapproject
  • @Torantulino
  • @jedisct1
  • @s0md3v
  • @blakeembrey
  • @feross
  • @mattn
  • @encode
  • @phith0n
  • @danilowoz
View all

Most used topics

Loading…
GitHub Sponsor Developer Program Member