Skip to main content
Glama
enesjakozh
Spritualkb

nuclei-server MCP Server

by Spritualkb
OverviewInspectSchemaRelated ServersScoreDiscussions
JavaScript
Local

start_scan

Initiate a targeted security scan using specified templates to identify vulnerabilities on a given URL or IP address. Customize parameters like rate limit, severity, and concurrency for precise results.

Instructions

Start a new nuclei scan

Input Schema

TableJSON Schema
NameRequiredDescriptionDefault
concurrencyNoConcurrent requests
proxyTypeNo
proxyUrlNoProxy URL (e.g., socks5://127.0.0.1:1080)
rateLimitNoRate limit per second
severityNo
targetYesTarget URL or IP address
templateNoTemplate to use for scanning
templatesDirNoDirectory with templates
timeoutNoTimeout in seconds

Implementation Reference

  • src/index.ts:112-218 (handler)
    Handler for the 'start_scan' tool within CallToolRequestSchema: checks maximum concurrent scans, extracts parameters, generates unique scan ID, initializes scan state, constructs and spawns 'nuclei' command with configurable options (target, template, rate-limit, etc.), streams stdout to update progress and parse JSON findings upon completion.
    if (request.params.name === "start_scan") { const activeScans = Object.values(scans).filter( (scan) => scan.status === "running" ).length; if (activeScans >= MAX_CONCURRENT_SCANS) { return { content: [ { type: "text", text: `Reached maximum concurrent scans (${MAX_CONCURRENT_SCANS}), please try again later`, }, ], isError: true, }; } const { target, template, rateLimit, templatesDir, severity, timeout, concurrency, proxyUrl, proxyType } = request.params.arguments as { target: string; template?: string; rateLimit?: number; templatesDir?: string; severity?: string; timeout?: number; concurrency?: number; proxyUrl?: string; proxyType?: string; }; const scanId = uuidv4(); scans[scanId] = { id: scanId, target, status: "pending", progress: 0, findings: [], }; let command = `nuclei -u ${target} ${severity ? `-severity ${severity}` : ""} ${ template ? `-t ${template}` : "" } ${rateLimit ? `-rl ${rateLimit}` : ""} ${templatesDir ? `-templates ${templatesDir}` : ""} ${ timeout ? `-timeout ${timeout}` : "" } ${concurrency ? `-c ${concurrency}` : ""} -json`; if (proxyUrl && proxyType) { if (proxyType === "socks5") { command += ` -proxy-socks-url ${proxyUrl}`; } else { command += ` -proxy-url ${proxyUrl}`; } } try { scans[scanId].status = "running"; const process = spawn(command, { shell: true, stdio: ["pipe", "pipe", "pipe"], }); let output = ""; process.stdout.on("data", (data) => { output += data.toString(); scans[scanId].progress = Math.min(100, Math.round((output.split("\n").length / 100) * 100)); }); process.on("close", () => { scans[scanId].progress = 100; const findings = output .split("\n") .filter(Boolean) .map((line) => { try { return JSON.parse(line); } catch { return null; } }) .filter(Boolean); scans[scanId].findings = findings; scans[scanId].status = "completed"; }); scans[scanId].process = process; return { content: [ { type: "text", text: `Scan ${scanId} started`, }, ], }; } catch (error) { scans[scanId].status = "failed"; return { content: [ { type: "text", text: `Scan ${scanId} failed: ${error instanceof Error ? error.message : "Unknown error"}`, }, ], isError: true, }; } }
  • src/index.ts:74-94 (schema)
    Input schema definition for the 'start_scan' tool, specifying properties like target (required), template, rateLimit, templatesDir, severity (enum), timeout, concurrency, proxyUrl, and proxyType.
    inputSchema: { type: "object", properties: { target: { type: "string", description: "Target URL or IP address" }, template: { type: "string", description: "Template to use for scanning" }, rateLimit: { type: "number", description: "Rate limit per second" }, templatesDir: { type: "string", description: "Directory with templates" }, severity: { type: "string", enum: ["info", "low", "medium", "high", "critical"] }, timeout: { type: "number", description: "Timeout in seconds" }, concurrency: { type: "number", description: "Concurrent requests" }, proxyUrl: { type: "string", description: "Proxy URL (e.g., socks5://127.0.0.1:1080)" }, proxyType: { type: "string", enum: ["http", "socks5"] }, }, required: ["target"], },
  • src/index.ts:70-107 (registration)
    Registration of the 'start_scan' tool (and 'cancel_scan') in the tools list returned by ListToolsRequestSchema handler.
    tools: [ { name: "start_scan", description: "Start a new nuclei scan", inputSchema: { type: "object", properties: { target: { type: "string", description: "Target URL or IP address" }, template: { type: "string", description: "Template to use for scanning" }, rateLimit: { type: "number", description: "Rate limit per second" }, templatesDir: { type: "string", description: "Directory with templates" }, severity: { type: "string", enum: ["info", "low", "medium", "high", "critical"] }, timeout: { type: "number", description: "Timeout in seconds" }, concurrency: { type: "number", description: "Concurrent requests" }, proxyUrl: { type: "string", description: "Proxy URL (e.g., socks5://127.0.0.1:1080)" }, proxyType: { type: "string", enum: ["http", "socks5"] }, }, required: ["target"], }, }, { name: "cancel_scan", description: "Cancel a running scan", inputSchema: { type: "object", properties: { scanId: { type: "string", description: "Scan ID to cancel" }, }, required: ["scanId"], }, }, ],

This server cannot be installed

Other Tools

Related Tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/Spritualkb/nuclei-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server