How to disable nuclei from scanning port not specified

[iuliu8899]

I run nuclei by this command

nuclei -u ip:8080

My aim is to just scan 8080 port of this ip. But it still scanned other port.

It discover mysql on 3306, redis on 6379 and ssh on 22 port.

My question is: How to disable this feature? (since I only hope to scan specific port)

[rxerium]

Hey @iuliu8899, I'd suggest narrowing down the templates you are using to http, this can be done by using the following command:

nuclei -u ip:8080 -t ~/nuclei-templates/http

Replace ~/nuclei-templates/http with the path to the http folder.

Hope this helps 😊

[rxerium]

So to clarify, you'd like hosts with ports associated with http (80/443/8080/10443 etc..) to run against http templates and hosts with other ports to run against their associated services? Such as, a host with a port 21 will run against FTP templates?

[iuliu8899]

E.g. now I have a target.txt file, in which 2 target defined:
Ip:3306
Ip:8080

Then if I start nuclei scan by
'nuclei -l target.txt -t ~/nuclei-templates/http/'

The result will be not accurate since we only use http pocs.

But if I run by

'Nuclei -l target.txt'

The results will contains many ports not in my target.txt, such as redis 6379 if there is a redis service on 6379 port. how to disable that.

Hope I described clearly...

[rxerium]

Apologies for the delayed reply. As far as I know this is not possible however I will leave this issue for the PD team to confirm.

[GeorginaReeder]

Hey @iuliu8899 , we can take a look into this for you. Bear with us while I share with the team!

[iuliu8899]

@GeorginaReeder @rxerium
thank you all!!!

[ehsandeep]

@iuliu8899 you can exclude tcp and javascript protocol based template that has hardcoded ports for certain service / exploit detection to avoid this.

nuclei -ept tcp,javascript