Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Proposed changes
Allows exporting of scan results to a MongoDB database for storage and reporting. As there are several options for JSON formatting and other datastore exports exist (e.g., Elasticsearch, Splunk), this seemed like a natural capability to support.
Closes #5700
It utilizes the same
issue-tracker-config.yml
format with the following options:It also optionally allows the use of the environment variable
MONGO_CONNECTION_STRING
as the connection string may contain passwords or other sensitive information that users may not want to store in a config file.To run this locally:
Run a Docker Compose stack for MongoDB (source):
docker-compose.yml
Run the stack with:
Navigate to
http://localhost:8081
and create anuclei
database.Create the config file
reporters.yml
(or update one in place) with the contents:Run Nuclei with the config, adding any additional parameters to tune the scan as desired.
Checklist