From the Assets tab, there are three methods to add your assets:
* Add New Assets
* Connect Cloud Services
* HttpX Integration
Each unique path, including those with specified ports will be added as an individual asset for scanning. If you have questions about your specific setup, get in touch with us at [support@projectdiscovery.io](mailto:support@projectdiscovery.io).
## Discover New Assets
Discovery is the easiest method of importing assets into PDCP for vulnerability scanning.
* **Scope**: manually input your list of up to 10 root domains in the Free plan, or up to 100 root domains in Pro.
* Auto Discovery is enabled by default and will automatically discover your assets including subdomains, open ports, and other web technologies. Port scanning and technology detection is available in Pro and Enterprise plans only.
* *Note: Disable Auto Discovery to restrict upload to your specified asset list.*
* Domain, IP address, or CIDR. For CIDR ranges each individual IP will be added as a single asset.
* **Advanced**: Turning off Auto Discovery disables all discovery settings.
* Use Advanced to modify individual discovery settings for subdomains, open ports, etc.
* Customize the frequency of Auto Discovery to continuously monitor for new assets.
Cloud connections can be configured to check for updates to your assets and ensure your information is up to date.
For the majority of integrations, you only need to provide a name and the token or access details generated by the provider.
## HttpX Integration
See HttpX Integration [docs](https://docs.projectdiscovery.io/tools/httpx/running#ui-dashboard-pdcp-integration) and [blog](https://blog.projectdiscovery.io/introducing-httpx-dashboard-2/) for more details.
## Managing Assets
Once your assets are added successfully they display in the asset list.
* Use the context menu to rename, **Update** to add or remove assets, Re-Discover, or Delete.
* Uploaded assets are immediately available to use in scans.
* Assets that are part of an existing scan cannot be deleted.
# ProjectDiscovery Cloud Platform Assets
A high-level overview of the PDCP Asset functionality
## Overview
In the ProjectDiscovery Cloud Platform (PDCP), an asset is any host or target for vulnerability scanning. An asset is defined as the combination of a host (subdomain or IP address) and a specific port.
Assets can be discovered via Auto-Discovery from a root domain or specified IP/CIDR range. Note: IP and CIDR range discovery and enrichment are only available on Pro and Enterprise plans.
Assets can also be imported through our cloud integrations or direct upload through a .txt file.
Once assets are added to PDCP, they can be selected as targets in a vulnerability scan.
## FAQ
### General
**Is there a limitation to how many root domains I can run auto-discovery on?**
The Free tier supports up to 10 root domain discoveries per month, while Pro supports 100 domains per month and Enterprise offers custom limits.
**What kind of Assets are supported?**
Assets or hosts can be a URL, an IP address, a root domain, or a CIDR range.
**Can everyone in my team see all the Assets that were added to my environment?**
Yes, all assets in your environment are shared across your team.
### Assets and Scans
**Can I exempt specific assets from a scan?**
Building a new scan requires you to choose assets as part of the scan configuration, so yes, scans will apply to whatever assets you include in the scan.
### Adding and Modifying Assets
**What's the difference between Add Assets, cloud integration?**
* Add allows you to choose a list of individual assets or root domains to add as a list or TXT file.
* Enabling **Auto Discovery** automatically enumerates associated subdomains and open ports. Each subdomain or unique path identified is added as individual asset.
* Cloud Integrations connect your cloud service provider and import any assets identified.
**Can I edit existing Assets?**
Yes! Assets that are added to PDCP can be renamed.
**Can I delete Assets?**
You can delete any assets, however assets that are included in a scan will generate an error.
# AI Assistance
Review details on using AI to help generate templates for Nuclei and PDCP
[The Template Editor](https://cloud.projectdiscovery.io/) has AI to generate templates for vulnerability reports. This document helps to guide you through the process, offering usagwe tips and examples.
## Overview
Powered by ProjectDiscovery's deep library of public Nuclei templates and a rich CVE data set, the AI understands a broad array of security vulnerabilities. First, the system interprets the user's prompt to identify a specific vulnerability. Then, it generates a template based on the steps required to reproduce the vulnerability along with all the necessary meta information to reproduce and remediate.
## Initial Setup
Kick start your AI Assistance experience with these steps:
1. **Provide Detailed Information**: Construct comprehensive Proof of Concepts (PoCs) for vulnerabilities like Cross-Site Scripting (XSS), and others.
2. **Understand the Template Format**: Get to grips with the format to appropriately handle and modify the generated template.
3. **Validation and Linting**: Use the integrated linter to guarantee the template's validity.
4. **Test the Template**: Evaluate the template against a test target ensuring its accuracy.
## Best Practices
* **Precision Matters**: Detailed prompts yield superior templates.
* **Review and Validate**: Consistently check matchers' accuracy.
* **Template Verification**: Validate the template on known vulnerable targets before deployment.
## Example Prompts
The following examples demonstrate different vulnerabilities and the corresponding Prompt.
Welcome back, admin
... ``` The application improperly handles user input in the password field, leading to an SQL Injection vulnerability.Product added to cart. Current balance: -$19.99
... ``` The application fails to validate the quantity parameter, resulting in a Business Logic vulnerability.Your card: 49
... ``` The application processes the message parameter as a template, leading to an SSTI vulnerability.Welcome, otheruser
... ``` The application exposes sensitive information of a user (ID: 2) who is not the authenticated user (session: abcd1234), leading to an IDOR vulnerability.Your VIP trial period has been extended by 7 days.
``` The application does not limit the number of times the trial period can be extended, leading to a business logic vulnerability.
To share a template, click on the "Share" button to generate a link that can be sent to others.
## How to Share Public Templates
Public templates are designed for ease of sharing. You don't need to be authenticated to share them, meaning there's no need to log in. These templates are mapped with their Template ID, following a static URL pattern. For instance, a public template URL might resemble this: [https://cloud.projectdiscovery.io/public/CVE-2023-35078](https://cloud.projectdiscovery.io/public/CVE-2023-35078). In the given URL, `CVE-2023-35078` is the Template ID representing the template in the [nuclei-templates](https://github.com/projectdiscovery/nuclei-templates) project.
## How to Share User Templates
User templates, unlike public templates, require authentication for sharing. These templates are assigned a unique, UUID-based ID similar to YouTube's unlisted URLs for sharing purposes. This means anyone given the shared URL will be able to access the template.
## Revoking Access to Shared Templates
If at any point you want to limit the access to the shared template, it is as simple as changing the visibility of the template to private. After this change, the originally shared link will become inactive. However, you have the flexibility to share it again, which would generate a new unique ID.
Please remember, while sharing is easy, it's important to distribute the URL cautiously as the link allows full access to the shared template.
# Editor Keyboard Shortcuts
Review keyboard shortcuts for Nuclei templates
The Template Editor is equipped with keyboard shortcuts to make it more efficient. You can use these shortcuts whether you're creating a new template or optimizing an existing one, enabling quicker actions without interfering with your workflow.
Here is a list of the actions, along with their corresponding shortcut keys and descriptions:
| **Action** | **Shortcut Key** | **Description** |
| --------------------- | ----------------------- | ------------------------------------------------------------ |
| Save Template | **CMD + S** | Saves the current template. |
| Duplicate Template | **CMD + D** | Creates a copy of a public template. |
| Execute Template | **CMD + SHIFT + SPACE** | Run a scan with the current template. |
| Share Template Link | **ALT + SHIFT + SPACE** | Generates a URL for sharing the current template. |
| Search Templates | **CMD + K** | Searches within your own templates. |
| Copy Template | **CMD + SHIFT + C** | Copies the selected template to your clipboard. |
| Show/Hide Side Bar | **CMD + B** | Toggles the visibility of the side bar. |
| Show/Hide Debug Panel | **CMD + SHIFT + M** | Toggles the visibility of the debug panel for extra insight. |
## Add Assets for
### Add a Cloud Integration
5. From the view of the user you just created, navigate to the Security Credentials tab, scroll down to Access Keys and select **Create access key**.
6. Select **Third-party service** and accept the confirmation.
7. A new access key will be generated. **Save the Access Key ID and Secret Access Key in a safe place to add those details to PDCP.**
## Custom automation
Imagine your penetration testing team found a critical vulnerability on `app.hooli.com`. Now, you want to inspect to look for this vulnerability on your other instances or ensure it does not reappear in the future on the same app:
### Example
```
SQL Injection vulnerability in app.hooli.com/login. This vulnerability can potentially allow an attacker to bypass our authorization system and gain access to any given user account. This is a very critical vulnerability that needs to be patched.
HTTP Request:
POST /login HTTP/1.1
Host: app.hooli.com
User-Agent: Mozilla/5.0
Content-Type: application/x-www-form-urlencoded
username=admin&password=' OR '1'='1
HTTP Response:
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 1337
Server: Apache
...
Welcome back, admin
... The application improperly handles user input in the password field, leading to an SQL Injection vulnerability. ``` ### Create a Custom Template Follow the steps below to build a custom template and automation.
For advanced scan configurations, check out [Integrations](/cloud/scanning/integrations) we support for Jira, Slack, and more.
### Individual Scans
To view the results of an individual scan, select that scan from the Scans page by clicking on the name. This displays the results of that scan and includes categories (Vulnerabilities, Info, Affected Assets) or filtering (Status, Severity, Host) to explore the details of the individual scan.
Select the **Logs** tab to view scanning logs with information around time, assets, detection template, and match results. The Logs also include error information to assist with any troubleshooting.
### Vulnerabilities
From the results view (all or individual) selecting a vulnerability expands to show you the complete details including the template(s), assets, and detection information. From the results page you can:
* Export your vulnerabilities (JSON, CSV, PDF)
* Modify the status of the vulnerabilities (false positives/closed)
* Retest individual vulnerabilities
* Review the template used to identify vulnerabilities
Click on the individual vulnerability to review detailed information, including remediation recommendations.
### Configurations
Configurations is where all of our [scanning-based integrations](/cloud/scanning/integrations) are available. The Configurations section includes individual pages for each category outlined below:
* **Alerting** - currently supports integrations with Slack, MS Teams, Email, and Custom Webhooks. These great features can connect the scanning data with your teams through automation.
* **Ticketing** - currently supports integrations for Jira, GitHub, and GitLab. Use these integrations to create something as simple as an email notification, or integrate with Jira to create tickets based on your scan results.
* **Scan** - configure custom http headers, template variables, and custom interactsh server for your scans.
* **Template** - review our built in template configurations or create a new template configuration with template filters to include or exclude based on severity, tags, protocol, and template ID
# Scan Integrations
A high-level user guide around integrations for scanning including alerts and ticketing
## Summary
ProjectDiscovery Cloud Platform (PDCP) includes integrations for several third-party tools with different user goals in mind.
This includes tools that can keep your team up to date with real time alerts from applications like Slack, Microsoft Teams, and more.
PDCP can also help automate the remediation process with direct integration to ticketing systems like Jira and GitHub.
Visit the [Scans --> Configurations](https://cloud.projectdiscovery.io/scans/configs) section of PDCP to explore and configure your integrations.
### Slack
PDCP supports scan notifications through Slack. To enable Slack notifications provide a name for your Configuration, a webhook, and an optional username.
Choose from the list of **Events** (Scan Started, Scan Finished, Scan Failed) to specify what notifications are generated. All Events are selected by default
* Refer to Slack's [documentation on creating webhooks](https://api.slack.com/messaging/webhooks) for configuration details.
### MS Teams
PDCP supports notifications through Microsoft Teams. To enable notifications, provide a name for your Configuration and a corresponding webhook.
Choose from the list of **Events** (Scan Started, Scan Finished, Scan Failed) to specify what notifications are generated.
* Refer to [Microsoft’s documentation on creating webhooks](https://learn.microsoft.com/en-us/microsoftteams/platform/webhooks-and-connectors/how-to/add-incoming-webhook?tabs=newteams%2Cdotnet) for configuration details.
### Email
PDCP supports notifications via Email. To enable email notifications for completed scans simply add your recipient email addresses.
Check out a sample email below.
### Webhook
PDCP supports notifications via custom Webhook. This functionality supports posting events from any user-defined endpoint based on your environment and system requirements.
To enable webhook notifications for completed scans provide a config name, webhook URL, and the required authentication details.
For example, send a custom webhook to an internal alerting system in this format:
`https://example.com/hook/alert`
## Ticketing
The integrations under Ticketing support ticketing functionality as part of scanning and include support for Jira, GitHub, GitLab, and Linear.
### Jira
PDCP provides integration support for Jira to create new tickets when vulnerabilities are found.
Provide a name for the configuration, the Jira instance URL , the Account ID, the Email, and the associated API token.
Details on creating an API token are available [in the Jira documentation here.](https://support.atlassian.com/atlassian-account/docs/manage-api-tokens-for-your-atlassian-account/)
### GitHub
PDCP provides integration support for GitHub to create new tickets when vulnerabilities are found.
Provide a name for the configuration, the Organization or username, Project name, Issue Assignee, Token, and Issue Label. The Issue Label determines when a ticket is created. (For example, if critical severity is selected, any issues with a critical severity will create a ticket.)
* The severity as label option adds a template result severity to any GitHub issues created.
* Deduplicate posts any new results as comments on existing issues instead of creating new issues for the same result.
Details on setting up access in GitHub [are available here.](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/managing-your-personal-access-tokens)
### GitLab
ProjectDiscovery Cloud Platform provides integration support for GitLab to create new tickets when vulnerabilities are found.
Provide your GitLab username, Project name, Project Access Token and a GitLab Issue label. The Issue Label determines when a ticket is created.
(For example, if critical severity is selected, any issues with a critical severity will create a ticket.)
* The severity as label option adds a template result severity to any GitLab issues created.
* Deduplicate posts any new results as comments on existing issues instead of creating new issues for the same result.
Refer to GitLab’s documentation for details on [configuring a Project Access token.](https://docs.gitlab.com/ee/user/project/settings/project_access_tokens.html#create-a-project-access-token)
### Linear
ProjectDiscovery Cloud Platform provides integration support for Linear to create new tickets when vulnerabilities are found.
Provide your Linear API Key, Linear Team ID, and Linear Open State ID to set up the integration. Here are the specific steps to access or generate each parameter from your Linear workspace.
* To generate your **Linear API Key**, navigate to Linear > Profile Icon > Preferences > API > Personal API keys > Create new API key. Or, navigate to linear.app/\[workspace name]/settings/api.
* To retrieve your **Linear Team ID**, you can use the following cURL command
```bash
curl -X POST https://api.linear.app/graphql \
-H "Content-Type: application/json" \
-H "Authorization: YOUR_API_KEY" \
-d '{"query":"query { teams { nodes { id name } } }"}'
```
* To retrieve your **Linear Open State ID**, you can use the following cURL command
```bash
curl -X POST https://api.linear.app/graphql \
-H "Content-Type: application/json" \
-H "Authorization: YOUR_API_KEY" \
-d '{"query":"query { workflowStates { nodes { id name } } }"}'
```
Refer to Linear's [documentation](https://developers.linear.app/docs/graphql/working-with-the-graphql-api) for details on their API.
## Scan Configs
Use scan configurations to implement custom http headers, template variables, and custom interactsh server for your scans.
## Template Configs
Review our built in template configurations or create a new template configuration with template filters to include or exclude based on severity, tags, protocol, and template ID.
Learn more about our [Template Editor!](/cloud/editor/overview)
# Connect Your Nuclei Scan to PDCP
Review your Nuclei Scan Results in ProjectDiscovery Cloud Platform
## Overview
In this section we'll walk through the steps you need to run a scan in [Nuclei](/tools/nuclei/overview) and connect your scan to ProjectDiscovery Cloud Platform (PDCP).
## Set up your API Key
To connect your existing Nuclei results to PDCP you will need to create a free API Key
1. Visit [https://cloud.projectdiscovery.io](https://cloud.projectdiscovery.io)
2. Open the setting menu from the top right and select "API Key" to create your API Key
3. Use the `nuclei -auth` command, and enter your API key when prompted.
## Configure Team (Optional)
If you want to upload the scan results to a team workspace instead of your personal workspace, you can configure the Team ID. You can use either the CLI option or the environment variable, depending on your preference.
* **Obtain Team ID:**
* To obtain your Team ID, navigate to [https://cloud.projectdiscovery.io/settings/team](https://cloud.projectdiscovery.io/settings/team) and copy the Team ID from the top right section.
* **CLI Option:**
* Use the `-tid` or `-team-id` option to specify the team ID.
* Example: `nuclei -tid XXXXXX -cloud-upload`
* **ENV Variable:**
* Set the `PDCP_TEAM_ID` environment variable to your team ID.
* Example: `export PDCP_TEAM_ID=XXXXX`
Either of these options is sufficient to configure the Team ID.
## Run a Scan
To run a scan, from a terminal window with your Nuclei installation, use the `nuclei -target` or `nuclei -u` option to designate a target/host.
**For example, a command might look like:**
```bash
nuclei -target http://honey.scanme.sh -cloud-upload
```
* This example uses a sample site from ProjectDiscovery ([http://honey.scanme.sh](http://honey.scanme.sh))
* The `-cloud-upload` flag is required to share results with PDCP
* You can run this command against any URL you want (with appropriate permissions)
* To reduce or narrow the scan results you can select a specific template folder for your scan
* For example `nuclei -u http://buffer.com -t dns/ -cloud-upload`
**And the output of your command (scan) would be:**
```console
__ _
____ __ _______/ /__ (_)
/ __ \/ / / / ___/ / _ \/ /
/ / / / /_/ / /__/ / __/ /
/_/ /_/\__,_/\___/_/\___/_/ v3.1.0
projectdiscovery.io
[INF] Current nuclei version: v3.1.0 (latest)
[INF] Current nuclei-templates version: v9.6.9 (latest)
[INF] To view results on cloud dashboard, visit https://cloud.projectdiscovery.io/scans upon scan completion.
[INF] New templates added in latest release: 73
[INF] Templates loaded for current scan: 71
[INF] Executing 71 signed templates from projectdiscovery/nuclei-templates
[INF] Targets loaded for current scan: 1
[INF] Using Interactsh Server: oast.live
[CVE-2017-9506] [http] [medium] http://honey.scanme.sh/plugins/servlet/oauth/users/icon-uri?consumerUri=http://clk37fcdiuf176s376hgjzo3xsoq5bdad.oast.live
[CVE-2019-9978] [http] [medium] http://honey.scanme.sh/wp-admin/admin-post.php?swp_debug=load_options&swp_url=http://clk37fcdiuf176s376hgyk9ppdqe9a83z.oast.live
[CVE-2019-8451] [http] [medium] http://honey.scanme.sh/plugins/servlet/gadgets/makeRequest
[CVE-2015-8813] [http] [high] http://honey.scanme.sh/Umbraco/feedproxy.aspx?url=http://clk37fcdiuf176s376hgj885caqoc713k.oast.live
[CVE-2020-24148] [http] [critical] http://honey.scanme.sh/wp-admin/admin-ajax.php?action=moove_read_xml
[CVE-2020-5775] [http] [medium] http://honey.scanme.sh/external_content/retrieve/oembed?endpoint=http://clk37fcdiuf176s376hgyyxa48ih7jep5.oast.live&url=foo
[CVE-2020-7796] [http] [critical] http://honey.scanme.sh/zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://clk37fcdiuf176s376hgi9b8sd33se5sr.oast.live%23
[CVE-2017-18638] [http] [high] http://honey.scanme.sh/composer/send_email?to=hVsp@XOvw&url=http://clk37fcdiuf176s376hgyf8y81i9oju3e.oast.live
[CVE-2018-15517] [http] [high] http://honey.scanme.sh/index.php/System/MailConnect/host/clk37fcdiuf176s376hgi5j3fsht3dchj.oast.live/port/80/secure/
[CVE-2021-45967] [http] [critical] http://honey.scanme.sh/services/pluginscript/..;/..;/..;/getFavicon?host=clk37fcdiuf176s376hgh1y3xjzb3yjpy.oast.live
[CVE-2021-26855] [http] [critical] http://honey.scanme.sh/owa/auth/x.js
[INF] Scan results uploaded! View them at https://cloud.projectdiscovery.io/scans/clk37krsr14s73afc3ag
```
## Viewing Your Scan
After the scan is complete a URL will display on the command line interface. Visit this URL to check your results in PDCP.
Your scan results will also be available in the Scan tab of PDCP with a generic system generated name. You can rename the scan to identify it later.
After more than one scan "results" tab shows the scan results for all scans in your PDCP environment.
## What is ProjectDiscovery Cloud Platform?
[ProjectDiscovery Cloud Platform](https://cloud.projectdiscovery.io/) (PDCP) is a cloud-hosted security platform designed to provide continuous visibility across your external attack surface by detecting exploitable vulnerabilities and misconfigurations.
It is built to solve a variety of use cases, and scale to support the key workflows application security teams need to secure their infrastructure.
* Visit the full [PDCP Docs](/cloud/introduction)
* Review [our FAQ](/cloud/general-faq)
* Explore some common [use cases](/cloud/usecases)
## What are some key features?
PDCP offers a range of capabilities including cloud-hosting, asset discovery and management, remediation and regression testing workflows, reporting, collaboration, integrations and more.
* Check out more info [on our features](/cloud/features)
## How do I get started?
To get started visit [cloud.projectdiscovery.io](https://cloud.projectdiscovery.io/) and sign up.
# How to Use ProjectDiscovery Documentation
A quick start guide to docs and resources.
Welcome to ProjectDiscovery's documentation hub. a primary resource for everything related to ProjectDiscovery. We offer information about all of our solutions to support potential customers, new users, and our existing community.
Get support, share stories, and engage with the community.
Join ServerThis domain is for use in illustrative examples in documents. You may use this\n domain in literature without prior coordination or asking for permission.
\n \n