nuclei-templates Improve secret detection in generic-env and extend git-config leak surfaces

Following reviewer feedback from PR #14073 requesting matcher improvement rather than duplicate templates, this enhancement adds advanced regex detection for JWT tokens, private keys, cloud provider keys, Base64-encoded secrets, database/system credentials, and extends git exposure surfaces beyond config and HEAD. This provides stronger real-world detection coverage for bug hunting reconnaissance.

Nov 28 '25 11:11 aryan-mrrobot

is there any update on this ?

Dec 01 '25 12:12 aryan-mrrobot

Hi @aryan-mrrobot

Thanks for sharing the template

we already have template for these

http/exposures/configs/git-config.yaml - .git/HEAD falls under the same .git directory, so this is already handled.
http/vulnerabilities/generic/generic-env.yaml - if you think any matcher is missing or not catching certain results, we can update the existing matcher in this template.

Looking forward to hear back from you

Thanks

Dec 02 '25 17:12 ritikchaddha