Coalition website screenshot

Coalition

Coalition is a San Francisco–headquartered cyber insurance and active risk management provider founded in 2017 by Joshua Motta (CEO) and John Hering. Coalition pairs commercial insurance lines — Cyber, Technology Errors & Omissions, Executive Risks (D&O, EPL, Fiduciary, Crime), Miscellaneous Professional Liability, and AI coverage — with a continuous attack-surface monitoring and incident-response platform (Coalition Control, Wirespeed ADR, Coalition Incident Response, Security Awareness Training). The company's underwriting engine is exposed to brokers and distribution partners through the Coalition Active Insurance API, a RESTful surface that supports rate, quote, bind, document generation, renewals, and webhook events across the United States and Canada, with executive risks APIs and additional product lines added over time. Coalition also publishes a public Exploit Scoring System (ESS) API at ess-api.coalitioninc.com that exposes CVE detail, ESS/EPSS/CVSS scoring, exploit references (ExploitDB, Metasploit), GitHub repository signals, and Twitter mention timelines for over 200,000 vulnerabilities. Coalition is backed by Allianz X, Valor Equity Partners, Ribbit Capital, Mitsui Sumitomo, Kinetic Partners and other strategic insurers (Allianz, Arch, Ascot, Zurich, Swiss Re, Lloyd's syndicates); it raised a $250M Series F in 2022 at a $5B valuation. The Active Insurance API is partner-gated (no public OpenAPI), but the ESS API is fully public with OpenAPI 3.1, an interactive docs UI, and ReDoc.

2 APIs 0 Features
Cyber InsuranceInsuranceInsurtechRisk ManagementCybersecurityVulnerability ManagementCVEExploit ScoringThreat IntelligenceIncident ResponseAttack Surface ManagementBrokersMGAExecutive RisksTechnology E&OActive Insurance

APIs

Coalition Exploit Scoring System (ESS) API

Public REST API exposing Coalition's machine-learning Exploit Scoring System over more than 200,000 CVEs. Returns vulnerability detail, ESS / EPSS / CVSS score summaries, ESS sh...

Coalition Active Insurance API

Partner-gated REST API that brokers and distribution partners use to rate, quote, bind, generate documents (quote PDF, Coalition Risk Assessment, signature bundle, specimen poli...

Collections

GraphQL

Coalition GraphQL Schema

This conceptual GraphQL schema models the Coalition Active Insurance API and Exploit Scoring System (ESS) API as a unified graph. Coalition is a cyber insurance and active risk ...

GRAPHQL

Pricing Plans

Rate Limits

Coalition Inc Rate Limits

3 limits

RATE LIMITS

FinOps

Semantic Vocabularies

Coalition Inc Context

27 classes · 0 properties

JSON-LD

API Governance Rules

Coalition API Rules

8 rules · 1 errors 5 warnings 2 info

SPECTRAL

JSON Structure

Coalition Ess Cve Structure

0 properties

JSON STRUCTURE

Example Payloads

Coalition Ess Getcve Example

2 fields

EXAMPLE

Resources

🔗
Website
Website
🔗
About
About
🔗
Products
Products
🔗
Control
Control
🔗
Security
Security
🔗
ExploitScoringSystem
ExploitScoringSystem
🔗
BrokerIQ
BrokerIQ
🔗
API
API
🔗
Partners
Partners
🔗
Partnership
Partnership
📰
Newsroom
Newsroom
🔗
Announcements
Announcements
📰
Blog
Blog
🔗
KnowledgeCenter
KnowledgeCenter
🔗
HelpCenter
HelpCenter
🔗
Careers
Careers
🔗
Contact
Contact
🔗
LinkedIn
LinkedIn
🔗
Twitter
Twitter
👥
YouTube
YouTube
🔗
Facebook
Facebook
🔗
Instagram
Instagram

Sources

Raw ↑
opencollection: 1.0.0
info:
  name: Coalition Exploit Scoring System API
  version: 1.0.0
items:
- info:
    name: List CVEs
    type: http
  http:
    method: GET
    url: https://ess-api.coalitioninc.com/cve
    params:
    - name: search
      value: ''
      type: query
    - name: has_shifting_ess
      value: ''
      type: query
    - name: date_from
      value: ''
      type: query
    - name: date_to
      value: ''
      type: query
    - name: min_ess_score
      value: ''
      type: query
    - name: max_ess_score
      value: ''
      type: query
    - name: min_epss_score
      value: ''
      type: query
    - name: max_epss_score
      value: ''
      type: query
    - name: seen_on_coalition_honeypots
      value: ''
      type: query
    - name: seen_on_cisa_kev
      value: ''
      type: query
    - name: seen_on_vulncheck_kev
      value: ''
      type: query
    - name: seen_on_exploitdb
      value: ''
      type: query
    - name: seen_on_metasploit
      value: ''
      type: query
    - name: seen_on_github
      value: ''
      type: query
    - name: seen_on_x
      value: ''
      type: query
    - name: order_by
      value: ''
      type: query
    - name: desc
      value: ''
      type: query
    - name: page
      value: ''
      type: query
    - name: page_size
      value: ''
      type: query
  docs: Retrieve CVEs and their details based on granular controls
- info:
    name: Get CVE
    type: http
  http:
    method: GET
    url: https://ess-api.coalitioninc.com/cve/:cve_id
    params:
    - name: cve_id
      value: ''
      type: path
  docs: Retrieve information about a single CVE
- info:
    name: Get CVE ESS History
    type: http
  http:
    method: GET
    url: https://ess-api.coalitioninc.com/cve/:cve_id/history
    params:
    - name: cve_id
      value: ''
      type: path
    - name: latest
      value: ''
      type: query
    - name: date_from
      value: ''
      type: query
    - name: date_to
      value: ''
      type: query
    - name: page
      value: ''
      type: query
    - name: page_size
      value: ''
      type: query
  docs: Retrieve history information about a single CVE
- info:
    name: List ExploitDB Exploits For CVE
    type: http
  http:
    method: GET
    url: https://ess-api.coalitioninc.com/cve/:cve_id/exploits/exploitdb
    params:
    - name: cve_id
      value: ''
      type: path
    - name: page
      value: ''
      type: query
    - name: page_size
      value: ''
      type: query
  docs: Retrieve information about a exploits from ExploitDB of a CVE
- info:
    name: List Metasploit Modules For CVE
    type: http
  http:
    method: GET
    url: https://ess-api.coalitioninc.com/cve/:cve_id/exploits/metasploit
    params:
    - name: cve_id
      value: ''
      type: path
    - name: page
      value: ''
      type: query
    - name: page_size
      value: ''
      type: query
  docs: Retrieve information about a exploit from Metasploit of a CVE
- info:
    name: List Twitter Mentions For CVE
    type: http
  http:
    method: GET
    url: https://ess-api.coalitioninc.com/cve/:cve_id/mentions/twitter
    params:
    - name: cve_id
      value: ''
      type: path
    - name: page
      value: ''
      type: query
    - name: page_size
      value: ''
      type: query
  docs: Retrieve information about a mentions from Twitter of a CVE
- info:
    name: List GitHub Repositories Mentioning CVE
    type: http
  http:
    method: GET
    url: https://ess-api.coalitioninc.com/cve/:cve_id/repositories/github
    params:
    - name: cve_id
      value: ''
      type: path
    - name: page
      value: ''
      type: query
    - name: page_size
      value: ''
      type: query
  docs: Retrieve information about a repositories from Github of a CVE
bundled: true