Cybersecurity and Infrastructure Security Agency website screenshot

Cybersecurity and Infrastructure Security Agency

The Cybersecurity and Infrastructure Security Agency (CISA) is the United States federal civilian cybersecurity agency, part of the Department of Homeland Security. CISA reduces cybersecurity and physical security risk for the nation, coordinates federal civilian cyber defense, and partners with state, local, tribal, and territorial governments and the private sector. CISA publishes a number of public, unauthenticated machine-readable feeds, including the Known Exploited Vulnerabilities (KEV) catalog (mandatorily remediated by federal civilian agencies under Binding Operational Directive 22-01), Cybersecurity Advisories, and Common Security Advisory Framework (CSAF) advisories. CISA also operates an Automated Indicator Sharing (AIS) TAXII 2.1 server that delivers STIX cyber threat indicators to vetted partners under a Terms of Use and Interconnection Agreement.

3 APIs 0 Features
AdvisoriesAISBinding Operational DirectiveCSAFCVECWECybersecurityFederal GovernmentGovernmentICS-CERTInformation SharingKEVKnown Exploited VulnerabilitiesRisk ManagementSecuritySTIXTAXIIThreat IntelligenceVulnerability Management

APIs

CISA Known Exploited Vulnerabilities (KEV) Catalog

The KEV catalog is CISA's authoritative list of vulnerabilities actively exploited in the wild. The full catalog is published as JSON and CSV at cisa.gov/sites/default/files/fee...

CISA Automated Indicator Sharing (AIS) TAXII Server

CISA's Automated Indicator Sharing (AIS) program uses a TAXII 2.1 server to deliver STIX-formatted cyber threat indicators (CTI) and defensive measures (DM) to vetted partners. ...

CISA Cybersecurity Advisories

CISA publishes Cybersecurity Advisories (CSAs), Industrial Control Systems Advisories (ICSAs), and Common Security Advisory Framework (CSAF) JSON documents describing tactics, t...

Collections

Pricing Plans

Rate Limits

FinOps

Semantic Vocabularies

Cisa Context

18 classes · 0 properties

JSON-LD

API Governance Rules

Cybersecurity and Infrastructure Security Agency API Rules

5 rules · 2 errors 3 warnings

SPECTRAL

Resources

🔗
LinkedIn
LinkedIn
🔗
Website
Website
🔗
KEVCatalog
KEVCatalog
🔗
Advisories
Advisories
🔗
Topics
Topics
🔧
ResourcesAndTools
ResourcesAndTools
📰
NewsAndEvents
NewsAndEvents
👥
GitHubOrganization
GitHubOrganization
🔗
KEVDataMirror
KEVDataMirror
🔗
ContactUs
ContactUs
📜
PrivacyPolicy
PrivacyPolicy
🔗
JSONLD
JSONLD
🔗
JSONSchema
JSONSchema
🔗
Vocabulary
Vocabulary
🔗
Capabilities
Capabilities
🔗
Rules
Rules

Sources

Raw ↑
opencollection: 1.0.0
info:
  name: CISA Known Exploited Vulnerabilities (KEV) Catalog API
  version: '1.0'
items:
- info:
    name: KEV
    type: folder
  items:
  - info:
      name: Get the KEV catalog as JSON
      type: http
    http:
      method: GET
      url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
    docs: Returns the full Known Exploited Vulnerabilities catalog as a JSON document. This endpoint is unauthenticated and
      intended for public consumption by vulnerability management programs.
  - info:
      name: Get the KEV catalog as CSV
      type: http
    http:
      method: GET
      url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.csv
    docs: Returns the same KEV data as a CSV file.
- info:
    name: Schema
    type: folder
  items:
  - info:
      name: Get the JSON Schema for the KEV catalog
      type: http
    http:
      method: GET
      url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities_schema.json
    docs: Returns the JSON Schema document used to validate the KEV JSON feed.
bundled: true