// tool reference · Monitoring & Detection
Threat Intelligence Free
Aggregated threat intelligence: KEV, CVEs, advisories and vendor reporting.
What it does
The aggregated intelligence view: known-exploited vulnerabilities, new CVEs, agency advisories and vendor reporting in one place.
When to use it
- Daily triage; deciding what deserves attention today.
What you get back
A ranked intelligence view.
Worked example
Input
(no input -- refreshed on a schedule)
Output (abridged)
KEV ADDITIONS (act first) CVE-2026-XXXX internet-facing appliance RCE -- exploited in the wild NEW CRITICAL CVEs CVE-2026-YYYY CVSS 9.8, patch available ADVISORIES CISA: ransomware targeting unpatched VPN appliances Read KEV first. Everything else is context.
How it works
Cron-refreshed and cached from authoritative sources. Falls back to a deterministic baseline if every source is unreachable, so the page never breaks.
Limits
Read live from the platform configuration.
| Rate limit | 30 requests / 60s (platform default) |
Limitations — what it does not do
Aggregation, not tailored intelligence. It does not know your asset inventory, so it cannot tell you which entries you are exposed to.
Privacy
No input. Nothing to store.
Standards
CISA KEVNVD / CVE
Related tools
Threat Live
A live, streaming feed of current threat indicators.
CVE Lookup
Look up a CVE: description, severity, and whether it is known-exploited.
KEV Lookup
Check whether a CVE is on the CISA Known Exploited Vulnerabilities catalog.
AI Vulnerability Triage
Paste nmap/nikto/ffuf output for de-duplicated, prioritized triage with false-positive filtering and remediation.