CISA KEV Vendor Leads Scraper
Pricing
from $6.00 / 1,000 leads
CISA KEV Vendor Leads Scraper
Aggregates vendors and products from the CISA Known Exploited Vulnerabilities (KEV) catalog. Returns company name, product, CVE count, and date ranges. Perfect for cybersecurity consultancies, pen-testing firms, and patch-management vendors building outbound lead lists.
Pricing
from $6.00 / 1,000 leads
Rating
0.0
(0)
Developer
GoCreative AI
Maintained by CommunityActor stats
0
Bookmarked
2
Total users
1
Monthly active users
7 days ago
Last modified
Categories
Share
📊 Example output (real run)

A real record from a live run — clean structured data, exported as CSV / JSON / Excel or via API.
Turn the official CISA Known Exploited Vulnerabilities (KEV) catalog into a structured vendor lead list — vendor, product, CVE count, dates added and required remediation actions — ideal for cybersecurity sales and threat-intel workflows.
No API key, no signup. Pay only for the results you scrape. Exports to CSV, JSON, or Excel.
What this scraper does
This actor aggregates the CISA Known Exploited Vulnerabilities (KEV) catalog — the U.S. Cybersecurity & Infrastructure Security Agency's authoritative list of vulnerabilities being actively exploited in the wild — into a vendor/product-level view. Instead of a flat CVE dump, you get each affected vendor with a count and sample of their KEV entries, so you can prioritize by exposure.
Output fields
| Field | Description |
|---|---|
vendor | Affected vendor / project |
product | Affected product |
cve_count | Number of KEV entries for this vendor/product |
cve_ids | List of CVE identifiers in the KEV catalog |
first_added_to_kev, last_added_to_kev | KEV listing date range |
example_vulnerability | A representative KEV entry |
required_actions_sample | CISA-mandated remediation action(s) |
cisa_catalog_url | Link to the official CISA KEV catalog |
Use cases
- Cybersecurity vendor sales — target companies whose products appear in the KEV catalog with active exploitation.
- Managed security & consulting — build outreach lists around vendors your prospects likely run.
- Threat intelligence & research — structured, vendor-rolled-up view of actively exploited CVEs.
- Risk & compliance — track which vendors carry the most KEV exposure over time.
- AI agents & automation — feed a clean, government-sourced exploited-vuln feed to downstream tooling.
Input
Filter by vendor, product, or date added, or pull the full catalog. See the input schema on this page — every field has an inline description.
Why use this actor
- Official government source — CISA KEV catalog, the authoritative actively-exploited-vuln list.
- Vendor-rolled-up — prioritized by CVE count, not a flat CVE list.
- Keyless & pay-per-result — no subscription, no minimums.
- Clean, typed records — CRM- and SIEM-ready, exportable as CSV / JSON / Excel; schedulable via Apify.
FAQ
Do I need an API key? No.
Is this official? Yes — sourced from the CISA KEV catalog.
Can I schedule it? Yes — via Apify Schedules to catch new KEV additions.
Export formats? CSV, JSON, Excel, or the Apify API.
Disclaimer
Data is sourced from the public CISA KEV catalog and provided for legitimate cybersecurity research and B2B outreach. Verify details against the official CISA source before acting.