The playground

Try any of 817 endpoints — live.

Pick an endpoint, load a working example, tweak the params, and send — no signup to try. Results render the way the data deserves; raw JSON, headers & code are one tab away.

Playground demo key · api.reefapi.com

post/vuln-intel/v1/exploits1 credit

Public exploit / PoC lookup for a CVE via the Exploit-DB (Offensive Security) database (keyless, CVE-indexed). Answers 'is there a weaponized public exploit?' — has_public_exploit + each entry's edb_id, type (remote/local/webapps/dos), platform, verified flag, date_published, and deep links (exploit_db_url + upstream source_url).

Working example

Parameters

cve_idrequired

The CVE id to look up in the Exploit-DB (Offensive Security) public exploit/PoC database. Case-insensitive. Returns every exploit row whose 'codes' column references this CVE.

verified_onlyoptional

If true, return only Exploit-DB entries marked verified (reproduced by the Exploit-DB team). Default false = all entries.

request preview

curl -X POST https://api.reefapi.com/vuln-intel/v1/exploits \
  -H "x-api-key: $REEF_KEY" \
  -H "content-type: application/json" \
  -d '{"cve_id":"CVE-2021-44228"}'

Hit Send to run this endpoint live.