FirmIntel Developer Platform

One global API for vulnerability intelligence — CVE, KEV, EPSS, CWE, ATT&CK mappings, public exploits — fused from 11 authoritative sources, ranked by exploit risk, and queryable by hybrid keyword + semantic search. Built-in MCP server so your AI agents (Hermes, Claude, custom) can call it natively.

Unified vuln graph

cvelistv5 · NVD · vulnrichment · KEV · OSV · GHSA · EPSS · ExploitDB · Metasploit · MITRE CWE & ATT&CK — merged into one canonical record.

Risk-ranked

Every vuln carries EPSS percentile, KEV flag, public-exploit signal, and CVSS — sort or filter without joining feeds yourself.

Hybrid search

BM25 + dense embeddings + cross-encoder reranking. One endpoint, English-language queries, MCP-compatible.

MCP-native

Streamable HTTP MCP at /mcp. Drop your fmi_ key into Hermes, Claude Desktop, or any MCP client and start querying.

Quick start

# 1. Anonymous probing (30 req/min)
curl https://api.firmintel.example/v1/public/kev/recent?limit=5

# 2. Authenticated — sign up + mint a key in the console
curl -H "Authorization: Bearer fmi_..." \
     https://api.firmintel.example/v1/vulns/CVE-2024-3094

# 3. MCP — point Hermes/Claude at:
{
  "mcpServers": {
    "firmintel": {
      "transport": "http",
      "url": "https://api.firmintel.example/mcp",
      "headers": { "Authorization": "Bearer fmi_..." }
    }
  }
}

Pricing

All plans include MCP, hybrid search, and KEV streaming.

Free

60 req / min

Pro

$49

600 req / min

Enterprise

custom

6 000 req / min · SSO · SLA