RSS

Desktop Monitoring and Notifications for CISA KEV

tt5601 pts0 comments

GitHub - quantumcore/kev_monitor: Monitors the CISA KEV catalog for changes and alerts you via desktop notification. · GitHub

/" data-turbo-transient="true" />

Skip to content

Search or jump to...

Search code, repositories, users, issues, pull requests...

-->

Search

Clear

Search syntax tips

Provide feedback

--><br>We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Cancel

Submit feedback

Saved searches

Use saved searches to filter your results more quickly

-->

Name

Query

To see all available qualifiers, see our documentation.

Cancel

Create saved search

Sign in

/;ref_cta:Sign up;ref_loc:header logged out"}"<br>Sign up

Appearance settings

Resetting focus

You signed in with another tab or window. Reload to refresh your session.<br>You signed out in another tab or window. Reload to refresh your session.<br>You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

{{ message }}

quantumcore

kev_monitor

Public

Notifications<br>You must be signed in to change notification settings

Fork

Star

main

BranchesTags

Go to file

CodeOpen more actions menu

Folders and files<br>NameNameLast commit message<br>Last commit date<br>Latest commit

History<br>15 Commits<br>15 Commits

src

src

.gitignore

.gitignore

Cargo.lock

Cargo.lock

Cargo.toml

Cargo.toml

README.md

README.md

build-release.sh

build-release.sh

clean.sh

clean.sh

install_linux.sh

install_linux.sh

install_windows.ps1

install_windows.ps1

kev.png

kev.png

report.png

report.png

settings.ini

settings.ini

View all files

Repository files navigation

KEV Monitor

A lightweight background service written in Rust that watches the CISA Known Exploited Vulnerabilities (KEV) catalog for changes, writes a Markdown report of new entries, and sends a desktop toast notification.

Built as an extension of Zeus Threat Intelligence pipeline for Automated KEV testing against a software inventory, refactored into a standalone portable utility.

Install

Windows (Run in Powershell):<br>Installs under C:\kev_monitor<br>iwr https://github.com/quantumcore/kev_monitor/raw/refs/heads/main/install_windows.ps1 | iex

Linux<br>Installs under /opt/kev_monitor<br>curl -fsSL https://raw.githubusercontent.com/quantumcore/kev_monitor/refs/heads/main/install_linux.sh | sudo bash

Features

Feature<br>Detail

Periodic polling<br>Configurable interval (default: every 1 day)

SHA-1 change detection<br>Only acts when the catalog actually changes

SQLite audit log<br>Stores every check: timestamp, hash, last CVE ID

Markdown report<br>One file per detected change in reports/

Toast notifications<br>Native: PowerShell on Windows, notify-send on Linux

Cross-platform<br>Available for Windows & Linux (x86-64)

Configuration (settings.ini)

[CONFIG]<br>CHECK = 1 ; days between checks (integer)<br>DB_PATH = kev_monitor.db<br>REPORT_DIR = reports<br>KEV_URL = https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json

Toast Notifications

Platform<br>Mechanism

Windows 10/11<br>PowerShell + Windows.UI.Notifications WinRT API

Linux<br>notify-send (install libnotify-bin if missing)

Note on Linux services: notify-send requires a running D-Bus session (i.e. a logged-in desktop user). When running as a headless systemd service the notification will silently fail; the report and DB entry are still written correctly.

Reports

Each detected change produces reports/kev_report_.md containing:

Catalog metadata (version, date released, total count)

A table per new CVE entry (ID, vendor, product, description, required action, due date, ransomware use)

About

Monitors the CISA KEV catalog for changes and alerts you via desktop notification.

Topics

rust

threat-intelligence

cisa

cisa-kev

Resources

Readme

Uh oh!

There was an error while loading. Please reload this page.

Activity

Stars

star

Watchers

watching

Forks

forks

Report repository

Releases

kev_monitor v.1

Latest

May 26, 2026

Packages

Uh oh!

There was an error while loading. Please reload this page.

Contributors

Uh oh!

There was an error while loading. Please reload this page.

Languages

Rust<br>53.5%

Shell<br>31.1%

PowerShell<br>15.4%

You can’t perform that action at this time.

kev_monitor cisa reload report desktop notifications

Related Articles

Amazon, Facebook, FBI have access to a private intelligence-sharing network

root-parent18 ptsseattle prism shield network private intelligence

SpaceX not the behemoth everyone thought

kaycebasques13 pts_blockquote instagram data vars text media

The Mirror Is Part of the Machine

london_safari10 ptstelemetry mirror decision logs enough time

Elevated error rates on requests to multiple models

recroad9 ptsclaude incident islands rates elevated error

Donald Trump and sons to be 'forever' exempt from tax audits

doener9 ptsdigital access newsletters premium financial times
terms · privacy · disclaimer · contact · policy
© 2026 NewsHub. All rights reserved.
This site is for informational purposes only. Content is aggregated from publicly available sources. We may earn commissions through affiliate links. Not affiliated with Y Combinator or Hacker News.