Features
Resources
Feature · Enterprise · AI
Connect Claude, ChatGPT, and any AI agent to DNS Spy with the Model Context Protocol. Ask your AI assistant to investigate domains, audit DNS security, check propagation worldwide, and hunt phishing look-alikes — in plain language, through 50+ purpose-built tools.
Built on the open Model Context Protocol · Works with Claude, ChatGPT & custom agents · Enterprise feature
The Model Context Protocol (MCP) is an open standard for giving AI models secure access to real tools and data. The DNS Spy MCP server turns your entire DNS monitoring platform into tools your AI assistant can call — so instead of clicking through a dashboard, you just ask.
"Audit example.com and tell me what's dragging down its security grade." Your AI assistant calls the right DNS Spy tools, reads the results, and explains them — no query syntax, no dashboard hunting.
Resolve records from distributed query nodes, check propagation across ~40 worldwide resolvers, inspect SSL certificates, and run WHOIS — on any domain, not just the ones you monitor.
Bearer-token authentication, Enterprise-only access, rate limiting, and a per-tool audit log. Every call your AI agent makes is recorded and metered against your API credit quota.
The MCP server mirrors the entire DNS Spy platform and adds live DNS utilities. Here's what your AI assistant gets access to.
List and inspect monitored domains, nameservers, DNS records, and full change-history timelines. Add or update domains and records on request.
Pull security scores and per-check results at the domain, group, or account level — with knowledge-base context so the AI can explain every finding.
Surface look-alike domain variants, their threat scores, hosting infrastructure, and event timelines so the AI can triage brand threats.
Run dig-style lookups for any record type from DNS Spy's distributed query nodes, including traces, specific-nameserver queries, and DNSSEC data.
Check DNS propagation across ~40 geographically diverse public resolvers and stream progress back as each one reports in.
WHOIS/RDAP lookups, live SSL/TLS certificate inspection, CAA records, and SPF/DMARC email-security checks — for any domain on demand.
Plus tools for SSL certificate inventory and expirations, WHOIS history, domain groups, team management, alerts and notification channels, dashboard summaries, public domain scans, and account quota — the full DNS Spy surface, available to your AI agent.
Point any MCP-compatible AI client at the DNS Spy endpoint and authenticate with your API key. That's it — your assistant can now use DNS Spy as a tool.
Use your DNS Spy API key as the bearer token. Example MCP client configuration:
{
"mcpServers": {
"dnsspy": {
"url": "https://dnsspy.io/mcp",
"headers": {
"Authorization": "Bearer YOUR_API_TOKEN"
}
}
}
}Your AI assistant picks the right tools and reports back. Try prompts like:
"Audit example.com and list the highest-priority security fixes."
"Has the new A record for www.example.com propagated worldwide yet?"
"Show me active phishing look-alikes of our brand and which ones have live mail servers."
"Which of our domains or SSL certificates expire in the next 30 days?"
"Check the SPF and DMARC records for example.com and flag anything weak."
A standards-compliant MCP server, engineered with the same security and reliability as the DNS Spy API.
Built on the Model Context Protocol, so it works with Claude, ChatGPT connectors, IDE assistants, and any custom MCP client.
Authenticate with the same API key you already use. Enterprise-only access, scoped to your team's data, revocable at any time.
MCP tool calls draw from the same monthly API credit allocation, weighted by cost. Protocol traffic and quota checks are free.
Every AI tool call is recorded with the timestamp, tool name, and credits consumed — full visibility into what your agents did.
Read-only tools are flagged as safe; mutating actions are flagged so clients can confirm before changing anything.
Long-running tools like worldwide propagation checks stream progress to your AI client as resolvers report in.
The MCP server is an Enterprise feature and shares your API credit quota. Start your free trial for full access to the MCP server, the API, and the complete DNS Spy platform.
100 domains included · MCP server + API · 10,000 credits/month
Start 7-Day Free TrialNo credit card required · Full Enterprise access · View pricing →
Monitor 60+ record types across all authoritative nameservers.
40+ automated security checks with weighted scoring.
Look-alike domain detection and brand protection.
Track WHOIS changes and domain expiration dates.
Certificate discovery, expiration tracking, and TLS auditing.
Organize domains by client, environment, or business unit.
Email, Slack, Discord & PagerDuty alert channels.
It is a Model Context Protocol (MCP) server that lets AI assistants and agents — such as Claude, ChatGPT, and custom LLM agents — interact directly with your DNS Spy account. Instead of copy-pasting between a dashboard and a chat window, you ask your AI assistant in plain language ("audit example.com" or "are there phishing look-alikes of my brand?") and it calls the right DNS Spy tools and reports back.
The Model Context Protocol is an open standard for connecting AI models to external tools and data sources. An MCP server exposes a set of tools that an AI client (the model) can call during a conversation. DNS Spy implements a standards-compliant MCP server so any MCP-compatible AI client can securely use DNS Spy as a tool.
Any MCP-compatible client. That includes Claude (desktop and web), MCP-enabled ChatGPT connectors, IDE assistants, and custom agents built with the Anthropic or OpenAI SDKs. Point the client at the DNS Spy MCP endpoint and authenticate either with an API key bearer token or by signing in through OAuth — whichever your client supports.
Everything DNS Spy monitors, plus live DNS utilities. The server exposes 50+ tools: list and inspect monitored domains, DNS records and their change history, Security Center scores and checks, SSL certificates, WHOIS data, and Phishing Sentinel variants — and general-purpose tools that work on any domain, like live DNS resolution (dig), worldwide propagation checks across ~40 resolvers, CAA and email-security (SPF/DMARC) inspection, WHOIS/RDAP lookups, SSL certificate inspection, and triggering a public domain scan.
Two ways: connect with an "Authorization: Bearer" API key, or sign in via OAuth 2.1 — so both self-configured clients and hosted connectors (like Claude and ChatGPT) work. The server enforces Enterprise-plan access, rate limiting, and full audit logging, and every tool call is recorded with a timestamp, tool name, and credits consumed. For extra safety you can mark an API key "read-only," which hides and blocks every tool that adds, updates, or deletes — so an AI agent can investigate but never change anything.
Yes. MCP tool calls draw down the same monthly credit quota as the REST API, so you have one meter for all automation. Costs are weighted per tool: database lookups cost 1 credit, live query-node operations (DNS resolution, WHOIS, SSL inspection) cost a few credits, and expensive operations like a worldwide propagation check or a full domain scan cost more. Protocol traffic and quota-status checks are free.
The MCP server is an Enterprise feature and is available during the 7-day free trial with full access. It shares your Enterprise API credit allocation.
It can do both, and you stay in control. Alongside read-only investigation tools, the server offers actions like adding a domain to monitoring, adding records, and triggering scans. Read tools are flagged as read-only and write tools as mutating, so well-behaved MCP clients can ask for confirmation before any change — and every action is captured in the audit log.
Stop switching between dashboards and chat. Let your AI assistant resolve, audit, and protect your domains — securely, through the DNS Spy MCP server.
Features
Resources