DNSai inside your AI

Live DNS, SPF, DKIM, DMARC, WHOIS and email-security answers for your AI assistant. One domain per request, a generous free tier, and no signup required.

MCP  mcp.dnsai.com/mcp REST  api.dnsai.com/v1 OpenAPI 3.1
Works with
Claude ChatGPT Cursor Gemini Copilot Perplexity

Connect in one step

DNSai is a remote MCP server — most assistants just need the URL https://mcp.dnsai.com/mcp. Pick your client below.

Claude (web & Code)

Claude.ai & Claude Code. Go to Settings → Connectors → Add custom connector, paste the URL, and enable it. No API key needed.

https://mcp.dnsai.com/mcp

Claude Desktop

Settings → Developer → Edit Config, add this to claude_desktop_config.json, then restart Claude. (Needs Node.js for npx.)

{
  "mcpServers": {
    "dnsai": {
      "command": "npx",
      "args": ["-y", "mcp-remote", "https://mcp.dnsai.com/mcp"]
    }
  }
}

ChatGPT

Custom GPT — works on Plus. Explore GPTs → Create → Configure → Actions → Create new action → Import from URL, paste the schema below, and set Authentication: None for the free anonymous tier — or API key → Bearer with a dk_free_… key for 100/day.

https://api.dnsai.com/openapi.json

MCP app — needs developer mode (Business/Enterprise, not most Plus accounts): Settings → Apps → Create, add the MCP URL, then Scan tools.

https://mcp.dnsai.com/mcp

Codex

OpenAI Codex CLI. Add this to ~/.codex/config.toml, then run codex — the DNSai tools load automatically. (Needs Node.js for npx.)

[mcp_servers.dnsai]
command = "npx"
args = ["-y", "mcp-remote", "https://mcp.dnsai.com/mcp"]

Cursor / VS Code / Windsurf

Add one block to your mcp.json, then restart:

{
  "mcpServers": {
    "dnsai": { "url": "https://mcp.dnsai.com/mcp" }
  }
}

curl / any HTTP client

Plain HTTPS GET — no key, no SDK. Returns JSON with a plain-English summary:

curl https://api.dnsai.com/v1/email-security/acme.com

Also works with Gemini (Gemini CLI / extensions), GitHub Copilot, Perplexity, and any other MCP-compatible client — same URL, no signup.

Two ways to call it

Same engine, same data — pick the surface that fits your client.

MCP live tools

The remote MCP server exposes each lookup as a tool your assistant calls on its own, mid-conversation. Best for Claude, ChatGPT, Cursor, Gemini, Copilot and Perplexity. Stateless Streamable-HTTP, spec 2025-11-25.

POST https://mcp.dnsai.com/mcp
{"jsonrpc":"2.0","id":1,"method":"tools/call",
 "params":{"name":"dns_lookup",
           "arguments":{"domain":"acme.com"}}}

REST + OpenAPI scriptable

A guessable, no-auth GET endpoint per tool — ideal for ChatGPT Actions, scripts, cron jobs and webhooks. The OpenAPI 3.1 spec at /openapi.json imports straight into GPT Actions.

GET https://api.dnsai.com/v1/dns/acme.com
GET https://api.dnsai.com/v1/email-security/acme.com
GET https://api.dnsai.com/v1/dkim/acme.com

Tools

Eight tools, one domain per call. Every result returns a plain-English summary plus the structured data and a source link back to the matching dnsai.com tool.

dns_lookupLive DNS records — A, AAAA, MX, NS, TXT, SOA, CNAME, CAA, DNSKEY, DS, PTR, SRV and 30+ more — plus the email gateway, DMARC policy and detected technology.
email_security_check"Is this domain's email secure?" — MX, SPF (with the 10-lookup verdict), DMARC policy and mail-gateway / provider detection in one call.
dkim_discoverDiscovers a domain's published DKIM signing keys, the mail providers they map to, and their selectors — the same deep sweep as the Advanced Lookup.
whois_lookupWHOIS / RDAP registration data for a domain or IP — registrar, status, creation & expiry, name servers.
spf_analyzeSPF record with its full include tree and the RFC 10-DNS-lookup-limit verdict.
dmarc_checkDMARC presence and the p= policy (none / quarantine / reject), with the raw record.
blacklist_checkChecks a domain or IP against the major email blacklists / RBLs (Spamhaus, Barracuda, SpamCop, SORBS, UCEPROTECT and more).
validateSyntax-checks a pasted SPF or DMARC record (no DNS lookup) — returns valid/invalid, a score and a letter grade.

What you get back

Every REST call returns the same envelope, built for LLMs: lead with summary, cite source, use result for structured fields. report is a ready-to-quote block for the DNS / email tools.

{
  "tool": "email_security_check",
  "summary": "Email security for acme.com: MX present,
              SPF present (7 / 10 Within Limit),
              DMARC p=reject.",
  "result": {
    "Email Gateway": "Google Workspace",
    "SPF": "v=spf1 ...",
    "DMARC Policy (p)": "p=reject"
  },
  "report": "acme.com\nEmail Gateway: ...",
  "source": "https://dnsai.com/email-security-tools/?d=acme.com",
  "cache": "live",
  "usage": {
    "remaining_today": 24,
    "limit": 25,
    "tier": "anonymous"
  }
}

Limits & tiers

TierHowRateBulk / multi-domain
Anonymousjust call it — no signup25 / day per IP
Free keyverify your email — no signup100 / day
Pro · $30/moapp.dnsai.comhigher volume✅ unlocked
Enterprise · $99/moapp.dnsai.comlarge-scale✅ unlocked

Every single-domain lookup — including the full DKIM sweep and blacklist check — is free within these limits. Only bulk / multi-domain batches need a paid plan. Cached responses don't count against your quota. Add an API key as a bearer token: Authorization: Bearer dk_…

Need 100/day? Get a free key — just verify your email, no password and no signup. Or ask your assistant to run request_api_key with your email.

Need bulk, multi-domain, or higher volume?

The DNSai Pro & Enterprise plans handle batches, large-scale scanning and the full API.

See plans & pricing →