mcp.nslookup.io
What it offers — 11 tools · Cloud & DevOps
dns_lookupLook up all common DNS records (A, AAAA, NS, MX, TXT, CNAME, SOA) for a domain. Returns results from a specified DNS server.
dns_recordLook up a specific DNS record type for a domain. Supports 53 record types including A, AAAA, MX, TXT, CNAME, SOA, PTR, CAA, SRV, DNSKEY, DS, TLSA, HTT
dns_propagationCheck DNS propagation for a domain across 18+ global DNS servers (Cloudflare, Google, Quad9, OpenDNS, regional servers, and authoritative nameservers)
webserversGet the IP addresses (both IPv4 and IPv6) for a domain by looking up A and AAAA records. Also returns the punycode and unicode domain representations.
ssl_certificateCheck the SSL/TLS certificate for a domain. Returns issuer, expiry date, days until expiry, certificate chain validity, cipher strength, SAN domains,
bimi_vmcCheck BIMI (Brand Indicators for Message Identification) and VMC (Verified Mark Certificate) for a domain. Returns BIMI DNS record status, VMC certifi
security_scanRun a security scan on a domain to detect DNS misconfigurations, missing SPF/DKIM/DMARC records, cookie security issues, and other web security vulner
uptime_checkPerform a one-time HTTP uptime check on a URL from a single location. Returns whether the site is up or down, HTTP status code, and response time in m
uptime_check_multiCheck if a website is up or down from 7 global locations simultaneously: Amsterdam, Sydney, London, Frankfurt, Delhi, Warsaw, and South Carolina. Retu
dns_healthRun a comprehensive DNS health audit on a domain — 39 checks across 7 categories: DNSSEC (chain of trust, algorithms, validation), MX & email (PTR, MT
geo_checkerCheck a domain's GEO (Generative Engine Optimization) score — how well the site is optimized for AI search engines like ChatGPT, Gemini, Claude, and P
- ✓ initialize → protocolVersion 2025-06-18
- ✓ initialize HTTP 200
- ✓ unknown method → -32601
- ✓ tools/list → 11 tools
- ✓ every tool has name + inputSchema
- 11 tools scanned
- no injection markup
- no secret-path refs
- single-probe latency 2729ms (PRELIMINARY — continuous uptime/p95 from proxy telemetry lands in v2)
- 100% of tools have typed inputSchema
- 0/11 declare outputSchema
- no unannotated destructive tools
- HTTPS ✓
- RFC 9728 oauth-protected-resource metadata ✓
- advertises protocol 2025-06-18
Observed behavior
No proxied traffic observed for this host yet. Connect it at /connect and its grade gains a measured Reliability score + per-tool behavioral evidence — the half a static scan can't produce.
Findings
We re-grade mcp.nslookup.io on a schedule and alert your Slack/webhook the moment its tools change or its grade drops — rug-pull insurance for the connection.
Share this report card
A 1200×630 card with the grade + audit — drop it in a post, Slack, or your repo.
Embed this grade
A live badge — it re-verifies itself and shows current stability. Static scorecards can't. Paste it in your README or site to show users you're independently audited.
[](https://wmcp.sh/mcp/grade/mcp.nslookup.io)
<a href="https://wmcp.sh/mcp/grade/mcp.nslookup.io"><img src="https://wmcp.sh/mcp/grade/mcp.nslookup.io/badge.svg" alt="MCP Trust Grade A- · wmcp.sh"></a>
Agents: check this before connecting
Add the wmcp.sh trust oracle as an MCP server and call grade_mcp_server / check_mcp_drift in your agent's pre-connection gate:
https://wmcp.sh/mcp/trust
readOnly vs observed behavior) layer on via the wmcp.sh proxy.