Dechonet MCP
A domain security reconnaissance MCP server providing 13 tools for analyzing DNS, SSL, email authentication, network infrastructure, and overall security posture of domains and IPs.
Comprehensive Security Scan (
security_scan): Run 9 parallel checks on a domain, receiving a 0–100 Health Score with an A–F grade and prioritized remediation actions.DNS Lookup (
dns_lookup): Query DNS records (A, AAAA, MX, TXT, NS, SOA, CAA), validate DNSSEC, SPF/DMARC syntax, and identify misconfigurations with severity-rated diagnostics.SSL/TLS Check (
ssl_check): Verify certificate expiry, issuer, SANs, chain integrity, and TLS version, graded A+ to F.HTTP Security Audit (
http_security): Trace HTTP redirects and audit 10 security headers (CSP, HSTS, X-Frame-Options, COOP, CORP, COEP, Permissions-Policy, etc.), graded A+ to F.Email Authentication (
email_auth): Check MX, SPF, DMARC, DKIM (15 selectors), BIMI, MTA-STS, TLS-RPT, DANE, and blacklists, returning a 0–100 deliverability score.Port Scan (
port_scan): Identify open TCP ports and services (HTTP, HTTPS, SSH, FTP, SMTP, DNS, databases) on a host.DNS Propagation (
dns_propagation): Monitor propagation across 8+ global resolvers (Google, Cloudflare, Quad9, OpenDNS) to detect stale caches.Reverse DNS (
reverse_dns): Perform PTR lookups for IPv4/IPv6 addresses and verify forward-confirmed rDNS (FCrDNS).ASN/BGP Lookup (
asn_lookup): Identify network operator, prefixes, abuse contact, and network type (cloud/CDN/ISP/hosting) for an IP or ASN.WHOIS/RDAP Lookup (
whois_lookup): Retrieve domain registration data including registrar, dates, nameservers, and status flags.IP Info (
ip_info): Get public IP details including ISP, ASN, geolocation, and proxy/VPN detection.Email Header Analysis (
email_header_analysis): Trace email delivery routes, extract SPF/DKIM/DMARC results, and detect delays or unencrypted hops from raw headers.Subnet Calculator (
subnet_calc): Calculate subnet details (network/broadcast address, host range, usable hosts, wildcard mask) from CIDR notation — works offline.
DechoNet MCP Server
Domain security reconnaissance tools for AI agents via Model Context Protocol.
13 security tools — DNS, SSL, HTTP headers, email auth, port scan, propagation, reverse DNS, ASN/BGP, RDAP/WHOIS, subnet calc, and comprehensive security scan — callable from Claude Desktop and any MCP-compatible AI agent.
Part of DechoNet. Every tool here is also a free web tool at dechonet.com — no sign-up, no API key — backed by error-fix guides. This package brings the same checks to AI agents.
Quick Start (Claude Desktop)
Add to your claude_desktop_config.json:
{
"mcpServers": {
"dechonet": {
"command": "npx",
"args": ["-y", "dechonet-mcp"]
}
}
}Or if installed locally:
{
"mcpServers": {
"dechonet": {
"command": "node",
"args": ["/path/to/dechonet/mcp/build/index.js"]
}
}
}Config file location:
macOS:
~/Library/Application Support/Claude/claude_desktop_config.jsonWindows:
%APPDATA%\Claude\claude_desktop_config.json
Restart Claude Desktop. You'll see the DechoNet tools icon in the input area.
Related MCP server: nslookup.io MCP Server
Install
# Via npx (no install needed)
npx dechonet-mcp
# Or install globally
npm install -g dechonet-mcpAvailable Tools
Tool | Description |
| Comprehensive scan — 9 checks in parallel, 0-100 Health Score, A-F grade |
| DNS records + DNSSEC + SPF/DMARC validation |
| SSL/TLS certificate, chain, TLS version, A-F grade |
| HTTP redirect trace + 10 security headers audit, A-F grade |
| SPF, DMARC, DKIM, BIMI, MTA-STS, DANE + blacklist check |
| Open TCP ports with service identification |
| DNS propagation across 8+ global resolvers |
| PTR record + FCrDNS verification |
| ASN/BGP network identification + abuse contact |
| RDAP/WHOIS domain registration data |
| Public IP, ISP, ASN, proxy detection |
| Email delivery route tracing + auth results |
| CIDR subnet calculator (offline) |
Example Prompts
Once connected, try asking Claude:
"Check the security posture of example.com"
"Is the SSL certificate for mysite.com about to expire?"
"What DNS records does example.com have?"
"Scan the open ports on my-server.com"
"Analyze these email headers: [paste headers]"
"What's the ASN for 8.8.8.8?"
"Calculate the subnet for 10.0.0.0/16"
SSE Transport (Remote)
For remote/HTTP-based MCP connections:
cd mcp
npm run start:sse
# Server runs on http://localhost:3100
# SSE endpoint: http://localhost:3100/sseDevelopment
cd mcp
npm install
npm run build # TypeScript → build/
npm run dev # Run with tsx (stdio)
npm run start:sse # Run SSE serverHow It Works
The MCP server calls DechoNet's public API (https://dechonet.com/api/util/*) — the same backend as the dechonet.com web tools — and returns structured results with:
Status (ok/warn/bad)
KPIs (key performance indicators per tool)
Issues with severity (critical/warning/info) and confidence levels
Actionable remediation steps
Raw data (full JSON)
All data comes from public sources (DNS, HTTP headers, SSL certificates, RDAP). No active exploitation.
Environment Variables
Variable | Default | Description |
|
| API base URL |
|
| Response language ( |
|
| SSE server port |
About DechoNet
DechoNet is a domain security reconnaissance platform — distributed observation, cross-verification. The same diagnostics ship three ways: free web tools, error-fix guides, and this MCP server.
🌐 Web tools (free, no sign-up): https://dechonet.com
📘 Guides (fix common DNS/SSL/HTTP/email errors): https://dechonet.com/guides
MIT licensed. Issues and PRs welcome.
Maintenance
Latest Blog Posts
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/node-man/dechonet-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server