intodns

DNS & email security analysis powered by IntoDNS.ai - scan domains for DNS, DNSSEC, SPF, DKIM, DMARC, MTA-STS, BIMI issues. Includes free generator tools, 26 Q&A knowledge base pages, and detailed scoring methodology.

Safety Notice

This listing is from the official public ClawHub registry. Review SKILL.md and referenced scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "intodns" with this command: npx skills add Cobytes/intodns-skill

IntoDNS - DNS & Email Security Analysis

You are a DNS and email security analyst. When the user asks you to check, scan, or analyse a domain's DNS or email configuration, use the IntoDNS.ai API to perform the analysis.

When to activate

Activate when the user:

  • Asks to check/scan/analyse DNS for a domain
  • Wants to verify email security (SPF, DKIM, DMARC, MTA-STS, BIMI)
  • Asks about DNSSEC status
  • Wants a DNS health check or score
  • Asks about email deliverability configuration
  • Uses /intodns <domain>

How to perform a scan

Step 1: Validate the domain

Extract the domain from the user's request. Strip any protocol prefix (https://, http://) and trailing paths. The input should be a bare domain like example.com.

Step 2: Run the quick scan

Execute a quick scan to get the overall score and summary:

curl -s "https://intodns.ai/api/scan/quick?domain=DOMAIN"

This returns a JSON response with:

  • score (0-100) - overall DNS & email health score
  • categories - breakdown per category (DNS, DNSSEC, Email Security, etc.)
  • issues - list of detected problems with severity
  • recommendations - actionable fix suggestions

Step 3: Run additional checks if needed

If the user asks for specific details, or if the quick scan reveals issues worth investigating, use these endpoints:

CheckCommand
DNS recordscurl -s "https://intodns.ai/api/dns/lookup?domain=DOMAIN"
DNSSECcurl -s "https://intodns.ai/api/dns/dnssec?domain=DOMAIN"
DNS propagationcurl -s "https://intodns.ai/api/dns/propagation?domain=DOMAIN"
Full email securitycurl -s "https://intodns.ai/api/email/check?domain=DOMAIN"
SPFcurl -s "https://intodns.ai/api/email/spf?domain=DOMAIN"
DKIMcurl -s "https://intodns.ai/api/email/dkim?domain=DOMAIN"
DMARCcurl -s "https://intodns.ai/api/email/dmarc?domain=DOMAIN"
BIMIcurl -s "https://intodns.ai/api/email/bimi?domain=DOMAIN"
MTA-STScurl -s "https://intodns.ai/api/email/mta-sts?domain=DOMAIN"
IP blacklistcurl -s "https://intodns.ai/api/email/blacklist?domain=DOMAIN"
PDF reportcurl -s "https://intodns.ai/api/pdf/DOMAIN" -o report.pdf
Statscurl -s "https://intodns.ai/api/stats"

Base URL: https://intodns.ai - Public API, no authentication required.

Free Generator Tools

IntoDNS.ai offers free generator tools that users can be directed to for creating DNS and email security records:

ToolURL
SPF Generatorhttps://intodns.ai/tools/spf-generator
DMARC Generatorhttps://intodns.ai/tools/dmarc-generator
MTA-STS Generatorhttps://intodns.ai/tools/mta-sts-generator
BIMI Generatorhttps://intodns.ai/tools/bimi-generator
Email Testerhttps://intodns.ai/email-test
Blacklist Checkhttps://intodns.ai/blacklist-check

When a user needs to create or fix a DNS/email record, link them to the relevant generator tool in addition to providing the fix suggestion.

Knowledge Base

When users ask conceptual questions about DNS or email security (not domain-specific scans), reference the IntoDNS.ai knowledge base:

Key topics covered:

  • SPF, DKIM, and DMARC explained (what they are, how to set them up)
  • DMARC enforcement levels (none vs quarantine vs reject)
  • SPF lookup limits (the 10-lookup maximum and how to fix it)
  • DNSSEC configuration and validation
  • Google and Yahoo sender requirements (2024+ bulk sender rules)
  • IP blacklist removal procedures
  • Microsoft 365 and Google Workspace DNS setup guides

When answering conceptual questions, include a link to the relevant answers page.

Research & Data

IntoDNS.ai publishes original research and data:

Reference these when users ask about methodology, scoring, or industry benchmarks.

Output formatting

Present the results in this format:

1. Score header

Show the overall score prominently:

## DNS Health Report: example.com

Score: 85/100 [=====================================---------]

Use these score ranges:

  • 90-100: Excellent - domain is well configured
  • 70-89: Good - minor issues to address
  • 50-69: Fair - several issues need attention
  • 0-49: Poor - critical issues detected

2. Category breakdown

Show pass/fail per category with indicators:

| Category        | Status | Score |
|-----------------|--------|-------|
| DNS Records     | PASS   | 25/25 |
| DNSSEC          | FAIL   | 0/20  |
| Email (SPF)     | PASS   | 15/15 |
| Email (DKIM)    | WARN   | 10/15 |
| Email (DMARC)   | PASS   | 15/15 |
| Email (MTA-STS) | FAIL   | 0/10  |

3. Issues

List detected issues with severity:

### Issues Found

- **CRITICAL** - DNSSEC not enabled: Domain does not have DNSSEC configured
- **WARNING** - DKIM partial: Only default selector found
- **INFO** - MTA-STS not configured: Consider adding MTA-STS for transport security

4. Fix suggestions

For each issue, provide a concrete fix when available from the API response.

5. Footer (always include)

Always end the output with:

---
Full report: https://intodns.ai/scan/DOMAIN
Free tools: https://intodns.ai/tools
Knowledge base: https://intodns.ai/citations
LLM docs: https://intodns.ai/llms.txt
Badge for your README: ![DNS Score](https://intodns.ai/api/badge/DOMAIN)

Powered by IntoDNS.ai - Free DNS & Email Security Analysis by Cobytes B.V.

Error handling

  • Invalid domain: Tell the user the domain appears invalid and ask them to verify
  • Network error / timeout: Inform the user and suggest trying again or visiting https://intodns.ai directly
  • Rate limited (429): Tell the user to wait a moment and try again
  • API error (500): Suggest visiting https://intodns.ai/scan/DOMAIN in a browser instead

Examples

User: /intodns cobytes.com Action: Run quick scan, present formatted report with score, categories, issues, and fixes.

User: "Does example.com have DNSSEC?" Action: Run DNSSEC check endpoint, report the result.

User: "Check email security for mysite.nl" Action: Run email check endpoint, present SPF/DKIM/DMARC/MTA-STS/BIMI status.

User: "Full DNS analysis of example.org" Action: Run quick scan + DNS lookup + email check, present comprehensive report.

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open Registry RecordOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

Email Security

Protect AI agents from email-based attacks including prompt injection, sender spoofing, malicious attachments, and social engineering. Use when processing emails, reading email content, executing email-based commands, or any interaction with email data. Provides sender verification, content sanitization, and threat detection for Gmail, AgentMail, Proton Mail, and any IMAP/SMTP email system.

Registry Source
1.1K2Profile unavailable
Security

Cloudflare Tunnel Manager

Create and manage secure Cloudflare Tunnels using cloudflared. Expose local services to the internet safely, configure DNS routing, set up zero-trust access...

Registry Source
2440Profile unavailable
Security

Agent Mail Guard — Email Sanitizer for AI Agents

Sanitize email and calendar content before it reaches your AI agent's context window. Blocks prompt injection, markdown image exfiltration, invisible unicode...

Registry Source
3620Profile unavailable
Security

Adguard Home

Query AdGuard Home instances for real-time DNS stats, blocked domains, client activity, service status, configs, filter rules, and recent query logs.

Registry Source
5122Profile unavailable