Domain Intelligence
Four signals for any domain or URL — DNS records, WHOIS registration data, HTTP probe, and TLS certificate details.
Try it
Fill in the fields below and hit Send.
Why use this
AI agents often need to assess a domain before acting on it — is this a real business, is their email set up correctly, is their site live, is their certificate about to expire? These four tools provide the raw signals; your agent decides what to do with them.
Pricing
| Any call to any endpoint | 1 credit |
|---|
/domain-intelligence/dns
Returns A, AAAA, MX, TXT, and NS records, plus three derived signals.
{ "domain": "example.com" }
Response (success)
{
"ok": true,
"domain": "example.com",
"a": ["93.184.216.34"],
"aaaa": [],
"mx": [{ "exchange": "mail.example.com", "priority": 10 }],
"txt": ["v=spf1 include:_spf.example.com ~all"],
"ns": ["a.iana-servers.net", "b.iana-servers.net"],
"spf_present": true,
"dmarc_present": false,
"mx_count": 1
}
Response (failure)
{ "ok": false, "domain": "notreal.example", "error": "nxdomain" }
/domain-intelligence/whois
Returns registrar, registration date, expiry date, domain age, and days until expiry via RDAP (IANA bootstrap) with WHOIS fallback.
{ "domain": "example.com" }
Response (success)
{
"ok": true,
"domain": "example.com",
"registrar": "RESERVED-Internet Assigned Numbers Authority",
"created": "1995-08-14",
"expires": "2025-08-13",
"updated": "2024-08-14",
"age_days": 10620,
"expires_in_days": 150,
"registrant_country": null,
"source": "rdap"
}
Note: registrant_country is always null — registrant contact data is redacted by RDAP registries under GDPR.
Response (failure)
{ "ok": false, "domain": "notreal.example", "error": "not_found" }
Error values: not_found, timeout, parse_error.
/domain-intelligence/http
Probes a URL, follows redirects (up to 10), and returns the final status, content type, redirect chain, and response time. Only http:// and https:// URLs to public hosts are accepted.
{ "url": "https://example.com" }
Response (success)
{
"ok": true,
"url": "https://www.example.com/",
"status_code": 200,
"content_type": "text/html; charset=UTF-8",
"redirect_chain": [
{ "url": "https://example.com", "status": 301 }
],
"response_time_ms": 212
}
Response (failure)
{ "ok": false, "url": "https://down.example.com", "error": "unreachable" }
/domain-intelligence/ssl
Inspects the TLS certificate for a domain — validity, expiry, issuer, SANs, hostname match.
{ "domain": "example.com" }
Response (success)
{
"ok": true,
"domain": "example.com",
"valid": true,
"subject": "CN=example.com",
"issuer": "C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1",
"valid_from": "2024-01-15T00:00:00.000Z",
"valid_to": "2025-01-14T23:59:59.000Z",
"days_remaining": 42,
"sans": ["example.com", "www.example.com"],
"hostname_match": true
}
Response (failure)
{ "ok": false, "domain": "expired.example.com", "error": "connection_failed" }
Errors (400, no charge)
- Missing or empty
domain/urlfield urlnot a valid http/https URIurlpointing to a private IP or loopback addressdomainpointing to a loopback/private hostname
API Reference
Endpoint
POST https://api.lightningapi.tools/domain-intelligence/{tool}Required headers
Authorization: Bearer <apiKey>
Content-Type: application/json
Example request
{
"domain": "example.com"
}
Example response
{
"ok": true,
"domain": "example.com",
"a": ["93.184.216.34"],
"mx": [],
"spf_present": false,
"dmarc_present": false,
"mx_count": 0
}