IntoDNS.ai
Free DNS and email security scanner that runs deterministic checks for SPF, DKIM, DMARC, DNSSEC, MTA-STS, BIMI, blacklists, and more with AI-assisted explanations.
At a Glance
Scan any domain instantly with no signup needed. All core features included.
Engagement
Available On
Listed Jul 2026
About IntoDNS.ai
IntoDNS.ai is a DNS and email security analysis platform built and maintained by Cobytes, a Dutch managed hosting company. It runs deterministic checks across 60+ security signals — covering SPF, DKIM, DMARC, DNSSEC, MTA-STS, BIMI, FCrDNS, blacklists, and web security headers — and delivers readable evidence alongside AI-assisted explanations in under three seconds. No signup or API key is required to run a scan.
What It Is
IntoDNS.ai is a domain security scanner that sits at the intersection of DNS diagnostics and email deliverability tooling. Rather than offering a loose collection of individual checkers, it centers the experience on a single domain scan that surfaces prioritized issues, evidence snippets, and copy-ready remediation guidance. The platform positions itself as a free alternative to tools like MxToolbox, with a public REST API, LLM-readable documentation, and an MCP server for AI agent integration.
What the Scan Covers
Each scan runs across four main surface areas:
- DNS posture — A, AAAA, MX, NS, CAA, TTL, propagation, and DNSSEC chain-of-trust validation
- Email authentication — SPF, DKIM (with selector discovery), DMARC, MTA-STS, TLS-RPT, BIMI, and FCrDNS
- Web security signals — HTTP security headers, TLS hints, HTTP/3 support, and CSP policy workflows
- Reputation context — Blacklist checks against major DNSBLs with delisting guidance
Reports use a color-coded system (green/amber/red) and include severity-ranked issues, evidence snippets for every check, and AI-assisted plain-language explanations powered by Claude.
Tool Library and Generators
Beyond the main domain scan, IntoDNS.ai exposes a grouped tool hub that the site describes as a "security cockpit." Individual tools include an SPF Generator, DMARC Checker, DKIM Discovery tool, DNSSEC Checker, MTA-STS Generator, BIMI Checker, Blacklist Check, and CSP Scanner. These tools are free, require no account, and connect back to scan results for a coherent workflow. A NIS2 quickscan is also available for organizations documenting compliance evidence.
API and Developer Access
IntoDNS.ai provides a public REST API with no API key required for diagnostic endpoints. Key endpoints include /api/scan/quick, /api/report/everything, and /api/report/snapshot. The platform also publishes an OpenAPI spec at /openapi.json and an LLM-readable index at /llms.json. An MCP server is available for integrating DNS and email security checks directly into AI agent workflows. The site notes that api.intodns.io and intodns.io/api-docs/v1 are not IntoDNS.ai endpoints — only intodns.ai/api paths are official.
Community Recognition and Lineage
The About page lists inclusion in several community-curated resources, including CENTR's Awesome DNS list, the Awesome OSINT list, Free for Dev, and the OpenClaw Skill registry. The GitHub repository linked from the site is the CENTR Awesome DNS list (CC0-licensed), where IntoDNS.ai appears as a maintained testing and monitoring tool. The platform is built on top of Internet.nl for deep scans and is hosted by Cobytes.
Current Status
IntoDNS.ai is actively maintained and publicly available. The site references 2025 Microsoft Outlook/Hotmail/Live sender requirement enforcement as a current check, and the learn center notes updated guidance for Google/Yahoo 2024 rules plus 2025 Microsoft rules. A changelog is published at /changelog. The platform is described as "free forever" with all core features available without payment or credit card.
Community Discussions
Be the first to start a conversation about IntoDNS.ai
Share your experience with IntoDNS.ai, ask questions, or help others learn from your insights.
Pricing
No Account
Scan any domain instantly with no signup needed. All core features included.
- DNS scans
- Email security analysis (SPF, DKIM, DMARC)
- Blacklist check
- AI-assisted explanations & fixes
- PDF report export
Free Account
Everything in No Account, plus nightly monitoring and fix digests.
- Everything in No Account
- Nightly domain monitoring
- Scan history & dashboard
- Save favorite domains
- Email fix digests with top issues and recommended next steps
Capabilities
Key Features
- DNS posture checks (A, AAAA, MX, NS, CAA, TTL, propagation, DNSSEC)
- Email authentication checks (SPF, DKIM, DMARC, MTA-STS, TLS-RPT, BIMI, FCrDNS)
- Web security signals (HTTP headers, TLS, HTTP/3, CSP)
- Blacklist checks against major DNSBLs
- AI-assisted explanations powered by Claude
- 60+ security checks per scan
- Sub-3-second scan speed
- Public REST API with no API key required
- MCP server for AI agent integration
- SPF, DMARC, DKIM, MTA-STS, BIMI generators
- NIS2 quickscan for compliance documentation
- Domain monitoring with nightly re-scans
- Email fix digests for monitored domains
- PDF report export
- Security badge embed
- CSP Monitor with real violation reports
- Sender requirements checker (Google, Yahoo, Microsoft)
- Email deliverability testing
- Scan history and dashboard (with free account)
- LLM-readable API documentation
