Domain age and legitimacy
How old and legit is this domain? WHOIS registration, DNS resolution, and TLS certificate in one pass.
When to use this pack
An agent evaluating a website's trustworthiness needs the basic legitimacy signals: how old is the registration (new domains are higher risk), does it resolve to a real IP, and is the TLS cert valid? Useful for fraud detection, link safety checks, and vendor due diligence.
Tools in this pack
-
Domain WHOIS (RDAP)
$0.005
POST /api/whois
Domain registration data via RDAP (the structured WHOIS successor): registrar, creation/expiry dates, status, nameservers.
-
DNS lookup
$0.002
POST /api/dns-lookup
Resolve any DNS record type for a host: A, AAAA, MX, TXT, CNAME, NS, SOA, CAA, SRV, PTR. Returns the records plus a count. Built on Node's native resolver — no external API.
-
TLS certificate
$0.003
POST /api/tls-cert
Inspect the TLS certificate of any public host: subject, issuer, validity window, days remaining, SANs, and SHA-256 fingerprint.
Workflow
- Call whois to get registration date, registrar, expiry, and age — domains less than 6 months old are higher risk.
- Call dns-lookup with host=domain and type='A' to verify the domain resolves to a real IP address.
- Call tls-cert with host=domain to check the certificate issuer, validity period, and chain trust.
Run it in Claude
claude mcp add agent402 -s user -- npx -y agent402-mcp@latest
Then paste this prompt into Claude:
Check the age and legitimacy of google.com using Agent402's domain-age skill pack: (1) whois for registration age and registrar, (2) dns-lookup for A record resolution, (3) tls-cert for certificate validity. Report a trust assessment based on age, DNS health, and cert status.
← All skill packs