GnistAI GnistAI
Log in

Cyber Intelligence

Investigate domains, search CVE vulnerabilities, and monitor internet outages from one toolkit. WHOIS lookups, DNS resolution, NVD vulnerability data, and real-time outage detection.

Overview   |   MCP Docs   |   API Docs   |   OpenAPI   |   Playground   |   Tutorial   |   Toolkits   |   Home
status: healthy status status healthy healthy tools: 6 tools tools 6 6 Security

Data source: NIST NVD, RDAP, Cloudflare DoH, IODA (Georgia Tech)

MCP MCP Protocol

Endpoint https://context.gnist.ai/mcp/cyber-intelligence/
claude_desktop_config.json 
{
  "mcpServers": {
    "gnist-cyber-intelligence": {
      "url": "https://context.gnist.ai/mcp/cyber-intelligence/",
      "headers": {
        "Gnist-API-Key": "YOUR_API_KEY"
      }
    }
  }
}
Shell 
curl -X POST "https://context.gnist.ai/mcp/cyber-intelligence/" \
  -H "Content-Type: application/json" \
  -H "Accept: application/json, text/event-stream" \
  -H "Gnist-API-Key: YOUR_API_KEY" \
  -d '{"jsonrpc": "2.0", "method": "tools/call", "id": 1, "params": {"name": "investigate_domain", "arguments": {"domain": "example"}}}'

API REST API

API Root https://context.gnist.ai/rest/cyber-intelligence/

6 endpoints available:

Shell 
curl "https://context.gnist.ai/rest/cyber-intelligence/investigate_domain?domain=example" \
  -H "Gnist-API-Key: YOUR_API_KEY"
Python 
import httpx

resp = httpx.get(
    "https://context.gnist.ai/rest/cyber-intelligence/investigate_domain",
    headers={"Gnist-API-Key": "YOUR_API_KEY"},
    params={
        "domain": "example"
},
)
print(resp.json())

OpenAPI Spec  ·  Full API Docs

CLI Command Line

Command gc cyber-intelligence

CLI documentation will be available when the GnistAI SDK is published.

Install 
pip install gnistai

Available Tools (6)

investigate_domain
Investigate a domain by querying WHOIS and DNS records in parallel.
ParameterTypeRequiredDescription
domainstringrequiredDomain name to investigate (e.g. example.com).
search_vulnerabilities
Search the NVD for CVE vulnerabilities matching a keyword.
ParameterTypeRequiredDescription
keywordstringrequiredSearch keyword for CVE vulnerabilities (e.g. 'Apache', 'log4j').
limitintegeroptionalMax results. (default: 10)
get_outage_overview
Get internet outage alerts from IODA (Internet Outage Detection and Analysis).
ParameterTypeRequiredDescription
country_codeanyoptionalISO country code to filter (e.g. 'US', 'NO').
hoursnumberoptionalLookback window in hours. (default: 24)
limitintegeroptionalMax alerts. (default: 20)
full_cyber_investigation
Run a full cyber intelligence investigation across all four sources in parallel.
ParameterTypeRequiredDescription
querystringrequiredInvestigation label or summary term.
domainanyoptionalDomain to investigate (WHOIS + DNS).
vulnerability_keywordanyoptionalCVE vulnerability search keyword.
country_codeanyoptionalISO country code for outage alerts.
outage_hoursnumberoptionalOutage lookback window in hours. (default: 24)
limitintegeroptionalMax results per source. (default: 10)
list_cyber_intelligence_sources
List all cyber intelligence data sources, their coverage, and data types.
report_feedback
Report a bug, feature request, or general feedback for this data source.
ParameterTypeRequiredDescription
feedbackstringrequired
feedback_typestringoptional (default: "general")

Related

Playground
Try tools interactively in your browser.
Toolkits
Browse all toolkits and their tools.
Developer Quickstart
Get from zero to your first API call in under two minutes.
Get an API Key
Free tier: 100 calls/day. No credit card required.