SecurityTrails MCP Server for LlamaIndex 10 tools — connect in under 2 minutes
LlamaIndex specializes in data-aware AI agents that connect LLMs to structured and unstructured sources. Add SecurityTrails as an MCP tool provider through the Vinkius and your agents can query, analyze, and act on live data alongside your existing indexes.
ASK AI ABOUT THIS MCP SERVER
Vinkius supports streamable HTTP and SSE.
import asyncio
from llama_index.tools.mcp import BasicMCPClient, McpToolSpec
from llama_index.core.agent.workflow import FunctionAgent
from llama_index.llms.openai import OpenAI
async def main():
# Your Vinkius token — get it at cloud.vinkius.com
mcp_client = BasicMCPClient("https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp")
mcp_tool_spec = McpToolSpec(client=mcp_client)
tools = await mcp_tool_spec.to_tool_list_async()
agent = FunctionAgent(
tools=tools,
llm=OpenAI(model="gpt-4o"),
system_prompt=(
"You are an assistant with access to SecurityTrails. "
"You have 10 tools available."
),
)
response = await agent.run(
"What tools are available in SecurityTrails?"
)
print(response)
asyncio.run(main())
* Every MCP server runs on Vinkius-managed infrastructure inside AWS - a purpose-built runtime with per-request V8 isolates, Ed25519 signed audit chains, and sub-40ms cold starts optimized for native MCP execution. See our infrastructure
About SecurityTrails MCP Server
Connect your SecurityTrails account to any AI agent and empower your OSINT, bug bounty, and threat intelligence workflows with the world's most comprehensive domain and IP database.
LlamaIndex agents combine SecurityTrails tool responses with indexed documents for comprehensive, grounded answers. Connect 10 tools through the Vinkius and query live data alongside vector stores and SQL databases in a single turn — ideal for hybrid search, data enrichment, and analytical workflows.
What you can do
- Attack Surface Mapping — Instantly enumerate all subdomains for any target organization to map their external footprint
- Historical DNS Analysis — Look back in time at DNS records (A, MX, NS, TXT) to find hidden infrastructure, bypassed firewalls, or legacy systems
- Reverse IP Lookups — Find all domains hosted on a specific IP address to identify shared hosting or related corporate assets
- Advanced Threat Hunting — Use the SecurityTrails DSL (Domain Specific Language) to query the entire internet for specific tech stacks or vulnerable infrastructure
- Ownership Intelligence — Access current and historical WHOIS records to track domain ownership changes and unmask hidden threat actors
- Corporate Associations — Discover domains strongly associated with your primary target to expand your investigation scope
The SecurityTrails MCP Server exposes 10 tools through the Vinkius. Connect it to LlamaIndex in under two minutes — no API keys to rotate, no infrastructure to provision, no vendor lock-in. Your configuration, your data, your control.
How to Connect SecurityTrails to LlamaIndex via MCP
Follow these steps to integrate the SecurityTrails MCP Server with LlamaIndex.
Install dependencies
Run pip install llama-index-tools-mcp llama-index-llms-openai
Replace the token
Replace [YOUR_TOKEN_HERE] with your Vinkius token
Run the agent
Save to agent.py and run: python agent.py
Explore tools
The agent discovers 10 tools from SecurityTrails
Why Use LlamaIndex with the SecurityTrails MCP Server
LlamaIndex provides unique advantages when paired with SecurityTrails through the Model Context Protocol.
Data-first architecture: LlamaIndex agents combine SecurityTrails tool responses with indexed documents for comprehensive, grounded answers
Query pipeline framework lets you chain SecurityTrails tool calls with transformations, filters, and re-rankers in a typed pipeline
Multi-source reasoning: agents can query SecurityTrails, a vector store, and a SQL database in a single turn and synthesize results
Observability integrations show exactly what SecurityTrails tools were called, what data was returned, and how it influenced the final answer
SecurityTrails + LlamaIndex Use Cases
Practical scenarios where LlamaIndex combined with the SecurityTrails MCP Server delivers measurable value.
Hybrid search: combine SecurityTrails real-time data with embedded document indexes for answers that are both current and comprehensive
Data enrichment: query SecurityTrails to augment indexed data with live information before generating user-facing responses
Knowledge base agents: build agents that maintain and update knowledge bases by periodically querying SecurityTrails for fresh data
Analytical workflows: chain SecurityTrails queries with LlamaIndex's data connectors to build multi-source analytical reports
SecurityTrails MCP Tools for LlamaIndex (10)
These 10 tools become available when you connect SecurityTrails to LlamaIndex via MCP:
get_api_usage
Check current SecurityTrails API quota usage
get_associated_domains
Great for expanding the scope of an investigation. Find other domains associated with a target domain
get_dns_history
Useful for finding old IPs that might still be hosting vulnerable software, or tracking infrastructure migration over time. Retrieve historical DNS records for a domain
get_domain_details
Essential for mapping out a target domain's existing infrastructure. Get complete domain intelligence and current DNS records
get_domain_tags
Get classification tags for a domain
get_domains_by_ip
Essential for understanding shared hosting environments or identifying hidden vhosts. Find all domains pointed to a specific IP address
get_subdomains
Critical for attack surface mapping and asset discovery. Returns both active and inactive subdomains. Discover all subdomains for a given domain
get_whois
Get current WHOIS information for a domain
get_whois_history
Useful for OSINT investigations to uncover historical owners before privacy protection was enabled. Retrieve historical WHOIS records for a domain
search_dsl
Examples: `ipv4="1.1.1.1" AND mx="alt1.aspmx.l.google.com"` or `whois_email="admin@example.com"`. Check SecurityTrails docs for full DSL syntax. Advanced search using SecurityTrails DSL
Example Prompts for SecurityTrails in LlamaIndex
Ready-to-use prompts you can give your LlamaIndex agent to start working with SecurityTrails immediately.
"Find all subdomains for tesla.com."
"Check the historical 'A' records for example.com. Were there any changes in 2021?"
"What domains are hosted on the IP 8.8.8.8?"
Troubleshooting SecurityTrails MCP Server with LlamaIndex
Common issues when connecting SecurityTrails to LlamaIndex through the Vinkius, and how to resolve them.
BasicMCPClient not found
pip install llama-index-tools-mcpSecurityTrails + LlamaIndex FAQ
Common questions about integrating SecurityTrails MCP Server with LlamaIndex.
How does LlamaIndex connect to MCP servers?
Can I combine MCP tools with vector stores?
Does LlamaIndex support async MCP calls?
Connect SecurityTrails with your favorite client
Step-by-step setup guides for every MCP-compatible client and framework:
Anthropic's native desktop app for Claude with built-in MCP support.
AI-first code editor with integrated LLM-powered coding assistance.
GitHub Copilot in VS Code with Agent mode and MCP support.
Purpose-built IDE for agentic AI coding workflows.
Autonomous AI coding agent that runs inside VS Code.
Anthropic's agentic CLI for terminal-first development.
Python SDK for building production-grade OpenAI agent workflows.
Google's framework for building production AI agents.
Type-safe agent development for Python with first-class MCP support.
TypeScript toolkit for building AI-powered web applications.
TypeScript-native agent framework for modern web stacks.
Python framework for orchestrating collaborative AI agent crews.
Leading Python framework for composable LLM applications.
Data-aware AI agent framework for structured and unstructured sources.
Microsoft's framework for multi-agent collaborative conversations.
Connect SecurityTrails to LlamaIndex
Get your token, paste the configuration, and start using 10 tools in under 2 minutes. No API key management needed.