← WebMCP Directory

Tool tree

lab.houbi.ch

liveDeveloper Tools
https://lab.houbi.ch/
Lab.houbi.ch is an admin and network diagnostic toolkit that exposes 24 read-only WebMCP tools covering DNS, email authentication (SPF/DKIM/DMARC/ARC/BIMI), TLS/DANE, HTTP headers, CIDR subnetting, EDID decoding, security.txt, llms.txt, and WebMCP tool validation.
Explore capabilities
admintoolkit_check_ai_crawler_accessact

Return a read-only robots.txt access report for AI and search crawlers. Accepts robots.txt text or a robots.txt URL plus an optional path. Includes per-crawler allow/block status, matched directives, warnings and suggested policy snippets.

View tool JSON
{
  "name": "admintoolkit_check_ai_crawler_access",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only robots.txt access report for AI and search crawlers. Accepts robots.txt text or a robots.txt URL plus an optional path. Includes per-crawler allow/block status, matched directives, warnings and suggested policy snippets.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "anyOf": [
      {
        "required": [
          "content"
        ]
      },
      {
        "required": [
          "url"
        ]
      }
    ],
    "properties": {
      "url": {
        "type": "string",
        "description": "Public robots.txt URL or domain. Domains are normalized to https://<domain>/robots.txt.",
        "untrustedContentHint": true
      },
      "content": {
        "type": "string",
        "description": "Pasted robots.txt content to validate locally in the browser.",
        "untrustedContentHint": true
      },
      "path": {
        "type": "string",
        "description": "Path to evaluate against robots.txt rules. Defaults to /."
      },
      "crawlers": {
        "type": "array",
        "description": "Optional subset of documented crawler tokens, for example GPTBot or Google-Extended.",
        "items": {
          "type": "string"
        }
      }
    },
    "title": "AI Crawler robots.txt Checker diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit AI Crawler robots.txt Checker diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_validate_llms_txtact

Return a read-only llms.txt validation report. Accepts pasted Markdown or a public llms.txt URL. Includes title, summary, required sections, links, structural errors, warnings and source-line evidence.

View tool JSON
{
  "name": "admintoolkit_validate_llms_txt",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only llms.txt validation report. Accepts pasted Markdown or a public llms.txt URL. Includes title, summary, required sections, links, structural errors, warnings and source-line evidence.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "anyOf": [
      {
        "required": [
          "content"
        ]
      },
      {
        "required": [
          "url"
        ]
      }
    ],
    "properties": {
      "url": {
        "type": "string",
        "description": "Public llms.txt URL or domain. Domains are normalized to https://<domain>/llms.txt.",
        "untrustedContentHint": true
      },
      "content": {
        "type": "string",
        "description": "Pasted llms.txt content to validate locally in the browser.",
        "untrustedContentHint": true
      }
    },
    "title": "llms.txt Validator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit llms.txt Validator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_validate_a2a_agent_cardact

Return a read-only A2A Agent Card validation report. Accepts pasted card JSON or a public agent-card URL. Includes schema readiness, skill/interface coverage, capability flags, security findings and deployment warnings.

View tool JSON
{
  "name": "admintoolkit_validate_a2a_agent_card",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only A2A Agent Card validation report. Accepts pasted card JSON or a public agent-card URL. Includes schema readiness, skill/interface coverage, capability flags, security findings and deployment warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "anyOf": [
      {
        "required": [
          "json"
        ]
      },
      {
        "required": [
          "url"
        ]
      }
    ],
    "properties": {
      "url": {
        "type": "string",
        "description": "Public Agent Card URL or domain. Domains are normalized to https://<domain>/.well-known/agent-card.json.",
        "untrustedContentHint": true
      },
      "json": {
        "type": "string",
        "description": "Pasted Agent Card JSON to validate locally in the browser.",
        "untrustedContentHint": true
      }
    },
    "title": "A2A Agent Card Validator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit A2A Agent Card Validator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_validate_webmcp_toolact

Return a read-only WebMCP metadata report. Accepts pasted page source or a public page URL. Includes detected declarative and runtime tools, parameter metadata, security hints and compatibility findings.

View tool JSON
{
  "name": "admintoolkit_validate_webmcp_tool",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only WebMCP metadata report. Accepts pasted page source or a public page URL. Includes detected declarative and runtime tools, parameter metadata, security hints and compatibility findings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "anyOf": [
      {
        "required": [
          "source"
        ]
      },
      {
        "required": [
          "url"
        ]
      }
    ],
    "properties": {
      "url": {
        "type": "string",
        "description": "Public page URL to fetch through the same-origin helper.",
        "untrustedContentHint": true
      },
      "source": {
        "type": "string",
        "description": "Pasted HTML or JavaScript to validate locally in the browser without execution.",
        "untrustedContentHint": true
      }
    },
    "title": "WebMCP Tool Validator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit WebMCP Tool Validator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_mx_recordsact

Return a read-only MX routing report for a mail domain. Accepts a domain name. Includes exchanger hosts, preferences, Null MX, CNAME risk, address resolution and actionable mail-routing warnings.

View tool JSON
{
  "name": "admintoolkit_check_mx_records",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only MX routing report for a mail domain. Accepts a domain name. Includes exchanger hosts, preferences, Null MX, CNAME risk, address resolution and actionable mail-routing warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "Mail domain to check.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      }
    },
    "required": [
      "domain"
    ],
    "title": "MX Record Check diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit MX Record Check diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_email_auth_recordsact

Return a read-only SPF, DMARC and DKIM report for a mail domain. Accepts a domain plus optional pasted TXT values. Includes syntax, policy strength, alignment, DNS evidence and record-specific warnings.

View tool JSON
{
  "name": "admintoolkit_check_email_auth_records",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only SPF, DMARC and DKIM report for a mail domain. Accepts a domain plus optional pasted TXT values. Includes syntax, policy strength, alignment, DNS evidence and record-specific warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "Domain to check.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      },
      "selector_mode": {
        "type": "string",
        "description": "DKIM selector mode.",
        "untrustedContentHint": true,
        "enum": [
          "manual",
          "auto",
          "none"
        ]
      },
      "selector": {
        "type": "string",
        "description": "DKIM selector.",
        "untrustedContentHint": true
      },
      "policy": {
        "type": "string",
        "description": "Expected DMARC policy.",
        "untrustedContentHint": true,
        "enum": [
          "none",
          "quarantine",
          "reject"
        ]
      },
      "spf_record": {
        "type": "string",
        "description": "SPF TXT record.",
        "untrustedContentHint": true
      },
      "dmarc_record": {
        "type": "string",
        "description": "DMARC TXT record.",
        "untrustedContentHint": true
      },
      "dkim_record": {
        "type": "string",
        "description": "DKIM TXT value.",
        "untrustedContentHint": true
      }
    },
    "required": [
      "domain"
    ],
    "title": "SPF/DMARC/DKIM Checker diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit SPF/DMARC/DKIM Checker diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_analyze_email_headersact

Return a read-only email message header report. Accepts pasted RFC 5322 headers. Includes Received-hop order, Authentication-Results, SPF/DKIM/DMARC/ARC evidence, timing anomalies and trust-chain warnings.

View tool JSON
{
  "name": "admintoolkit_analyze_email_headers",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only email message header report. Accepts pasted RFC 5322 headers. Includes Received-hop order, Authentication-Results, SPF/DKIM/DMARC/ARC evidence, timing anomalies and trust-chain warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "headers": {
        "type": "string",
        "description": "Full pasted email message headers.",
        "untrustedContentHint": true
      }
    },
    "required": [],
    "anyOf": [
      {
        "required": [
          "headers"
        ]
      }
    ],
    "title": "Email Message Header Analyzer diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit Email Message Header Analyzer diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_validate_arc_chainact

Return a read-only ARC chain validation report. Accepts pasted ARC-Seal, ARC-Message-Signature and ARC-Authentication-Results fields. Includes instance order, cv state, chain continuity and missing-field findings.

View tool JSON
{
  "name": "admintoolkit_validate_arc_chain",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only ARC chain validation report. Accepts pasted ARC-Seal, ARC-Message-Signature and ARC-Authentication-Results fields. Includes instance order, cv state, chain continuity and missing-field findings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "headers": {
        "type": "string",
        "description": "Pasted message headers containing ARC fields.",
        "untrustedContentHint": true
      }
    },
    "required": [],
    "anyOf": [
      {
        "required": [
          "headers"
        ]
      }
    ],
    "title": "ARC Chain Validator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit ARC Chain Validator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_bimi_recordact

Return a read-only BIMI readiness report for a mail domain. Accepts a domain, selector and optional BIMI, DMARC, logo or certificate evidence. Includes TXT syntax, DMARC dependency, asset URL findings and a conservative BIMI draft.

View tool JSON
{
  "name": "admintoolkit_check_bimi_record",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only BIMI readiness report for a mail domain. Accepts a domain, selector and optional BIMI, DMARC, logo or certificate evidence. Includes TXT syntax, DMARC dependency, asset URL findings and a conservative BIMI draft.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "BIMI domain.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      },
      "selector": {
        "type": "string",
        "description": "BIMI selector.",
        "untrustedContentHint": true
      },
      "record": {
        "type": "string",
        "description": "BIMI TXT record.",
        "untrustedContentHint": true
      },
      "dmarc": {
        "type": "string",
        "description": "DMARC TXT record.",
        "untrustedContentHint": true
      },
      "logo_url": {
        "type": "string",
        "description": "BIMI logo URL.",
        "untrustedContentHint": true,
        "format": "uri"
      },
      "evidence_url": {
        "type": "string",
        "description": "BIMI evidence/VMC URL.",
        "untrustedContentHint": true,
        "format": "uri"
      }
    },
    "required": [
      "domain"
    ],
    "title": "BIMI Checker/Generator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit BIMI Checker/Generator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_mta_sts_policyanswer

Return a read-only MTA-STS deployment report for a mail domain. Accepts a domain plus optional TXT, policy, MX and TLS-RPT evidence. Includes mode, max-age, syntax, id consistency, MX coverage, conformance findings and remediation warnings.

View tool JSON
{
  "name": "admintoolkit_check_mta_sts_policy",
  "kind": "answer",
  "impl": "imperative",
  "description": "Return a read-only MTA-STS deployment report for a mail domain. Accepts a domain plus optional TXT, policy, MX and TLS-RPT evidence. Includes mode, max-age, syntax, id consistency, MX coverage, conformance findings and remediation warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "Mail domain.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      },
      "dns_txt": {
        "type": "string",
        "description": "_mta-sts TXT value.",
        "untrustedContentHint": true
      },
      "policy": {
        "type": "string",
        "description": "MTA-STS policy text.",
        "untrustedContentHint": true
      },
      "mode": {
        "type": "string",
        "description": "Generated policy mode.",
        "untrustedContentHint": true,
        "enum": [
          "testing",
          "enforce",
          "none"
        ]
      },
      "mx_hosts": {
        "type": "string",
        "description": "Known MX hostnames, one per line.",
        "untrustedContentHint": true
      },
      "tls_rpt": {
        "type": "string",
        "description": "TLS-RPT TXT value.",
        "untrustedContentHint": true
      }
    },
    "required": [
      "domain"
    ],
    "title": "MTA-STS Checker/Generator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit MTA-STS Checker/Generator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_tls_rpt_policyanswer

Return a read-only SMTP TLS Reporting report for a mail domain. Accepts a domain plus optional TLS-RPT TXT or RUA values. Includes version syntax, reporting destinations, external-provider use, conformance findings and remediation warnings.

View tool JSON
{
  "name": "admintoolkit_check_tls_rpt_policy",
  "kind": "answer",
  "impl": "imperative",
  "description": "Return a read-only SMTP TLS Reporting report for a mail domain. Accepts a domain plus optional TLS-RPT TXT or RUA values. Includes version syntax, reporting destinations, external-provider use, conformance findings and remediation warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "Mail domain.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      },
      "dns_txt": {
        "type": "string",
        "description": "_smtp._tls TXT value.",
        "untrustedContentHint": true
      },
      "rua": {
        "type": "string",
        "description": "Generated rua destination.",
        "untrustedContentHint": true
      }
    },
    "required": [
      "domain"
    ],
    "title": "TLS-RPT Checker/Generator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit TLS-RPT Checker/Generator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_smtp_tls_readinessact

Return a read-only SMTP TLS delivery readiness report for a mail domain. Accepts a domain and optional MTA-STS, TLS-RPT, DANE and FCrDNS checks. Includes MX, STARTTLS, certificate, policy-alignment and downgrade-risk findings.

View tool JSON
{
  "name": "admintoolkit_check_smtp_tls_readiness",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only SMTP TLS delivery readiness report for a mail domain. Accepts a domain and optional MTA-STS, TLS-RPT, DANE and FCrDNS checks. Includes MX, STARTTLS, certificate, policy-alignment and downgrade-risk findings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "Mail domain.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      },
      "check_mta_sts": {
        "type": "boolean",
        "description": "Check MTA-STS."
      },
      "check_tls_rpt": {
        "type": "boolean",
        "description": "Check TLS-RPT."
      },
      "check_dane": {
        "type": "boolean",
        "description": "Check DANE/TLSA."
      },
      "check_fcrdns": {
        "type": "boolean",
        "description": "Check FCrDNS."
      }
    },
    "required": [
      "domain"
    ],
    "title": "SMTP TLS Handshake / Mail Domain Delivery Readiness diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit SMTP TLS Handshake / Mail Domain Delivery Readiness diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_validate_dnssec_recordsact

Return a read-only DNSSEC evidence report for a domain. Accepts a domain plus optional DS, DNSKEY, RRSIG and resolver-status data. Includes chain readiness, algorithms, missing records, validation findings and warnings.

View tool JSON
{
  "name": "admintoolkit_validate_dnssec_records",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only DNSSEC evidence report for a domain. Accepts a domain plus optional DS, DNSKEY, RRSIG and resolver-status data. Includes chain readiness, algorithms, missing records, validation findings and warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "DNSSEC domain.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      },
      "ds_records": {
        "type": "string",
        "description": "DS records.",
        "untrustedContentHint": true
      },
      "dnskey_records": {
        "type": "string",
        "description": "DNSKEY records.",
        "untrustedContentHint": true
      },
      "rrsig_records": {
        "type": "string",
        "description": "RRSIG records.",
        "untrustedContentHint": true
      },
      "status": {
        "type": "string",
        "description": "Resolver validation status.",
        "untrustedContentHint": true,
        "enum": [
          "",
          "secure",
          "bogus"
        ]
      }
    },
    "required": [
      "domain"
    ],
    "title": "DNSSEC Validator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit DNSSEC Validator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_generate_tlsa_recordact

Return a read-only DANE TLSA record report. Accepts host, port, protocol, usage, selector, matching type and optional certificate data. Includes owner name, digest, generated TLSA data and DNS comparison findings.

View tool JSON
{
  "name": "admintoolkit_generate_tlsa_record",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only DANE TLSA record report. Accepts host, port, protocol, usage, selector, matching type and optional certificate data. Includes owner name, digest, generated TLSA data and DNS comparison findings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "host": {
        "type": "string",
        "description": "TLS service host.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)[A-Za-z0-9](?:[A-Za-z0-9.-]{0,251}[A-Za-z0-9])?\\\\.?$"
      },
      "port": {
        "type": "string",
        "description": "TLS service port.",
        "untrustedContentHint": true,
        "pattern": "^(?:[1-9][0-9]{0,3}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"
      },
      "protocol": {
        "type": "string",
        "description": "TLSA protocol.",
        "untrustedContentHint": true,
        "enum": [
          "tcp",
          "udp"
        ]
      },
      "usage": {
        "type": "string",
        "description": "TLSA certificate usage.",
        "untrustedContentHint": true,
        "enum": [
          "0",
          "1",
          "2",
          "3"
        ]
      },
      "selector": {
        "type": "string",
        "description": "TLSA selector.",
        "untrustedContentHint": true,
        "enum": [
          "0",
          "1"
        ]
      },
      "matching": {
        "type": "string",
        "description": "TLSA matching type.",
        "untrustedContentHint": true,
        "enum": [
          "0",
          "1",
          "2"
        ]
      },
      "pem": {
        "type": "string",
        "description": "Certificate PEM, DER base64, or hex.",
        "untrustedContentHint": true
      },
      "file": {
        "type": "string",
        "description": "Certificate file content.",
        "untrustedContentHint": true
      }
    },
    "required": [
      "host"
    ],
    "title": "TLSA Record Checker/Generator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit TLSA Record Checker/Generator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_validate_dane_recordsact

Return a read-only DANE service validation report. Accepts service host, port, protocol, TLSA records, DNSSEC status and optional certificate evidence. Includes owner names, TLSA syntax, DNSSEC dependency and certificate-match findings.

View tool JSON
{
  "name": "admintoolkit_validate_dane_records",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only DANE service validation report. Accepts service host, port, protocol, TLSA records, DNSSEC status and optional certificate evidence. Includes owner names, TLSA syntax, DNSSEC dependency and certificate-match findings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "host": {
        "type": "string",
        "description": "DANE service host.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)[A-Za-z0-9](?:[A-Za-z0-9.-]{0,251}[A-Za-z0-9])?\\\\.?$"
      },
      "port": {
        "type": "string",
        "description": "DANE service port.",
        "untrustedContentHint": true,
        "pattern": "^(?:[1-9][0-9]{0,3}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"
      },
      "protocol": {
        "type": "string",
        "description": "DANE protocol.",
        "untrustedContentHint": true,
        "enum": [
          "tcp",
          "udp"
        ]
      },
      "mode": {
        "type": "string",
        "description": "DANE mode.",
        "untrustedContentHint": true,
        "enum": [
          "smtp",
          "tls"
        ]
      },
      "tlsa_records": {
        "type": "string",
        "description": "TLSA records.",
        "untrustedContentHint": true
      },
      "dnssec": {
        "type": "string",
        "description": "DNSSEC status.",
        "untrustedContentHint": true,
        "enum": [
          "",
          "secure",
          "bogus"
        ]
      }
    },
    "required": [
      "host"
    ],
    "title": "DANE Validator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit DANE Validator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_caa_recordsact

Return a read-only CAA certificate-authority policy report for a domain. Accepts a domain plus optional CAA records and issuer details. Includes issue, issuewild, iodef, ACME parameters, policy gaps and record-generation guidance.

View tool JSON
{
  "name": "admintoolkit_check_caa_records",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only CAA certificate-authority policy report for a domain. Accepts a domain plus optional CAA records and issuer details. Includes issue, issuewild, iodef, ACME parameters, policy gaps and record-generation guidance.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "domain": {
        "type": "string",
        "description": "CAA domain.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)(?:[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?\\\\.)+[A-Za-z]{2,63}\\\\.?$"
      },
      "records": {
        "type": "string",
        "description": "CAA records.",
        "untrustedContentHint": true
      },
      "ca": {
        "type": "string",
        "description": "CA domain for generated draft.",
        "untrustedContentHint": true
      },
      "iodef": {
        "type": "string",
        "description": "CAA iodef destination.",
        "untrustedContentHint": true
      },
      "methods": {
        "type": "string",
        "description": "CAA validationmethods.",
        "untrustedContentHint": true
      },
      "issuemail": {
        "type": "string",
        "description": "CAA issuemail value.",
        "untrustedContentHint": true
      }
    },
    "required": [
      "domain"
    ],
    "title": "CAA Record Checker/Generator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit CAA Record Checker/Generator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_analyze_http_headersact

Return a read-only HTTP response-header report for a public endpoint. Accepts pasted headers or a public URL. Includes security, cache, framing, duplicate/conflicting header fields, prioritized findings and remediation notes.

View tool JSON
{
  "name": "admintoolkit_analyze_http_headers",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only HTTP response-header report for a public endpoint. Accepts pasted headers or a public URL. Includes security, cache, framing, duplicate/conflicting header fields, prioritized findings and remediation notes.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "url": {
        "type": "string",
        "description": "Public URL to fetch.",
        "untrustedContentHint": true,
        "format": "uri"
      },
      "headers": {
        "type": "string",
        "description": "Pasted HTTP response headers.",
        "untrustedContentHint": true
      }
    },
    "required": [],
    "anyOf": [
      {
        "required": [
          "url"
        ]
      },
      {
        "required": [
          "headers"
        ]
      }
    ],
    "title": "HTTP Header Analyzer diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit HTTP Header Analyzer diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_decode_ssl_certificateact

Return a read-only X.509 TLS certificate report. Accepts PEM text or public TLS host details. Includes subject, issuer, SANs, validity, fingerprints, key usage, extensions, hostname and certificate-health findings.

View tool JSON
{
  "name": "admintoolkit_decode_ssl_certificate",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only X.509 TLS certificate report. Accepts PEM text or public TLS host details. Includes subject, issuer, SANs, validity, fingerprints, key usage, extensions, hostname and certificate-health findings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "host": {
        "type": "string",
        "description": "TLS certificate host.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)[A-Za-z0-9](?:[A-Za-z0-9.-]{0,251}[A-Za-z0-9])?\\\\.?$"
      },
      "port": {
        "type": "string",
        "description": "TLS certificate port.",
        "untrustedContentHint": true,
        "pattern": "^(?:[1-9][0-9]{0,3}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"
      },
      "protocol": {
        "type": "string",
        "description": "Certificate protocol.",
        "untrustedContentHint": true,
        "enum": [
          "TLS"
        ]
      },
      "pem": {
        "type": "string",
        "description": "Certificate PEM.",
        "untrustedContentHint": true
      }
    },
    "required": [
      "host"
    ],
    "title": "SSL Certificate Decoder diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit SSL Certificate Decoder diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_validate_security_txtact

Return a read-only RFC 9116 security.txt report. Accepts pasted content or a public security.txt URL plus optional contact fields. Includes contact, expiry, canonical, encryption, policy, language fields, findings and draft output.

View tool JSON
{
  "name": "admintoolkit_validate_security_txt",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only RFC 9116 security.txt report. Accepts pasted content or a public security.txt URL plus optional contact fields. Includes contact, expiry, canonical, encryption, policy, language fields, findings and draft output.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "url": {
        "type": "string",
        "description": "Public security.txt URL or domain.",
        "untrustedContentHint": true,
        "format": "uri"
      },
      "content": {
        "type": "string",
        "description": "Pasted security.txt content.",
        "untrustedContentHint": true
      },
      "contact": {
        "type": "string",
        "description": "Generated Contact value.",
        "untrustedContentHint": true
      },
      "encryption": {
        "type": "string",
        "description": "Generated Encryption URL.",
        "untrustedContentHint": true,
        "format": "uri"
      },
      "policy": {
        "type": "string",
        "description": "Generated Policy URL.",
        "untrustedContentHint": true,
        "format": "uri"
      },
      "pgp_key": {
        "type": "string",
        "description": "Generated PGP key id.",
        "untrustedContentHint": true
      }
    },
    "required": [],
    "anyOf": [
      {
        "required": [
          "url"
        ]
      },
      {
        "required": [
          "content"
        ]
      }
    ],
    "title": "security.txt Validator/Generator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit security.txt Validator/Generator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_tls_configurationact

Return a read-only public TLS configuration report for a host. Accepts host and port plus optional HSTS policy. Includes protocol support, certificate-name match, ALPN/SNI, HSTS, weak-configuration findings and warnings.

View tool JSON
{
  "name": "admintoolkit_check_tls_configuration",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only public TLS configuration report for a host. Accepts host and port plus optional HSTS policy. Includes protocol support, certificate-name match, ALPN/SNI, HSTS, weak-configuration findings and warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "host": {
        "type": "string",
        "description": "TLS host.",
        "untrustedContentHint": true,
        "pattern": "^(?=.{1,253}\\\\.?$)[A-Za-z0-9](?:[A-Za-z0-9.-]{0,251}[A-Za-z0-9])?\\\\.?$"
      },
      "port": {
        "type": "string",
        "description": "TLS port.",
        "untrustedContentHint": true,
        "pattern": "^(?:[1-9][0-9]{0,3}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"
      },
      "hsts": {
        "type": "string",
        "description": "Optional pasted HSTS header.",
        "untrustedContentHint": true
      }
    },
    "required": [
      "host"
    ],
    "title": "TLS Configuration Checker diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit TLS Configuration Checker diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_check_redirect_indexabilityact

Return a read-only redirect, canonical and indexability report for a public URL. Accepts a URL. Includes status chain, final URL, canonical target, robots meta, X-Robots-Tag, hreflang, sitemap and noindex/nofollow findings.

View tool JSON
{
  "name": "admintoolkit_check_redirect_indexability",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only redirect, canonical and indexability report for a public URL. Accepts a URL. Includes status chain, final URL, canonical target, robots meta, X-Robots-Tag, hreflang, sitemap and noindex/nofollow findings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "url": {
        "type": "string",
        "description": "Public URL to check.",
        "untrustedContentHint": true,
        "format": "uri"
      }
    },
    "required": [
      "url"
    ],
    "title": "Redirect / Canonical / Indexability Checker diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit Redirect / Canonical / Indexability Checker diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_show_public_ip_contextact

Return a read-only public IP context report for the current request. Requires no input. Includes observed address, IP version, forwarded-header context, browser metadata and approximate Geo-IP/ASN context when available.

View tool JSON
{
  "name": "admintoolkit_show_public_ip_context",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only public IP context report for the current request. Requires no input. Includes observed address, IP version, forwarded-header context, browser metadata and approximate Geo-IP/ASN context when available.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {},
    "required": [],
    "title": "What is my IP? diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit What is my IP? diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_calculate_cidr_subnetact

Return a read-only IPv4 or IPv6 CIDR report. Accepts a CIDR block plus optional split prefix and address family. Includes network boundaries, usable range, masks, address counts and a capped subnet preview.

View tool JSON
{
  "name": "admintoolkit_calculate_cidr_subnet",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only IPv4 or IPv6 CIDR report. Accepts a CIDR block plus optional split prefix and address family. Includes network boundaries, usable range, masks, address counts and a capped subnet preview.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "cidr": {
        "type": "string",
        "description": "CIDR input.",
        "untrustedContentHint": true,
        "pattern": "^(?:[0-9]{1,3}(?:\\\\.[0-9]{1,3}){3}|[0-9A-Fa-f:.]+)/(?:[0-9]|[1-9][0-9]|1[01][0-9]|12[0-8])$"
      },
      "target": {
        "type": "string",
        "description": "Split target prefix.",
        "untrustedContentHint": true
      },
      "family": {
        "type": "string",
        "description": "Address family.",
        "untrustedContentHint": true,
        "enum": [
          "auto",
          "ipv4",
          "ipv6"
        ]
      }
    },
    "required": [
      "cidr"
    ],
    "title": "CIDR/Subnet Calculator diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit CIDR/Subnet Calculator diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}
admintoolkit_decode_edid_dataact

Return a read-only HDMI or Display EDID report. Accepts EDID hex or local file content. Includes manufacturer identity, product data, timings, CTA blocks, audio/HDR capabilities, checksum status and display-metadata warnings.

View tool JSON
{
  "name": "admintoolkit_decode_edid_data",
  "kind": "act",
  "impl": "imperative",
  "description": "Return a read-only HDMI or Display EDID report. Accepts EDID hex or local file content. Includes manufacturer identity, product data, timings, CTA blocks, audio/HDR capabilities, checksum status and display-metadata warnings.",
  "inputSchema": {
    "type": "object",
    "additionalProperties": false,
    "properties": {
      "file": {
        "type": "string",
        "description": "EDID file contents as text/hex.",
        "untrustedContentHint": true
      },
      "edid_hex": {
        "type": "string",
        "description": "Pasted EDID hex.",
        "untrustedContentHint": true
      }
    },
    "required": [],
    "anyOf": [
      {
        "required": [
          "file"
        ]
      },
      {
        "required": [
          "edid_hex"
        ]
      }
    ],
    "title": "HDMI EDID Decoder diagnostic input schema",
    "description": "Inputs for a read-only AdminToolkit HDMI EDID Decoder diagnostic. The tool returns structured evidence, status and findings."
  },
  "page": "/"
}