Documentation Index

Fetch the complete documentation index at: https://help.silentpush.com/llms.txt

Use this file to discover all available pages before exploring further.

MCP for Silent Push

  • Published on Jun 9, 2026
  • 1 minute(s) read
Prev Next

MCP (Model Context Protocol), introduced by Anthropic, is the “USB-C for AI applications.” It standardizes how Large Language Models and AI agents securely connect to external data sources and tools.

Instead of manually copying IOCs or switching dashboards, analysts and AI agents can now query rich threat intelligence natively inside their conversational workflows.

Silent Push MCP Server

The new Silent Push MCP Server is a SaaS-hosted endpoint that brings Silent Push’s preemptive threat intelligence directly into the AI tools you already use.

Key Silent Push Capabilities Available via MCP

Enrichment

  • enrich_domain / enrich_ip

  • bulk_enrich_domains / bulk_enrich_ips

  • get_risk_score – Full proprietary risk scoring

Passive Active DNS (PADNS)

  • query_forward, query_backward, query_reverse

  • find_sibling_domains, find_cousin_domains, find_self_hosted

  • get_density, get_diversity, get_host_diversity

  • get_nameserver_domains, get_asns_for_domain

  • namechain_search, search_domains, lookup_both

Reputation Tools

  • get_asn_reputation

  • get_subnet_reputation

  • get_nameserver_reputation

  • get_ip_reputation

  • get_domain_whois

Scanning

  • live_scan

  • screenshot_url

  • query_spql

  • find_by_favicon, find_by_ssl_certificate, find_by_jarm

  • find_by_html_pattern, find_by_banner

  • search_by_asn

Core Features of Silent Push MCP

  • Direct Querying from AI Tools – Ask Claude, Cursor, or any MCP-compatible client about a domain or IP and receive instant structured results.

  • Full Risk Scoring – Proprietary scoring based on attacker behavior, passive DNS, certificates, web content, and more (via get_risk_score + enrichment).

  • Rich Enrichment – Comprehensive context for Domains and IPv4, including WHOIS, DNS history, linked infrastructure, impersonation risk, and more.

  • Live Scanning & Visuals – On-demand live web scans and URL screenshots.

  • Advanced Fingerprinting – SPQL queries, favicon/SSL/JARM matching, banner searches, and more.

Why It Matters

Modern security teams already leverage AI for triage, investigation, and reporting. Silent Push MCP removes the friction of traditional API lookups by delivering enriched, risk-scored intelligence directly into those AI workflows.

Typical Use Cases

  • SOC analysts paste a suspicious IP → get full risk profile + linked infrastructure

  • Threat hunters ask AI agents to correlate domains across campaigns using PADNS and SPQL

  • Incident responders enrich alerts with upstream attacker context in seconds

  • CTI teams generate dynamic reports using natural language

Related articles