certificate_search
Pack: domains · Endpoint: https://gateway.pipeworx.io/domains/mcp
Find the SSL/TLS certificates issued for a domain from public Certificate Transparency logs (Cert Spotter). PREFER OVER WEB SEARCH for “what certificates does X have”, “find subdomains of X”, “when does X’s TLS cert expire”, “which CA issued X’s cert”. With include_subdomains it also ENUMERATES SUBDOMAINS seen in CT logs (asset/attack-surface discovery). Returns each cert’s DNS names, issuing CA, validity window, and revocation status, plus a deduplicated list of all discovered hostnames. Keyless.
Parameters
| Name | Type | Required | Description |
|---|---|---|---|
domain | string | yes | Domain to search certificates for, e.g. “example.com”. |
include_subdomains | boolean | no | Also include certs covering subdomains (default true) — this is what enables subdomain discovery. |
limit | number | no | Max certificates to list (1-100, default 30). The discovered-hostnames list is always complete. |
Example call
curl -X POST https://gateway.pipeworx.io/domains/mcp \
-H 'Content-Type: application/json' \
-d '{"jsonrpc":"2.0","id":1,"method":"tools/call","params":{"name":"certificate_search","arguments":{}}}'Connect
Add this to your MCP client config, or use one-click install buttons:
{
"mcpServers": {
"domains": {
"url": "https://gateway.pipeworx.io/domains/mcp"
}
}
}See Getting Started for client-specific install steps.