`check_url`

Pack: phishtank · Endpoint: https://gateway.pipeworx.io/phishtank/mcp

Check if a URL is a known phishing site in the PhishTank database. Returns whether it is a phish, verification status, and details URL. Example: check_url(“http://suspicious-site.example.com/login”).

Parameters

Name	Type	Required	Description
`url`	string	yes	The full URL to check for phishing (e.g., “http://example.com/fake-login”)

Example call

Arguments

{
  "url": "http://suspicious-site.example.com/login"
}

curl

curl -X POST https://gateway.pipeworx.io/phishtank/mcp \
  -H 'Content-Type: application/json' \
  -d '{"jsonrpc":"2.0","id":1,"method":"tools/call","params":{"name":"check_url","arguments":{"url":"http://suspicious-site.example.com/login"}}}'

TypeScript (@pipeworx/sdk)

import { Pipeworx } from '@pipeworx/sdk';
const pipeworx = new Pipeworx();

const result = await pipeworx.call('check_url', {
  "url": "http://suspicious-site.example.com/login"
});

More examples

{
  "url": "https://paypal-verify.fraudulent-domain.com/account"
}

Response shape

Always returns: url, in_database, is_phish, phish_id, detail_page, verified, verified_at, checked_at

Field	Type	Description
`url`	string	The URL that was checked
`in_database`	boolean	Whether the URL is in the PhishTank database
`is_phish`	boolean	Whether the URL is confirmed as a phishing site
`phish_id`	string \| null	PhishTank ID for the phishing entry, or null if not in database
`detail_page`	string \| null	URL to PhishTank detail page, or null if not in database
`verified`	boolean \| null	Whether the phishing entry has been verified, or null if unknown
`verified_at`	string \| null	Timestamp when the phishing entry was verified, or null if unverified
`checked_at`	string	ISO timestamp when the URL was checked by PhishTank API

Full JSON Schema

{
  "type": "object",
  "properties": {
    "url": {
      "type": "string",
      "description": "The URL that was checked"
    },
    "in_database": {
      "type": "boolean",
      "description": "Whether the URL is in the PhishTank database"
    },
    "is_phish": {
      "type": "boolean",
      "description": "Whether the URL is confirmed as a phishing site"
    },
    "phish_id": {
      "type": [
        "string",
        "null"
      ],
      "description": "PhishTank ID for the phishing entry, or null if not in database"
    },
    "detail_page": {
      "type": [
        "string",
        "null"
      ],
      "description": "URL to PhishTank detail page, or null if not in database"
    },
    "verified": {
      "type": [
        "boolean",
        "null"
      ],
      "description": "Whether the phishing entry has been verified, or null if unknown"
    },
    "verified_at": {
      "type": [
        "string",
        "null"
      ],
      "description": "Timestamp when the phishing entry was verified, or null if unverified"
    },
    "checked_at": {
      "type": "string",
      "description": "ISO timestamp when the URL was checked by PhishTank API"
    }
  },
  "required": [
    "url",
    "in_database",
    "is_phish",
    "phish_id",
    "detail_page",
    "verified",
    "verified_at",
    "checked_at"
  ]
}

Connect

Add this to your MCP client config, or use one-click install buttons:

{
  "mcpServers": {
    "phishtank": {
      "url": "https://gateway.pipeworx.io/phishtank/mcp"
    }
  }
}

See Getting Started for client-specific install steps.

check_url