← Integrations

Domains / infra / threat-intel

Attack Surface

Live subdomains & exposed infrastructure for a domain

What you can ask

Who owns this domain and where is it hosted?

How old is this domain, and does anything look off about it?

What you can do with it

  • Map a domain's exposed attack surface with Attack Surface
  • Feed the result into a monitoring or triage workflow
  • Corroborate a threat lead with an independent source

Accepted search types

domain

Use it: no glue code, no server to host

// add to your agent's MCP config — one endpoint, all your sources.
// No key to paste: you authorize once via OAuth on first connect.
{
  "ahel": {
    "url": "https://mcp.ahel.ai"
  }
}

// your agent can now call:
search_domain(query: "stripe.com")

Or just ask your agent: What do we know about stripe.com?

Coverage: global