Prism AI — ask any question about a domain, IP, email setup, or SSL certificate. Prism AI runs the right tools across DomainScan's 50+ diagnostics in real time and synthesizes a complete answer.

A general AI assistant tells you what an SPF record is. Prism AI fetches yours, parses it, expands every include, counts your DNS lookups against the limit, cross-references your DMARC policy, checks whether your sending IPs are blacklisted, and tells you exactly why your mail is bouncing. Six things that make this possible:

Ask ChatGPT, Claude, or Gemini "why is my email going to spam?" — you'll get a thoughtful, well-written, mostly-correct overview of common causes (SPF, DKIM, DMARC, sender reputation, content). What you won't get: an actual check of YOUR SPF record, YOUR DMARC policy, or YOUR IP's blacklist status. The general AI doesn't have access to those tools. It can only tell you what to check; it can't check.

• General AI assistants are read-only on the live internet ChatGPT, Claude, and Gemini can describe SPF records, explain TLS handshakes, and walk you through DMARC alignment in detail. What they can't do is fetch the SPF record for your domain right now, parse it, expand its includes, count its DNS lookups, and tell you whether it's broken. Their knowledge is text-based; their access to the live network is limited or zero.
• Web search ≠ specialized diagnostics AI assistants with web search (Perplexity, ChatGPT browse mode, Gemini) can read what's been published about a topic. They can't run a TCP port scan, traceroute, JWT signature verification, or recursive SPF expansion. Web search retrieves text; diagnostics retrieve current state.
• Hallucination is worst on technical specifics Generic AI hallucinates network data confidently. Asked about a specific domain's DNS records, IP geolocation, or SSL certificate, it will produce a plausible-sounding answer that's often wrong. The errors don't look like errors — which makes them dangerous when the answer drives real decisions.
• Tool selection is hard for non-experts Even with all 50+ DomainScan tools available, knowing WHICH tool to run for a given question is the bottleneck. "My emails are bouncing" could mean SPF, DKIM, DMARC, IP reputation, reverse DNS, TLS-RPT, MTA-STS, or any combination. Prism AI removes the meta-question: it knows which tools to run.
• Synthesis across tools is where insight lives Individual tools tell you facts. Five tools running together reveal patterns. An SPF record at 9/10 lookups is fine in isolation; the same record paired with a `p=reject` DMARC policy and IPs that are about to be added to a vendor's chain is a deliverability disaster waiting to happen. Prism AI sees the pattern.

Behind every Prism AI answer is a structured pipeline. You see the question and the answer; the right panel shows the middle steps. Here's what happens between them:

• Stage 1 — Intent recognition Prism AI parses your natural-language question into a structured intent: what entity is being analyzed (domain, IP, certificate, token), what aspect (security, deliverability, performance, validity), and what kind of answer you want (summary, comparison, deep-dive, fix recommendation).
• Stage 2 — Tool selection Given the intent, Prism AI selects from 50+ available tools. For "analyze my website security": SSL Info Lookup (TLS posture), Domain Security Headers (HSTS/CSP/etc.), Domain DMARC (email auth), DNS Lookup (zone integrity), IP Blacklist (reputation). For "why is my email bouncing": SPF, DKIM, DMARC, reverse DNS, IP blacklist. Tool selection is the heart of the agent.
• Stage 3 — Parameter resolution If your question lacks specifics, Prism AI asks for them — "Please tell me the domain name of the website you want me to analyze." If you've already given context (a previous turn mentioned the domain), it carries forward without re-asking.
• Stage 4 — Parallel tool execution Selected tools run in parallel where possible. Network-bound tools (DNS, blacklist, TLS handshakes) can run simultaneously; total wall-clock time is dominated by the slowest tool, not the sum. The right panel updates in real time so you can see progress as each tool returns.
• Stage 5 — Result synthesis Tool outputs are JSON — structured, detailed, often verbose. Prism AI reads all results, identifies the findings that matter, cross-references between tools (a low-trust SSL cert paired with a soft-fail SPF is a different story than either alone), and writes a coherent summary. Severity-ranking and what-to-fix-first ordering happen here.
• Stage 6 — Follow-up readiness The conversation state is preserved. Ask a follow-up — drill into one finding, compare to a different domain, or shift the lens ("what about email deliverability specifically?") — and Prism AI extends the analysis. Already-collected data is reused; new tools are called only when the new question requires data the existing tools didn't return.

Prism AI handles every diagnostic question DomainScan's 50+ tools can answer — and many that require multiple tools working together. Twelve recurring question types, with sample prompts you can paste directly:

Prism AI can invoke any of DomainScan's 50+ tools. Every tool is also available as a standalone page if you want to run it directly. Six categories:

• Domain intelligence WHOIS / RDAP Lookup (registration data, age, registrar, contacts), Domain Health (multi-signal aggregator), Domain Snapshot (visual screenshot capture), AI Readiness Check (AI crawler accessibility), Domain Reputation (multi-source trust scoring).
• DNS analysis DNS Lookup (all 25+ record types — A, AAAA, MX, TXT, SOA, NS, CAA, SRV, etc.), Reverse DNS, DNSSEC validator, DNS Propagation Check across global resolvers, Nameserver health and consistency.
• Email authentication SPF Checker (record validation, DNS lookup count, recursive include expansion), DKIM Checker (selectors, key strength), DMARC Checker (policy, alignment, reporting URIs), combined Email Authentication audit covering SPF + DKIM + DMARC + BIMI + ARC + MTA-STS.
• Security analysis SSL/TLS Info (certificate, chain, supported protocols, weak-protocol detection), Security Headers (HSTS, CSP, X-Frame-Options, Referrer-Policy, Permissions-Policy), IP Blacklist Check (50+ databases including Spamhaus, Barracuda, SORBS), Port Scanner, SSL chain validator.
• IP and network analysis My IP Lookup (your IP, geolocation, ASN, ISP), Reverse IP Lookup (domains hosted on an IP), Ping Test (multi-region latency), Traceroute, IP Geolocation, ASN Lookup, BGP routing inspection.
• Developer utilities Hash Generator (MD5, SHA-2 family, SHA-3 family, BLAKE2, RIPEMD-160), UUID Generator (v1/v3/v4/v5/v7), JWT Decoder (header, payload, signature verification), Base64 / Base32 / Base58 encoder-decoders, URL encoder, JSON formatter.

Four concrete examples — the kind of multi-turn conversation that demonstrates what Prism AI does that simpler tools can't:

• Conversation 1 — Website security audit User: "Analyze the security of x.com." → Prism AI runs SSL Info (Let's Encrypt cert, TLS 1.3 enabled, but TLS 1.0/1.1 also enabled — flag), Domain Security Headers (HSTS yes, CSP yes, X-Frame-Options yes, X-XSS-Protection missing — flag), Domain DMARC (`p=reject` — strong), DNS Lookup, IP Blacklist (clean). Returns: "Good security posture overall. Two minor issues: deprecated TLS 1.0/1.1 should be disabled, X-XSS-Protection header missing."
• Conversation 2 — Email deliverability investigation User: "My emails to gmail.com are going to spam. Domain is acme.com." → Prism AI runs SPF Checker (9/10 DNS lookups — flag, approaching limit), DKIM Checker (selector missing for transactional sender — flag), DMARC Checker (`p=none` — too permissive given the SPF risk), IP Blacklist (one IP on Spamhaus PBL — flag), Reverse DNS (mismatch — flag). Returns prioritized fix list: "Three blockers identified. First, fix DMARC alignment. Second, get IP 192.0.2.5 delisted from Spamhaus. Third, reduce SPF lookups before adding any more vendors."
• Conversation 3 — Suspicious email investigation User: "Investigate the domain paypa1.com — I got a phishing email from it." → Prism AI runs WHOIS (registered 3 days ago — high red flag), DNS (MX records present, A record points to known phishing hosting), SSL Info (Let's Encrypt cert issued yesterday — consistent with new-domain pattern), Security Headers (none — typical of phishing sites), Blacklist (already on URIBL). Returns: "High-confidence phishing domain. Registered Nov 18, 2025. Same hosting infrastructure as 4 other recent phishing sites. Recommend reporting to PayPal abuse and your email provider's threat intelligence team."
• Conversation 4 — Multi-domain comparison and drill-down User: "Compare cloudflare.com and akamai.com on email security." → Prism AI runs SPF + DKIM + DMARC for both, returns side-by-side. User follow-up: "Why does Cloudflare have only 4 DNS lookups while Akamai has 8?" → Prism AI doesn't re-run tools; it reuses the already-collected SPF expansion data and explains the include-chain difference. Context preservation is what makes the follow-up fast.

Prism AI doesn't replace general AI assistants or specialized network tools — it fills a gap between them. Honest comparison of where each one belongs:

• ChatGPT, Claude, Gemini — general AI assistants Excellent at explaining concepts, writing code, drafting text, reasoning over information you provide. Cannot fetch live network data, run TCP scans, perform recursive DNS lookups, or verify SSL certificates. Use them for: learning how SPF works conceptually. Use Prism AI for: checking whether your SPF record is configured correctly right now.
• Perplexity, ChatGPT browse, Gemini with search — AI with web access Can read what's been published on the public web about a domain or topic. Cannot run specialized diagnostic protocols (TLS handshakes, port scans, recursive SPF expansion, JWT signature verification). Use them for: finding articles about a CVE. Use Prism AI for: checking whether your server is affected by it.
• MxToolbox, dnschecker.org, SSL Labs — specialized network tools Highly capable in their specific domains (MxToolbox for email auth, SSL Labs for TLS, dnschecker for DNS). Each tool requires you to know which one to use, run it manually, and synthesize across them yourself. Use them for: deep dive on a single problem you've already identified. Use Prism AI for: getting from "something's wrong" to "here's exactly what's wrong" without knowing which tool to start with.
• SecurityTrails, Censys, Shodan — enterprise intelligence platforms Large datasets, historical data, attack-surface mapping. Expensive (typically $hundreds/month minimum) and oriented toward security teams. Use them for: continuous monitoring, historical lookups, mass-domain analysis. Use Prism AI for: ad-hoc investigation of specific domains with synthesis included.
• Custom scripts and CLI tools — dig, nmap, openssl, curl Maximum flexibility and precision. Requires knowledge of each tool, parsing of output, and manual synthesis. Use them for: scripted automation, repeated workflows, deep customization. Use Prism AI for: one-off investigations where the question is fuzzy and the answer needs to be coherent.
• Where Prism AI fits Between general AI (no live data, no specialized tools) and specialized network tools (no synthesis, no natural language). The sweet spot: when you have a question expressible in plain English about specific domains/IPs/tokens, and you want an answer backed by real diagnostic data and pre-synthesized into actionable findings.

Most AI agents are black boxes. You ask a question, the agent works on it, you get an answer — and you have no idea what data the answer is based on, whether the right tools ran, or how to verify any specific claim. Prism AI is built the opposite way. Every action is visible in real time:

• Every tool call is shown The right panel lists every tool Prism AI invoked: name, description, execution time, status (green check = success, red x = failure). Five tools running in parallel for a security audit: you see all five start, see each one return, and see the total wall-clock time.
• Per-tool execution time Each tool shows its own timing — SSL Info Lookup: 117ms, Domain Security Headers: 512ms, DMARC: 4ms, DNS: 3ms, IP Blacklist: 421ms. Bottlenecks are obvious; you can tell which tool slowed down a multi-tool query.
• Click to inspect raw results Every completed tool exposes a 'View Full' link. The raw JSON output is exactly what the underlying API returned — the same data you'd get hitting the API directly. No filtering, no editing, no hidden assumptions. You can audit any conclusion Prism AI drew by inspecting the data it drew it from.
• Execution history Switch from 'Current' to 'History' to see the entire chain of tools called across the conversation — including ones from earlier turns. Useful for understanding why a follow-up answer used certain reasoning, or for sharing a complete investigation trail with a teammate.
• Why this matters Black-box AI agents are dangerous for high-stakes decisions. If Prism AI tells you your domain is compromised or your TLS is broken, you should be able to verify exactly what evidence supports that claim. The transparency layer makes the entire reasoning chain auditable — which is the difference between AI that earns trust over time and AI you have to second-guess every time.

Prism AI works on any plain-English question, but a few patterns consistently produce better answers. Six things that move quality up:

• Lead with the domain or IP "Analyze cloudflare.com" is faster than "Can you analyze a domain for me?" — Prism AI doesn't have to ask a clarifying question. If you're investigating something specific, name it up front.
• State your goal, not just the topic "Check the security of acme.com" gets a general audit. "Why are my emails to gmail.com going to spam? Domain is acme.com" gets a focused deliverability investigation with prioritized fixes. The more Prism AI knows about why you're asking, the better the answer gets shaped.
• Ask 'why' to trigger deeper analysis "What's my SPF record?" returns the record. "Why is my SPF record failing?" triggers a multi-tool investigation: parsing, lookup counting, recursive include expansion, cross-reference with DMARC and DKIM. 'Why' questions get multi-tool answers; 'what' questions often get single-tool answers.
• Use follow-ups for drill-down After a multi-tool audit, you can ask: "Drill into the SSL findings." or "What should I fix first?" or "Compare to cloudflare.com." Each follow-up extends the analysis; you don't need to restart the conversation with a new full prompt.
• Comparisons work well "Compare email security between example.com and competitor.com." "Is my DNS setup better or worse than my biggest competitor?" Multi-domain queries run tools across both and produce side-by-side analysis — useful for benchmarking and for catching gaps in your own setup that peers don't have.
• Paste tokens and records directly "Decode this JWT: eyJ..." or "Validate this SPF record: v=spf1 ..." works as well as "check the JWT for example.com." Prism AI handles both pasted artifacts and references-by-domain interchangeably.

Prism AI's conversational interface is available as a streaming JSON API for embedding in your own tools, runbooks, security automations, or chat platforms. The agent handles tool selection, parallel execution, and synthesis on its end; your code sends a question and receives the answer plus the trail of tool invocations.

// Single-turn query
const res = await fetch('https://api.domainscan.in/v1/prism/chat', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    message: 'Analyze the security of stripe.com',
    stream: false
  })
});
const data = await res.json();

console.log(data.answer);          // synthesized text answer
console.log(data.toolsUsed);       // [{ name: 'ssl_info_lookup', durationMs: 117 }, ...]
console.log(data.toolResults);     // raw outputs from each tool, keyed by tool name

// Multi-turn conversation — pass a conversationId to preserve context
const res1 = await fetch('https://api.domainscan.in/v1/prism/chat', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    message: 'Analyze cloudflare.com security'
  })
}).then(r => r.json());

const res2 = await fetch('https://api.domainscan.in/v1/prism/chat', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    message:        'Now compare it with akamai.com',
    conversationId: res1.conversationId    // reuse context
  })
}).then(r => r.json());

console.log(res2.answer);  // comparison reuses cloudflare data from turn 1

// Streaming response — useful for chat UIs
const stream = await fetch('https://api.domainscan.in/v1/prism/chat', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    message: 'Why is my email going to spam? Domain: acme.com',
    stream:  true
  })
});
const reader = stream.body.getReader();
const decoder = new TextDecoder();
while (true) {
  const { value, done } = await reader.read();
  if (done) break;
  const events = decoder.decode(value).split('\n\n').filter(Boolean);
  for (const event of events) {
    const data = JSON.parse(event.replace(/^data: /, ''));
    // events: { type: 'tool_start', tool: 'spf_check' }
    // events: { type: 'tool_complete', tool: 'spf_check', durationMs: 234 }
    // events: { type: 'token', delta: 'Your SPF record has...' }
    // events: { type: 'done', toolsUsed: [...] }
    console.log(data);
  }
}

{
  "success":         "boolean",
  "conversationId":  "string (UUID — pass back to preserve context)",
  "answer":          "string (Prism AI's synthesized response)",

  "toolsUsed": [
    {
      "name":        "string (e.g. 'ssl_info_lookup', 'spf_check')",
      "description": "string (human-readable description)",
      "durationMs":  "number",
      "status":      "completed | failed",
      "error":       "string | null"
    }
  ],

  "toolResults": {
    "<tool_name>": "object (the raw JSON output from each tool)"
  },

  "totalDurationMs": "number (wall-clock time for the full response)"
}

// Request body
{
  "message":        "string (required — the user's question)",
  "conversationId": "string (optional — pass to continue a previous conversation)",
  "stream":         "boolean (optional — defaults to false)"
}

• What's the difference between Prism AI and ChatGPT? ChatGPT is a general-purpose AI assistant — excellent at explaining concepts, writing, reasoning over information you provide. It can't fetch live network data (run an SPF check, verify a TLS certificate, scan ports, look up a WHOIS record). Prism AI is purpose-built for domain, network, and security analysis: it has 50+ specialized diagnostic tools and uses them automatically based on your question. Use ChatGPT to learn how SPF works; use Prism AI to check whether your SPF is broken right now.
• Is Prism AI free to use? Yes. No account, no signup, no rate limit visible to typical users. Heavy programmatic usage of the API may eventually be rate-limited per IP, but the chat interface itself is free for ad-hoc investigation.
• Does Prism AI hallucinate or make up data? Prism AI's answers are grounded in real tool execution — the SSL data comes from an actual TLS handshake, the WHOIS data from an actual RDAP/WHOIS lookup, the SPF analysis from an actual recursive expansion. Every claim about specific data points (your cert expires on X, your SPF has Y lookups) is backed by a tool call you can inspect. The summary layer can occasionally misweight findings or miss nuance — but the underlying data is real, not hallucinated.
• How many tools does Prism AI have access to? 50+ at the time of writing — covering domain intelligence, DNS, email authentication, security analysis, IP/network diagnostics, and developer utilities. New tools are added regularly; each new tool on the DomainScan platform becomes automatically available to Prism AI.
• Why does Prism AI take 5–30 seconds to respond? Complex questions trigger multiple tools, each making real network calls. "Analyze website security" in the screenshot took ~22 seconds and ran 5 tools in parallel. Wall-clock time is dominated by the slowest tool (often the blacklist check across multiple databases). Simple questions answer in 1–3 seconds; deep audits take 10–30 seconds. The right panel shows progress as each tool returns.
• Can I see exactly what tools Prism AI used? Yes — the right panel ('Tool Execution') lists every tool invoked with name, description, status, and timing. Click 'View Full' on any tool to see the raw JSON output. Switch to 'History' to see tools from earlier conversation turns. Full transparency is built in.
• Can Prism AI handle multi-domain comparisons? Yes — "Compare security between cloudflare.com and akamai.com" runs the relevant tools on both domains and produces a side-by-side analysis. Useful for competitive benchmarking, M&A due diligence, and identifying gaps in your own setup that peers have closed.
• Is my data sent anywhere private? Prism AI uses LLM-powered tool selection and synthesis, which means your questions are processed by an AI model. The domains, IPs, and other inputs you analyze are sent to public diagnostic services (DNS resolvers, certificate transparency logs, blacklist databases). Don't paste secrets (HMAC keys, private API keys) into Prism AI. For privacy-sensitive token decoding and hash generation, use the standalone tools — those run client-side in your browser via the Web Crypto API.