50
High Risk
2026-05-21 03:24:38
Security Issues Found
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
Recommendations
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐Domain Info
Targetcomptia.org
Registeredcomptia.org
TLD.org
🛡️Threat Intelligence (7 platforms)
BlacklistNot Blacklisted
Malware0
Phishing0
Abuse Score0/100
🐛Vulnerabilities Found (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Permissions-Policy
Fix: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
Fix: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /.git/config, /admin, /phpmyadmin, /wp-admin, /api
Fix: 限制对这些路径的访问或添加认证
🔌Open Ports (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS Records
A: 104.18.35.29
A: 172.64.152.227
AAAA: 2606:4700:4406::6812:231d
AAAA: 2a06:98c1:3102::ac40:98e3
MX: 3600 comptia-org.mail.protection.outlook.com.
NS: armando.ns.cloudflare.com.
NS: jade.ns.cloudflare.com.
TXT: "google-site-verification=LGlMC_JzZaWsyGXOTQvcCAYoI-8MNK10wZQuFcAHjto"
TXT: "202202071623420mbf7q0wqcmfcvfoh5hq9qgtawb2oielgaaiynmle9e9m1q84s"
TXT: "google-site-verification=wsVzj68HGYA3tUamDEwXUoqrpL9kS2CR-YINEk5xBBc"
TXT: "atlassian-domain-verification=/YeProGwccm1twPngg9XiSxTiXKgeLWBuJ0G5CSB0aVfafDGiExRNQ41fOlffDI1"
TXT: "d365mktkey=1dk8d31zhcxjvlzcvnk4xpurg"
TXT: "_8508ix3urkcokct0wldtlc5cokwu7vw"
TXT: "cursor-domain-verification-4s3t0r=COmTguHEczjZIcmC9RhkBw5MR"
TXT: "duo_sso_verification=uDnNKVdgFxfbY32ipq8wH03FPxYK3cryfLOtnd0ARQ9zCcC7LiexioQNWPMac6GD"
TXT: "v=spf1 mx a:mail.certmetrics.com include:spf.protection.outlook.com include:_spf.alchemer.com include:spf.sendinblue.com include:mail.zendesk.com include:mozu.com include:nam.pb-dynmktg.com ip4:168.245.44.103 include:_spf_uswest2.prod.hydra.sophos.com ~al" "l"
TXT: "d365mktkey=uzh7aZHK2wTQAN5NYqjKZCE6PTi5IxJHWfixZ50ounox"
TXT: "docusign=225cd46b-2a31-4ca4-bd8e-9a412949158f"
TXT: "google-site-verification=6whfnd04gfRPk1zaOFZGFQ_V19lqbUZZ90pP5GfpdYs"
TXT: "202301301641301os60224kud5sojaep7q8wr7igdasl4rfcwta3kytg2otwlxth"
TXT: "pendo-domain-verification=R06OdxL6IpiV8r_mxWAJOa-dUBA"
TXT: "slack-domain-verification=HrIb0Vcqn4MscKfEpaOVQEw7PcOnbxV5lF0K5JxB"
TXT: "google-site-verification=km7XLGuXwAX3yLyEFfsiyxcYZfbAsteX12j_U34kHE8"
TXT: "miro-verification=f4fc4824207740c0fbd561595b153125fc736c58"
TXT: "_oqg5hkchjjdhf77z8irk7hzat83dwnz"
TXT: "sophos-domain-verification=7d9c175ed36647f746b2024fbf80a8253d97140cec8a6a1161609b5a326085fb"
TXT: "google-site-verification=3CECmSJGNJcROJfo-1rYJRlxhlGXWKc_r9wkBWYw9ToGoogle Tenant - Product Dev for sharing GDRIVE"
TXT: "gc-ai-domain-verification-arz9sc=0DdSPiIdVBQGuvJNh3JxhxYcD"
TXT: "asv=3fc9d84b440889a254c7ab0c7be2b9a8"
TXT: "zapier-domain-verification-challenge=2d8eae37-4037-422d-8ec1-3b1d486c78df"
TXT: "brevo-code:af62832f46a8dab3da669fd968624b72"
TXT: "d365mktkey=tLu4fSCN8zGYNJi9NYXiJz3QvtkWMQf1wH17tZvzNpIx"
TXT: "google-site-verification=a1ZXa31HQ4_WoT6pRA0SOJV-LX6U_Ep-HOxI-mEL26o"
TXT: "google-site-verification=9pfBCKJDs1Ku1SAhCoqLLonO2fr_ZLw5dmbcjF9ph1U"
TXT: "canva-site-verification=w1cWSdPQHhbJ-z5rOpphAQ"
TXT: "atlassian-domain-verification=rLU6JTmRJr0Kf8gX1VxFK1JPkzC3iLjJpEjcvqO+alhZdju8DDNL+IbbLfuUraE5"
TXT: "anthropic-domain-verification-ch9jve=mqCxGHD12CYRLx1ebSfyNNdTk"
TXT: "lovable_verification=IEEpKWktDcrdKFzPGBeZ"
SOA: armando.ns.cloudflare.com. dns.cloudflare.com. 2403886676 10000 2400 604800 1800
📋HTTP Headers
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Server: cloudflare