中文

Website Security Scanner

Comprehensive security check · Vulnerability scan · Threat intel · SSL analysis

Home Scan List Scoring
creative-tim.com
Scan Time: 2026-05-21 05:08:53
Re-scan
45
Medium Risk
2026-05-21 05:08:53

Security Issues Found

  • ⚠️[LOW] 服务器信息泄露
  • ⚠️[HIGH] 敏感路径暴露
  • ⚠️[MEDIUM] 缺少 HTTP 安全头

Recommendations

  • 💡配置 Web 服务器添加这些安全头
  • 💡移除或修改 Server/X-Powered-By 响应头
  • 💡限制对这些路径的访问或添加认证

🌐Domain Info

Targetcreative-tim.com
Registeredcreative-tim.com
TLD.com

🛡️Threat Intelligence (7 platforms)

BlacklistNot Blacklisted
Malware0
Phishing0
Abuse Score0/100

🐛Vulnerabilities Found (3)

MEDIUM缺少 HTTP 安全头
缺少以下安全头: Content-Security-Policy, Permissions-Policy
Fix: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
Fix: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /.git/config
Fix: 限制对这些路径的访问或添加认证

🔌Open Ports (4)

80
http
443
https
8080
unknown
8443
unknown

🌐DNS Records

A: 172.67.69.164
A: 104.26.12.28
A: 104.26.13.28
AAAA: 2606:4700:20::681a:c1c
AAAA: 2606:4700:20::681a:d1c
AAAA: 2606:4700:20::ac43:45a4
MX: 1 aspmx.l.google.com.
MX: 10 aspmx2.googlemail.com.
MX: 10 aspmx3.googlemail.com.
MX: 10 inbound-smtp.us-east-1.amazonaws.com.
MX: 5 alt1.aspmx.l.google.com.
MX: 5 alt2.aspmx.l.google.com.
NS: gabe.ns.cloudflare.com.
NS: pam.ns.cloudflare.com.
TXT: "NETORGFT982129.onmicrosoft.com"
TXT: "ahrefs-site-verification_5984af477671a61790769fe7324f44ee4894e1c5b8d19e1fd7467d2afa97a339"
TXT: "amazonses:9UGkLO+JIWtwDbqq03ampThGd3u3iAKWW7oWX+Fns2s="
TXT: "brevo-code:77cad8f0a141cd67d215177e88327101"
TXT: "facebook-domain-verification=68w9z42os16jqboxfnwami28hd1vm4"
TXT: "google-site-verification=2z1IRldteeJBw1wkCm6aA_zpijF4xdOBDbZrh3AIMYI"
TXT: "google-site-verification=5xOLjutsN9ZCIZpbw22acbI241CuyFVmJMsUrw5lqIA"
TXT: "google-site-verification=dge1u9dDapxAeBBxj3kkSlEflXX6VGS0WzWjZn-8oAg"
TXT: "google-site-verification=mS96gc0dzUoC9DIL3MUk92PW5STwOQjJpMXUlPYyQNU"
TXT: "google-site-verification=wBOZJTTLTGR1QF2lyryaUIy9evHD5LJeAVH1Ik5POn4"
TXT: "openai-domain-verification=dv-QmwB7X4SfyGlfcZAo7A2ynjZ"
TXT: "openai-domain-verification=dv-jp8lsMnRIJGAtrp1sj13XuLf"
TXT: "v=DMARC1;p=none;rua=mailto:dmarc@sendgrid.com;ruf=mailto:dmarc@sendgrid.com;rf=afrf;pct=100"
TXT: "v=spf1 include:_spf.google.com include:mail.zendesk.com include:amazonses.com ~all"
SOA: gabe.ns.cloudflare.com. dns.cloudflare.com. 2404322128 10000 2400 604800 1800

📋HTTP Headers

X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains
Referrer-Policy: strict-origin-when-cross-origin
Server: cloudflare