50
High Risk
2026-05-21 06:23:52
Security Issues Found
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
Recommendations
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐Domain Info
Targetgatsbyjs.org
Registeredgatsbyjs.org
TLD.org
🛡️Threat Intelligence (7 platforms)
BlacklistNot Blacklisted
Malware0
Phishing0
Abuse Score0/100
🐛Vulnerabilities Found (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Content-Security-Policy, Permissions-Policy
Fix: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: Netlify
Fix: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /.git/config
Fix: 限制对这些路径的访问或添加认证
🔌Open Ports (2)
80
http
443
https
🌐DNS Records
A: 198.185.159.145
A: 198.185.159.144
A: 198.49.23.145
A: 198.49.23.144
MX: 5 alt2.aspmx.l.google.com.
MX: 1 aspmx.l.google.com.
MX: 10 alt4.aspmx.l.google.com.
MX: 5 alt1.aspmx.l.google.com.
MX: 10 alt3.aspmx.l.google.com.
NS: ns-cloud-d2.googledomains.com.
NS: ns-cloud-d3.googledomains.com.
NS: ns-cloud-d1.googledomains.com.
NS: ns-cloud-d4.googledomains.com.
TXT: "v=spf1 include:servers.mcsv.net include:spf.mandrillapp.com include:_spf.google.com ~all"
TXT: "google-site-verification=JcOcu9aR699PbkVLcPMqGIMbtQAjB3Qs0gF1qdkPEkk"
SOA: ns-cloud-d1.googledomains.com. cloud-dns-hostmaster.google.com. 89 21600 3600 259200 300
📋HTTP Headers
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Referrer-Policy: same-origin
Server: Netlify