中文

Website Security Scanner

Comprehensive security check · Vulnerability scan · Threat intel · SSL analysis

Home Scan List Scoring
brpo.gov.pl
Scan Time: 2026-05-21 04:49:21
Re-scan
72
Critical
2026-05-21 04:49:21

Security Issues Found

  • ⚠️被列入 1 个黑名单: AlienVault OTX
  • ⚠️[HIGH] 敏感路径暴露
  • ⚠️对外暴露了 3 个高风险服务端口
  • ⚠️[LOW] 服务器信息泄露
  • ⚠️[MEDIUM] 缺少 HTTP 安全头
  • ⚠️AlienVault OTX 有 2 个社区讨论(非直接威胁)

Recommendations

  • 💡限制对这些路径的访问或添加认证
  • 💡移除或修改 Server/X-Powered-By 响应头
  • 💡添加 DMARC 记录增强邮件安全
  • 💡配置 Web 服务器添加这些安全头
  • 💡申请从黑名单中移除,并修复安全问题
  • 💡使用防火墙限制对这些端口的访问

🌐Domain Info

Targetbrpo.gov.pl
Registeredbrpo.gov.pl
TLD.gov.pl

🛡️Threat Intelligence (7 platforms)

BlacklistAlienVault OTX
Malware2
Phishing0
Abuse Score0/100

🐛Vulnerabilities Found (3)

MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection, Strict-Transport-Security, Content-Security-Policy, Referrer-Policy, Permissions-Policy
Fix: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: nginx
Fix: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /.git/config
Fix: 限制对这些路径的访问或添加认证

🔌Open Ports (7)

21
ftp
80
http
443
https
3306
unknown
3389
unknown
8080
unknown
8443
unknown

🌐DNS Records

A: 45.60.74.15
AAAA: 2a02:e980:8f::f
MX: 10 brpo-gov-pl.mail.protection.outlook.com.
NS: ns1.a0.impervasecuredns.net.
NS: ns1.a1.impervasecuredns.net.
NS: ns1.a2.impervasecuredns.net.
TXT: "apple-domain-verification=Qk6McK14rp6gg1lT"
TXT: "MS=94D98F1EAB180E1C6F984F563D270F45A8702CF2"
TXT: "d365mktkey=dg2IgKIGUJo865iikXwkghAHmQNIKcs8u4oBByo47Fwx"
TXT: "d365mktkey=iWsiKCSsQTuHMBTsN5xByegXAGrCQx2BiLwpCEBPSB0x"
TXT: "globalsign-domain-verification=3EE85C895279AB9B98CA8F0BD26CCCBE"
TXT: "google-site-verification=B8AKjW4R3-H7nziYwp487IMsVZvsxVE-SCJNRL6ftXo"
TXT: "v=spf1 a mx ip4:178.73.58.238 ip4:157.25.40.202 ip4:178.73.58.226 include:spf.protection.outlook.com -all"
SOA: ns.brpo.gov.pl. postmaster.brpo.gov.pl. 2026051400 10800 3600 1209600 38400

📋HTTP Headers

X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Server: nginx