25
Low Risk
2026-05-21 05:55:37
Security Issues Found
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
Recommendations
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐Domain Info
Targetnysenate.gov
Registerednysenate.gov
TLD.gov
🛡️Threat Intelligence (7 platforms)
BlacklistNot Blacklisted
Malware0
Phishing0
Abuse Score0/100
🐛Vulnerabilities Found (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection, Strict-Transport-Security
Fix: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
Fix: 移除或修改 Server/X-Powered-By 响应头
🔌Open Ports (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS Records
A: 185.178.196.254
AAAA: 2a0a:6c87::fe
MX: 10 nysenate-gov.mail.protection.outlook.com.
NS: ns-cloud-a1.googledomains.com.
NS: ns-cloud-a4.googledomains.com.
NS: ns-cloud-a3.googledomains.com.
NS: ns-cloud-a2.googledomains.com.
TXT: "v=spf1 exists:%{i}.spf.hc4490-64.iphmx.com ip4:167.89.81.93 ip4:198.163.154.98 ip4:198.163.154.94 include:sendgrid.net include:spf.protection.outlook.com ~all"
SOA: ns-cloud-a1.googledomains.com. cloud-dns-hostmaster.google.com. 2 21600 3600 259200 300
📋HTTP Headers
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'none'; script-src 'nonce-9HqCt8yq3o3kTRIhnJNAET' 'unsafe-eval' https://challenges.cloudflare.com; script-sr
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),in
Server: cloudflare