30
Medium Risk
2026-05-21 08:18:38
Security Issues Found
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
Recommendations
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡添加 SPF 记录防止邮件伪造
🌐Domain Info
Targetnalog.gov.ru
Registeredgov.ru
TLD.ru
🛡️Threat Intelligence (7 platforms)
BlacklistNot Blacklisted
Malware0
Phishing0
Abuse Score0/100
🐛Vulnerabilities Found (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Content-Security-Policy, Referrer-Policy, Permissions-Policy
Fix: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: nginx
Fix: 移除或修改 Server/X-Powered-By 响应头
🔌Open Ports (2)
80
http
443
https
🌐DNS Records
A: 37.220.164.100
MX: 10 eups.nalog.ru.
NS: ns3.nalog.ru.
NS: ns4.nalog.ru.
TXT: "sputnik-verification=P0lYAh47jtzuXP2U"
SOA: ns3.nalog.ru. defir_unixadmin.rt.ru. 2026042404 2880 600 2419200 1800
📋HTTP Headers
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=0; includeSubDomains
Server: nginx