50
高风险
2026-05-21 02:36:58
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐域名信息
目标域名getapp.com
注册域名getapp.com
顶级域名.com
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env
修复建议: 限制对这些路径的访问或添加认证
🔌开放端口 (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS 记录
A: 172.64.146.187
A: 104.18.41.69
AAAA: 2a06:98c1:3109::6812:2945
AAAA: 2606:4700:4405::ac40:92bb
MX: 10 aspmx.l.google.com.
NS: evan.ns.cloudflare.com.
NS: raphaela.ns.cloudflare.com.
TXT: "amazonses:mxjTENyntMpIzgQPEAoabX32uQUH3pl8xxnCs+YENpA="
TXT: "facebook-domain-verification=2vfeyxthhscduorcoa6o97lnrwc6jc"
TXT: "google-site-verification=QrFVJUJtRSH_pnjOfznFNnOE7exW4WVhoji7uuRy8dc"
TXT: "google-site-verification=TzecOc8OKHv0ITuSnmbLRB05QXrTBeOkz3riQfdgNJk"
TXT: "google-site-verification=aYnt-4BlCu1iHSbkpLNZSIhsHU6yy_iDLqgp782HDgU"
TXT: "google-site-verification=hsDMvEqxU3itsCjsHwKQ5FtDfMZ4n_W3k4cbvvwJAoI"
TXT: "v=spf1 include:_spf.google.com include:fdspfus.freshemail.io include:sendgrid.net ~all"
SOA: evan.ns.cloudflare.com. dns.cloudflare.com. 2404344691 10000 2400 604800 1800
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Server: cloudflare