25
低风险
2026-05-21 02:59:03
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名civicuk.com
注册域名civicuk.com
顶级域名.com
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Content-Security-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: w3c
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 80.75.66.241
AAAA: 2001:1b40:e200::1b:241
MX: 10 mail.civiccomputing.com.
NS: ns2.civiccomputing.com.
NS: ns0.civiccomputing.com.
NS: ns3.civiccomputing.com.
NS: ns1.civiccomputing.com.
TXT: "google-site-verification=av3d3CH2A_cXDibAaz3E9Lfp7NULuniyOoLdhZ0w4qI"
TXT: "atlassian-domain-verification=OUxQleiHtiz6pptlofS1yiJcNaoTZCRalY4n2W1mChwTvg0bKOR4XYdK9OaebVrS"
TXT: "google-site-verification=CJNnQpmJlF0ccNOe3RLMVUE7Roop7ZbNL6aDanRt8qQ"
TXT: "MS=ms40129902"
TXT: "stripe-verification=7fe853dc02d83af06f91989d2463e0b932322e46e3760e6cd808a8c54038bf27"
TXT: "MS=D57062C601BB701BCC1F89D6340567F3D7FBCB12"
TXT: "google-site-verification=LYj6IWk_umnxcDQPAdAwQkTaJSIGLwAAZ6HowWw095M"
TXT: "v=spf1 ip4:80.75.66.128/25 ip4:80.75.70.128/26 ip6:2001:470:6e0a::/64 ip6:2001:1b40:e200::/48 a mx include:_spf.google.com -all"
SOA: ns0.civicuk.com. hostmaster.civiccomputing.com. 2026051804 3600 7200 604800 1200
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Referrer-Policy: strict-origin-when-cross-origin
Server: w3c