50
高风险
2026-05-21 02:27:06
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐域名信息
目标域名pydata.org
注册域名pydata.org
顶级域名.org
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-Frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare, X-Powered-By: WP Engine
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /.git/config
修复建议: 限制对这些路径的访问或添加认证
🔌开放端口 (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS 记录
A: 172.67.71.236
A: 104.26.1.204
A: 104.26.0.204
AAAA: 2606:4700:20::681a:1cc
AAAA: 2606:4700:20::ac43:47ec
AAAA: 2606:4700:20::681a:cc
MX: 1 aspmx.l.google.com.
MX: 10 alt3.aspmx.l.google.com.
MX: 10 alt4.aspmx.l.google.com.
MX: 5 alt1.aspmx.l.google.com.
MX: 5 alt2.aspmx.l.google.com.
NS: henry.ns.cloudflare.com.
NS: kristin.ns.cloudflare.com.
TXT: "ca3-cdf5f862483847feb4f5135b47fd2928"
TXT: "google-site-verification=UO6yURBZsU4LoK8EOC16aUUSAVUWeFECRVMsNTqsBTk"
TXT: "google-site-verification=X7yuHwqV8i-A-2Ax1WvwYWUcMzRp-Vy7HXBTdjOUmMU"
TXT: "google-site-verification=nWvV-casKHxl1hqp1OOxLP1URReKT2AiYoec-H8AeZc"
TXT: "google-site-verification=yOZqvk4x8W8tWJhUBMYVfo3G2DdBudDx4o3-6-sAYbo"
TXT: "v=spf1 include:_spf.google.com include:_spf.mlsend.com include:spf.happyfox.com ~all"
SOA: henry.ns.cloudflare.com. dns.cloudflare.com. 2404148035 10000 2400 604800 1800
📋HTTP 响应头
Server: cloudflare
X-Powered-By: WP Engine