25
低风险
2026-05-21 06:50:15
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名identitytheft.gov
注册域名identitytheft.gov
顶级域名.gov
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: CloudFront
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
https
443
https
🌐DNS 记录
A: 3.175.207.21
A: 3.175.207.59
A: 3.175.207.56
A: 3.175.207.14
MX: 10 identitytheft-gov.mail.protection.outlook.com.
NS: ns-239.awsdns-29.com.
NS: ns-722.awsdns-26.net.
NS: ns-1332.awsdns-38.org.
NS: ns-1738.awsdns-25.co.uk.
TXT: "MS=ms44020561"
TXT: "9pp8d17f59zvn349fybykycwh4d10sz9"
TXT: "_sm2bg0ioswre70j5cy95s67kge79sw0"
TXT: "v=spf1 ip4:205.130.212.0/23 ip4:207.123.150.0/24 ip4:207.123.152.0/24 ip6:2001:1900:2268::/47 ip4:34.204.247.90 ip4:34.206.93.229 ip4:35.163.160.186 ip4:35.162.81.16 include:spf.protection.outlook.com -all"
SOA: ns-1332.awsdns-38.org. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' htt
Referrer-Policy: strict-origin-when-cross-origin
Server: CloudFront