50
高风险
2026-05-21 04:23:24
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐域名信息
目标域名annals.org
注册域名annals.org
顶级域名.org
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.git/config
修复建议: 限制对这些路径的访问或添加认证
🔌开放端口 (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS 记录
A: 172.66.43.196
A: 172.66.40.60
AAAA: 2606:4700:3108::ac42:2bc4
AAAA: 2606:4700:3108::ac42:283c
MX: 0 annals-org.mail.protection.outlook.com.
NS: lee.ns.cloudflare.com.
NS: rachel.ns.cloudflare.com.
TXT: "0be89e91-2c05-4e2a-8940-c6a2c7c93993"
TXT: "2d180a6212f64c1ca5355092579f2850"
TXT: "MS=ms39484452"
TXT: "a5b2c4bb-889a-4748-9b80-c47fd90d2cd8"
TXT: "google-site-verification=-ffXJHGUz17E3lEw46vD15nLLLHHH5A2otU1Nx4TnBE"
TXT: "google-site-verification=KKlixjc0ApOxFY_Wp8v2GmbK0zvSKjjsP7_0aj-lFS4"
TXT: "v=spf1 include:spf.protection.outlook.com include:_spf.emailcampaigns.net include:literatumonline.com mx -all"
TXT: "yahoo-verification-key=pmhbWPjbR29nrNsKCSk0d2bU41wKrUOXGTYCdoKwvic="
SOA: lee.ns.cloudflare.com. dns.cloudflare.com. 2400628456 10000 2400 604800 1800
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=2592000
Content-Security-Policy: default-src 'none'; script-src 'nonce-t7Fra3Cv1gULB3uKCGstak' 'unsafe-eval' https://challenges.cloudflare.com; script-sr
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),in
Server: cloudflare