25
低风险
2026-05-21 04:43:26
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名hightail.com
注册域名hightail.com
顶级域名.com
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: X-Powered-By: Express
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 54.244.195.185
A: 54.187.118.159
A: 44.235.204.23
MX: 10 mxa-00102601.gslb.pphosted.com.
MX: 10 mxb-00102601.gslb.pphosted.com.
NS: ns-1200.awsdns-22.org.
NS: ns-1753.awsdns-27.co.uk.
NS: ns-381.awsdns-47.com.
NS: ns-727.awsdns-26.net.
TXT: "google-site-verification=Atmgx99yQ1558yWMJUK5ldkTvt0biUTZp7ED34E_0SU"
TXT: "google-site-verification=B7Vrz-PIVFcpXP-9VPxi0WgMAOm0-r4zLRruvmkdOgc"
TXT: "v=spf1 a:mail.authsmtp.com include:mktomail.com include:sendgrid.net include:spf.protection.outlook.com ~all"
SOA: ns-381.awsdns-47.com. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400
📋HTTP 响应头
X-Frame-Options: ALLOW-FROM https://hightail.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: object-src 'self' https://hightail.com;base-uri 'self';img-src https: http: blob: data:; frame-src https://* https://www
Referrer-Policy: no-referrer
X-Powered-By: Express