25
低风险
2026-05-21 07:29:03
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名webmail-seguro.com.br
注册域名webmail-seguro.com.br
顶级域名.com.br
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-Frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: nginx
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 186.202.140.214
A: 186.202.140.204
AAAA: 2804:218:e3a1::2:201
AAAA: 2804:218:e3a1::2:203
MX: 10 mx.b.locaweb.com.br.
MX: 10 mx.jk.locaweb.com.br.
MX: 20 mx.a.locaweb.com.br.
MX: 10 mx.core.locaweb.com.br.
NS: ns3.locaweb.com.br.
NS: ns2.locaweb.com.br.
NS: ns1.locaweb.com.br.
TXT: "google-site-verification=SoojOKBgI88nD4A-ZhiN6Sb80chdlPz1tFnoppMad9U"
TXT: "google-site-verification=OM5MDmA_17YGCd9-JdFYKvbyvM9JmrBLVXoelCNQvZA"
TXT: "_globalsign-domain-verification=JCi_3kECVaVhS9jGKm5F6B8UFsfvirsqKDvWyhjWDR"
TXT: "v=spf1 include:_spf.locaweb.com.br -all"
SOA: ns1.locaweb.com.br. hostmaster.locaweb.com.br. 2023112201 3600 600 1209600 3600
📋HTTP 响应头
Server: nginx