25
低风险
2026-05-21 03:13:26
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名fatf-gafi.org
注册域名fatf-gafi.org
顶级域名.org
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection, Strict-Transport-Security
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 151.101.131.10
A: 151.101.3.10
A: 151.101.67.10
A: 151.101.195.10
MX: 10 fatfgafi-org01b.mail.protection.outlook.com.
NS: ns1-03.azure-dns.com.
NS: ns4-03.azure-dns.info.
NS: ns2-03.azure-dns.net.
NS: ns3-03.azure-dns.org.
TXT: "v=spf1 ip4:78.41.128.0/22 include:spf.protection.outlook.com -all"
TXT: "adobe-idp-site-verification=fe3732a56cceead6122113a39f9385a693c3367314cdad48789e5cfbf77d5977"
TXT: "_s4e3veyy3qvk2fi060c6kp2wufpxrpg"
TXT: "lTkRjAqlT6hBnNFs/lwbO6frA2yzUWLnqTy2O028R1jXXUGgninlTDaW+778cNp2ntuJoVyC0C+L6jL9auRJ/w=="
TXT: "_uq9ur8dhn3fj9vs5jm09alo1pnivn5i"
TXT: "docusign=d3629c80-2125-422b-bd5b-466f0d13fe48"
TXT: "MS=ms25436120"
TXT: "dxmyyrdjqmbgxs60dc98rrz041q5md5p"
TXT: "docusign=31abf889-4b59-42fd-96ce-d222290e5da4"
SOA: ns1-03.azure-dns.com. hostmaster.oecd.org. 2023011806 21600 3600 604800 86400
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'none'; script-src 'nonce-VbIUKdVAla9Yg3p9FFZLah' 'unsafe-eval' https://challenges.cloudflare.com; script-sr
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),in
Server: cloudflare