45
中风险
2026-05-21 06:43:40
发现的安全问题
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡限制对这些路径的访问或添加认证
🌐域名信息
目标域名santander.com.br
注册域名santander.com.br
顶级域名.com.br
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-Frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /admin, /phpmyadmin, /wp-admin, /api
修复建议: 限制对这些路径的访问或添加认证
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 23.35.148.136
A: 23.35.148.178
MX: 90 mx2.santandergroup.c3s2.iphmx.com.
MX: 10 mx2.hc6154-33.iphmx.com.
MX: 50 mx1.hc5532-55.iphmx.com.
MX: 90 mx1.santandergroup.c3s2.iphmx.com.
MX: 10 mx1.hc6154-33.iphmx.com.
MX: 50 mx2.hc5532-55.iphmx.com.
NS: asia1.akam.net.
NS: ns1-115.akam.net.
NS: ns1.santander.com.br.
NS: usw1.akam.net.
NS: ns2.santander.com.br.
NS: ns1-104.akam.net.
NS: usw2.akam.net.
NS: eur5.akam.net.
NS: use4.akam.net.
NS: use5.akam.net.
NS: ns1-127.akam.net.
NS: use1.akam.net.
NS: asia2.akam.net.
NS: ns1-88.akam.net.
TXT: "Dynatrace-site-verification=1704fde6-fefe-402c-a1f2-5b777971def8__ispcttacfftvcb0frlnbnfb07i"
TXT: "_56kejmc41bda7dns5yixzo3mij3c3vo"
TXT: "MS=ms60307866"
TXT: "atlassian-domain-verification=tMjCuC0565lJoomyho8otqjiS6wVB08AaMTT1tow02/SEFAdeRrCQDRhXb/THkMZ"
TXT: "Dynatrace-site-verification=f61349f7-499f-497d-bc26-9f6d2bf24424__cp0fi84063ghhi5qj7gtlhqio0"
TXT: "_kbouphf9lp5vk8tqfzlruzkm0btz9zq"
TXT: "atlassian-domain-verification=TFnmCsLwUj4y/ta3Let8OTUy/LAA0o444LEq1oIvcfzM1/BSJ5jdeeKEkTIkTy/x"
TXT: "Dynatrace-site-verification=5c059899-7e53-40e3-bea5-72c8f301ff23__k7ajm6ialc7ra8331kd5ju75mk"
TXT: "Dynatrace-site-verification=891e2c5d-5fcf-4e77-b4d3-f2593507e20e__2hqo12gr5962lh38c3l08jegd5"
TXT: "ibmid=38099f1a-91be-4cd5-b7cd-d8047207a844"
TXT: "globalsign-domain-verification=DAC241FDF007505424BF68185CA7715B"
TXT: "google-site-verification=mV0IIYRWjWPh9YmeA-7mZyZwD_0Wb4J_jPCEOoZryBE"
TXT: "Dynatrace-site-verification=8c92a42f-b71e-4373-a148-fc8e6be4b8b3__kuji401p9lovaoig672vd82gkp"
TXT: "docusign=57d85375-75ba-4dfb-97b1-2667fcc8c2b0"
TXT: "adobe-idp-site-verification=943233cacd112d22dc95a96c5177dbc452a3557c7479790d2b2b3f939de355e9"
TXT: "ZEv8+tQB2OSbHNxN7c9sHKhQB0C1xNpWh42sY7Egplr/bss4V/PbXkmx82PhT0UfUad8hSAR0IUyUzWVDVjIuQ=="
TXT: "_aemverification.stage-publish-aem.santander.com.br"
TXT: "yahoo-verification-key=hd8lrr9rtgkFd2pisBblyKfV0e9pIdIfFY4EIH3Cc2o="
TXT: "d12dda68acff6e0a57dac5a3d0ec322b"
TXT: "_aemverification.dev-publish-aem.santander.com.br"
TXT: "Dynatrace-site-verification=48289087-dd25-4c57-97e9-e4a6a49040cf__pf81noeda1hmo3mhuj28t62klu"
TXT: "v=spf1 exists:%{i}.spf.us.gruposantander.com exists:%{i}.spf.as.gruposantander.com include:spf-006ef803.pphosted.com include:spf-006ef805.pphosted.com -all"
TXT: "miro-verification=33650d7b9155393260462651b5a25d0c9e484793"
TXT: "Dynatrace-site-verification=13e34536-2d16-4c36-8fa7-4c508887f062__2gkomfecllftjtg2g2mhl8vlog"
TXT: "globalsign-domain-verification=d12dda68acff6e0a57dac5a3d0ec322b"
TXT: "Dynatrace-site-verification=06b560d4-358f-42c6-92fe-8f439936daed__v3r4q7jpd8dts3ifkajc3qf40q"
TXT: "1734589b-a2d4-4c19-8016-9164d8897570"
TXT: "_aemverification.prod-publish-aem.santander.com.br"
TXT: "google-site-verification=HQHtDz3BuXDg91fDQMsClIfsv83E-ABhc7H16tkzUAE"
TXT: "_pki-validation.santander.com.br"
TXT: "LzveCtHKDp8fUeuw/ZEOofuAq3V7e6AMsEcM61N1St8bBaDhq6sRwunmdcDSJhf93/OVH3/XUkCUOouKNzmd4g=="
SOA: ns2.santander.com.br. monitoracao.santander.com.br. 5100 10800 3600 2419200 900