English

网址安全检测平台

全面检测网站安全状态 · 漏洞扫描 · 威胁情报 · SSL 分析

首页 检测列表 评分机制
phorest.com
检测时间: 2026-05-21 01:59:25
重新检测
50
高风险
2026-05-21 01:59:25

发现的安全问题

  • ⚠️[LOW] 服务器信息泄露
  • ⚠️[HIGH] 敏感路径暴露
  • ⚠️[MEDIUM] 缺少 HTTP 安全头

修复建议

  • 💡添加 DMARC 记录增强邮件安全
  • 💡配置 Web 服务器添加这些安全头
  • 💡移除或修改 Server/X-Powered-By 响应头
  • 💡限制对这些路径的访问或添加认证

🌐域名信息

目标域名phorest.com
注册域名phorest.com
顶级域名.com

🛡️威胁情报 (7 platforms)

Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100

🐛发现的漏洞 (3)

MEDIUM缺少 HTTP 安全头
缺少以下安全头: Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: Apache, X-Powered-By: PHP/8.3.20
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env
修复建议: 限制对这些路径的访问或添加认证

🔌开放端口 (2)

80
http
443
https

🌐DNS 记录

A: 34.247.77.203
A: 54.76.47.114
A: 54.216.26.171
MX: 5 alt1.aspmx.l.google.com.
MX: 10 aspmx2.googlemail.com.
MX: 1 aspmx.l.google.com.
MX: 10 aspmx3.googlemail.com.
MX: 10 aspmx4.googlemail.com.
MX: 10 aspmx5.googlemail.com.
MX: 5 alt2.aspmx.l.google.com.
NS: ns-210.awsdns-26.com.
NS: ns-803.awsdns-36.net.
NS: ns-1500.awsdns-59.org.
NS: ns-1545.awsdns-01.co.uk.
TXT: "loom-verification=1582781177"
TXT: "apple-domain-verification=FzHJ4nAXEBDEVwjY"
TXT: "v=spf1 include:_spf.google.com include:amazonses.com include:spf.exclaimer.net include:_spf.elasticemail.com include:2245726.spf08.hubspotemail.net ~all"
TXT: "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCUoAeTmzEik20WADRVnrGw+18+B/yTi0XmoPq8Rx/fOR/FNsRrj6fBHr/p96lGLU4Sjvo97hMCyQu6YhmXe79T8GGkBVaxSnjDU8y1t9AnbSeDZckrY+EqCyMAcecsimM/uKpnmlF3ke0rxtLxS4XPRZzXVzXrJoxwEHatQF3GkwIDAQAB"
TXT: "google-site-verification=7goSqts_A2pyMiPJDPqB6lm7gXD_SuMPRnHLMQ3kQso"
TXT: "include:sendgrid.net include:spf.mandrillapp.com ~all"
TXT: "trusona=PoAxvDV1HdaHdvZPj42IlRVkT6lwp1Dft4j5B3XCWSTXxwy1j"
TXT: "notion-domain-verification=bwQgyzmoiZ7nnnAHPkWSlFYBFICbvYyl6l0RNsogXz8"
SOA: ns-803.awsdns-36.net. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400

📋HTTP 响应头

X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;
Content-Security-Policy: frame-ancestors 'self' https://support.phorest.com/ https://phorest1547654878.zendesk.com/ https://phorest.zendesk.com/
Server: Apache
X-Powered-By: PHP/8.3.20