50
高风险
2026-05-21 03:17:45
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐域名信息
目标域名forge12.com
注册域名forge12.com
顶级域名.com
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /.git/config, /admin, /phpmyadmin, /wp-admin, /api
修复建议: 限制对这些路径的访问或添加认证
🔌开放端口 (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS 记录
A: 172.67.68.129
A: 104.26.12.233
A: 104.26.13.233
AAAA: 2606:4700:20::681a:ce9
AAAA: 2606:4700:20::ac43:4481
AAAA: 2606:4700:20::681a:de9
MX: 10 mail.forge12.com.
NS: evangeline.ns.cloudflare.com.
NS: tom.ns.cloudflare.com.
TXT: "MS=ms73478262"
TXT: "seobility=0314cb26d60982d6b1d20169e96d9de0"
TXT: "brevo-code:5eb497538c440d0849f795b19e865582"
TXT: "google-site-verification=2wWT6TstCPLkF3-XaKIRP_ZowOkepdEdEJ0H0yrYP4w"
TXT: "v=spf1 ip4:85.214.243.240 ip4:85.214.228.11 ip4:37.24.143.253 ip4:81.169.173.127 ip4:209.85.221.201 ip4:85.214.83.167 ip4:78.46.17.98 include:spf.protection.outlook.com -all"
TXT: "MS=ms90042833"
TXT: "silentchat-verify=8b83df39-6b44-423f-bdc3-17434cd9d2db"
SOA: evangeline.ns.cloudflare.com. dns.cloudflare.com. 2404747704 10000 2400 604800 1800
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Server: cloudflare