50
高风险
2026-05-21 04:47:59
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐域名信息
目标域名coachingfederation.org
注册域名coachingfederation.org
顶级域名.org
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-Frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env, /.git/config, /admin, /phpmyadmin, /wp-admin, /api
修复建议: 限制对这些路径的访问或添加认证
🔌开放端口 (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS 记录
A: 162.159.135.42
MX: 0 coachingfederation-org.mail.protection.outlook.com.
NS: ns49.domaincontrol.com.
NS: ns50.domaincontrol.com.
TXT: "v=spf1 MX include:spf.protection.outlook.com include:spf.commbrands.com include:infusionmail.com include:spf.sendinblue.com include:eventscribe.com include:spf1.jotform.com include:spf2.jotform.com ip4:35.227.130.0/24 include:_spf.qemailserver.com include" ":spf.abila.info include:spf.cadmiumcd.com include:email.freshdesk.com include:sendgrid.com include:_spf.act-on.net ~all"
TXT: "google-site-verification=8gt64XJJllLaE2yh6QuiUoX2p1wa8yZ-6c9NTz7OIzw"
TXT: "knowbe4-site-verification=aa829ada3bade4790722e48b1ebdc7f1"
TXT: "google-site-verification=G9OKlqWSXYU_kHQT0hL9jDpvPFO5E8bHPSyUINNDtQg"
TXT: "mandrill_verify.S8GQ8UjJtHvLXflm-1Dvmw"
TXT: "google-site-verification=qjMuUmghaBGVir--BYOmgK5hXwfYK_0klHpyXdKqUsc"
TXT: "atlassian-domain-verification=f7rTUU739sUabd55DwLnaJns7U3gomEKybE2KDGtnRzGcOASNA4cxbFbSEEftWHm"
TXT: "google-site-verification=6hXmWpsyX2T2IrYtdtlmPBcf93LygEWiz3ywZ6moDrc "
TXT: "Sendinblue-code:6888698cf926629b7e79c8791bf8b2bc"
SOA: ns49.domaincontrol.com. dns.jomax.net. 2026051900 28800 7200 604800 600
📋HTTP 响应头
Server: cloudflare