25
低风险
2026-05-21 06:31:00
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名gov.mb.ca
注册域名gov.mb.ca
顶级域名.mb.ca
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Content-Security-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: na
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 198.163.16.153
MX: 10 mxa-004a1001.gslb.pphosted.com.
MX: 10 mxb-004a1001.gslb.pphosted.com.
NS: ns1.gov.mb.ca.
NS: ns3.gov.mb.ca.
NS: ns2.gov.mb.ca.
TXT: "MS=607D0961EAE74E79E19BCABE30DEA04ACF80BE46"
TXT: "bQRLjodFsVJpesPrt80q1Ez6OYpip/16M4ZMfjs30TZJs+1Eg13/IqPT/+Xdcil9/GT74jVriAFifm66LYnWzg=="
TXT: "G2EVClLr6PANEzTLDYfVzpR+uus5frUaY70OKQUXdzrade4Ov1/G/Kj4JTkDCQBpXAR1X/rjGt6AGmy+oRpOwQ=="
TXT: "google-site-verification=iz8khytBPGSjSzB8RS-S3Tp_zK74Ams8KPHjk_h4iBk"
TXT: "docusign=0b9aa4fc-66b0-44b6-aaf9-20d95dd46035"
TXT: "smartsheet-site-validation=QW73hnyAzjsZ3txBaDdNkFvoMBqsP1Am"
TXT: "v=spf1 include:spf-0.gov.mb.ca include:spf-1.gov.mb.ca include:spf-2.gov.mb.ca include:_spf-can.echoworx.com include:spf-004a1001.pphosted.com include:spf.protection.outlook.com include:spf.successbyemail.com include:_spf-dc17.sapsf.com " "include:spf.serverdata.net -all"
TXT: "pexip-ms-tenant-domain-verification=5c520a49-3be5-43f6-af95-db52d199dbee"
SOA: ns1.gov.mb.ca. hostmaster.gov.mb.ca. 2026050500 1200 300 2419100 1200
📋HTTP 响应头
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=157680000; includeSubDomains; preload
Referrer-Policy: no-referrer-when-downgrade
Permissions-Policy: geolocation=(self),display-capture=(self)
Server: na