10
低风险
2026-05-21 05:43:22
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名giz.de
注册域名giz.de
顶级域名.de
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (1)
LOW服务器信息泄露
响应头泄露服务器信息: Server: nginx
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 116.202.5.13
MX: 0 giz-de.mail.protection.outlook.com.
NS: AUTH02.NS.DE.UU.NET.
NS: AUTH52.NS.DE.UU.NET.
TXT: "google-site-verification=rL9oLNgqSFkktz4bWSsny3vYiXJyH0KrDTbPy0ozvAs"
TXT: "storiesonboard-verification=D12D14A158D74F898D2B2625E63F9493"
TXT: "apple-domain-verification=oKl3vXtEaXa6jqrW"
TXT: "hkhG8v0veItHebb8b5nETMy6q9yuvbgZtcx1i3IhW5UsLBCw/3BVADOn26rha25uPNESkt1BCQhBuqhTABQHJA=="
TXT: "MS=ms56691093"
TXT: "v=spf1 include:spf.protection.outlook.com ip4:193.97.169.16/28 include:_spf.sendnode.com -all"
SOA: ns1.gtz.de. abuse.gtz.de. 2026051101 28800 7200 604800 86400
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:; object-src *; frame-ancestors *; base-uri *
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: accelerometer=(self "https://youtube.com" "https://www.youtube.com" "https://www.youtube-nocookie.com"), autoplay=(self
Server: nginx