25
低风险
2026-05-21 02:58:26
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名inaturalist.org
注册域名inaturalist.org
顶级域名.org
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Strict-Transport-Security, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 20.69.173.116
MX: 30 ASPMX2.GOOGLEMAIL.COM.
MX: 10 ASPMX.L.GOOGLE.COM.
MX: 20 ALT2.ASPMX.L.GOOGLE.COM.
MX: 20 ALT1.ASPMX.L.GOOGLE.COM.
MX: 30 ASPMX4.GOOGLEMAIL.COM.
MX: 30 ASPMX5.GOOGLEMAIL.COM.
MX: 30 ASPMX3.GOOGLEMAIL.COM.
NS: ns1.slicehost.net.
NS: ns2.slicehost.net.
NS: ns3.slicehost.net.
TXT: "v=spf1 include:_spf.google.com include:em3891.inaturalist.org -all"
TXT: "google-site-verification=0uVQBRm-d9J8Jc2SIFTEUC_TTkdcnhssqMX8ral6n7w"
TXT: "google-site-verification=k6GBIUqmCWQ2wvsoUwfCNxKEpI7wCDC4mWEHV4CmBe8"
TXT: "brave-ledger-verification=7ba141ed7fb3da81ce9c8024846162bd1c4fc09ae4487a6e5edda34d99bf42ce"
TXT: "google-site-verification=flCGrmXAfNRjXdNNmDRLgbE0XHOHguuFhh1twJN6TVM"
SOA: ns1.slicehost.net. ipadmin.stabletransit.com. 1779183694 3600 300 1814400 300
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self'
Referrer-Policy: strict-origin-when-cross-origin
Server: cloudflare