30
中风险
2026-05-21 06:29:03
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️对外暴露了 1 个高风险服务端口
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡使用防火墙限制对这些端口的访问
🌐域名信息
目标域名bitkom.org
注册域名bitkom.org
顶级域名.org
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-Frame-Options, X-XSS-Protection, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: Apache
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (3)
22
ssh
80
http
443
https
🌐DNS 记录
A: 37.208.107.132
MX: 10 bitkom-org.mail.protection.outlook.com.
NS: ns0.de.colt.net.
NS: ns8.colt.net.
TXT: "google-site-verification=r4Xfw9QleZWwQ1UWP88XVdymzwDhXNVBT7YghV_ItIA"
TXT: "D-TRUST=9N7B4RG2HPZ8ZO6TDXJNB6R"
TXT: "google-site-verification=k-z3aL6m_-l3-c4-KyjIXWiZgpUcYG0GSwgd3j4nv-s"
TXT: "v=spf1 ip4:20.52.238.120 ip4:37.208.107.135 ip4:37.208.107.137 include:marketing.dynamics.com include:spf.tixxt.com include:spf.mailjet.com include:spf.protection.outlook.com include:spf.mailingress.de include:spf.iqsuite.com -all"
TXT: "gidqqj63hn183bi07h9jeqknql"
TXT: "zone-ownership-verification-1931ccc3d5b666dd0e78ef9a26759850d40617e8b53720b9a5d19e4fb1d06631"
TXT: "apple-domain-verification=sy9lLvYlFf6QiBqx"
TXT: "2MF+o2CO6dYAWkLZYvcadVt8A36lIglz8SzRJOv8lsRNKs90PhiCEbXlA5yiYibesZhBqGg1bimFjWWMDG/wNg=="
TXT: "62uvn87vmdfgl5kpn0lj4s4sal"
TXT: "d365mktkey=3t5f2o7jwlz4nnmkabn4hypnv"
SOA: ns0.de.colt.net. do-not-reply.bitkom.org. 2026051500 43200 7200 1209600 86400
📋HTTP 响应头
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains;
Content-Security-Policy: frame-ancestors https://api.bitkom.org https://health-conference.de https://bildungs-konferenz.de https://eidas-summit.d
Referrer-Policy: no-referrer-when-downgrade
Server: Apache