50
高风险
2026-05-21 02:55:52
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[HIGH] 敏感路径暴露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
- 💡限制对这些路径的访问或添加认证
🌐域名信息
目标域名givelify.com
注册域名givelify.com
顶级域名.com
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (3)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Strict-Transport-Security, Content-Security-Policy, Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: nginx
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env
修复建议: 限制对这些路径的访问或添加认证
🔌开放端口 (2)
80
http
443
https
🌐DNS 记录
A: 54.83.246.48
A: 44.209.29.71
MX: 10 givelify-com.mail.protection.outlook.com.
NS: ns-1663.awsdns-15.co.uk.
NS: ns-951.awsdns-54.net.
NS: ns-30.awsdns-03.com.
NS: ns-1237.awsdns-26.org.
TXT: "apple-domain-verification=fJwbOFcNX0zYTK8Z"
TXT: "gV9obKfW3JE0WVV4cEZGd1WRxvR2iURXo0PM/qS6299QamRT0Z40IACITy/f30dJ0VnzosJgMY8K41iM4qosXA=="
TXT: "ca3-1fe2c06bc43d4d379496904b0ed030e6"
TXT: "prowly-verification=36e119d58dd7357e6531a1920a860ec45efb6c1e947f24a46bbfdacbcd36c53b"
TXT: "proxy-ssl.webflow.com"
TXT: "pardot484011=d6e91756574eeb8fffb9ed334b82fd3b27b398b13acf32d82925dd732e8114a9"
TXT: "v=spf1 include:et._spf.pardot.com include:amazonses.com include:mail.zendesk.com include:spf.protection.outlook.com include:spf.emailsignatures365.com include:spf.zoho.com include:transmail.net include:sendgrid.net -all"
TXT: "google-site-verification=1r_9EB6phJEjMXCy2pFMlMXrX3dV1xVXpXrQ-_iUJmY"
TXT: "anthropic-domain-verification-9d2246=p9wyv7OQFAH6HBmS653nsGNds"
TXT: "atlassian-domain-verification=bqLaTq67/Ri3kkYEhV/7oAHSF5A5TFufRp1GuKaKPFHWaXkSwVBbaHyWaSFW7uaW"
TXT: "facebook-domain-verification=2f4srzt5snpvyrqsuor449crb90eip"
TXT: "openai-domain-verification=dv-qd1ZZAtizqHlLemGXMnVGXYn"
TXT: "hr8hshdljhist0agsnmu2hug2v"
SOA: ns-30.awsdns-03.com. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Server: nginx