No title found
HTTPS
目标分析
api.6rmmz426.com
IP: 47.242.170.55
ASN: AS45102
针对api.6rmmz426.com的全面安全与网络分析报告。服务器:nginx。 托管在US。
- 主要端口
- 443
- 扫描时间
- 可分享的报告链接
- https://sechttp.com/scan/api.6rmmz426.com
详细安全分析
攻击路径与DDoS防御分析
攻击者
L4流量
L7流量
AS45102 (nginx POP节点)
L4已防御
L7已绕过
L4已阻止
L7流量
您的服务器
防御摘要
虽然nginx对第4层(网络层)攻击提供了强大的保护,但您的服务器仍可能容易受到绕过标准CDN防御的复杂第7层(应用层)攻击。建议添加额外的WAF规则和应用端安全措施。
第4层防御
nginx 在网络边缘提供强大的SYN洪泛、UDP放大和容量攻击保护。
第7层漏洞
针对0暴露的API端点的应用层攻击需要额外的WAF规则和速率限制。
服务器信息泄露
LOWINFO-001
描述
服务器正在泄露其软件类型:nginx。这可能帮助攻击者识别潜在漏洞。
建议
配置您的Web服务器以隐藏或修改Server头,以防止信息泄露。
缺少或无效的HSTS头
MEDIUMSEC-001
描述
Strict-Transport-Security头未正确配置,使网站容易受到中间人攻击。
建议
通过添加具有适当max-age值的Strict-Transport-Security头来实现HSTS,强制使用HTTPS连接。
缺少X-Frame-Options头
MEDIUMSEC-002
描述
网站未受到点击劫持攻击的保护。
建议
添加值为'DENY'或'SAMEORIGIN'的X-Frame-Options头,以防止点击劫持。
正在测试
本次扫描无模糊测试数据。
端口扫描结果
| 端口 | 服务 | 状态 | 版本 |
|---|---|---|---|
| 80 | HTTP | 关闭 | - |
| 443 | HTTPS | 开放 | TLS 1.3 |
| 22 | SSH | 过滤 | - |
| 3306 | MySQL | 关闭 | - |
HTTP头分析
date:
Thu, 31 Jul 2025 20:52:52 GMT
etag:
"62976f26-4"
server:
nginx
connection:
keep-alive
set-cookie:
route=1753995173.858.12408.560834; Path=/; HttpOnly
content-type:
text/html
accept-ranges:
bytes
last-modified:
Wed, 01 Jun 2022 13:52:38 GMT
content-length:
4
access-control-allow-origin:
*
access-control-allow-headers:
Authorization,x-requested-with,Cache-Control,Pragma,Content-Type,Token,Content-Type,Accept,content-type,request-id,user-id,requestId,request-code,lang,merchantName,app-id,checkId,language
access-control-allow-methods:
PUT, GET, POST, OPTIONS
access-control-expose-headers:
Content-Disposition,WWW-Authenticate,Server-Authorization
access-control-allow-credentials:
true
ASN信息
ASN: AS45102
IP地址: 47.242.170.55
网络前缀: 47.242.0.0/16
组织: ALIBABA-CN-NET
国家:
🇺🇸 US
名称: ALIBABA-CN-NET
上游提供商 (42)
AS3491
CONSOLE-CONNECT-ASN
PCCW Global, Inc.
🇺🇸 US
upstream
AS6453
AS6453
TATA COMMUNICATIONS (AMERICA) INC
🇺🇸 US
upstream
AS2914
NTT-DATA-2914
NTT America, Inc.
🇺🇸 US
upstream
AS3356
LEVEL3
Level 3 Parent, LLC
🇺🇸 US
upstream
AS6939
HURRICANE
Hurricane Electric LLC
🇺🇸 US
upstream
AS1299
TWELVE99
Arelion, f/k/a Telia Carrier
🇸🇪 SE
upstream
AS7473
SINGTEL-AS-AP
Singapore Telecommunications Ltd
🇸🇬 SG
upstream
AS21859
ZEN-ECN
Zenlayer Inc
🇺🇸 US
upstream
AS17676
ULTINA
SoftBank Mobile Corp.
🇯🇵 JP
upstream
AS9002
RETN-AS
RETN Limited
🇬🇧 GB
upstream
AS15802
DU-AS1
Emirates Integrated Telecommunications Company PJSC
🇦🇪 AE
upstream
AS39386
STC-IGW-AS
Saudi Telecom Company JSC
🇸🇦 SA
upstream
AS12389
ROSTELECOM-AS
PJSC "Rostelecom". Technical Team
🇷🇺 RU
upstream
AS9299
IPG-AS-AP
Philippine Long Distance Telephone Company
🇵🇭 PH
upstream
AS174
COGENT-174
Cogent Communications
🇺🇸 US
upstream
AS4775
GLOBE-TELECOM-AS
Globe Telecoms
🇵🇭 PH
upstream
AS9318
SKB-AS
SK Broadband Co Ltd
🇰🇷 KR
upstream
AS45903
CMCTELECOM-VN
CMC Telecom Infrastructure Company
🇻🇳 VN
upstream
AS4788
TTSSB-MY
TM TECHNOLOGY SERVICES SDN. BHD.
🇲🇾 MY
upstream
AS35753
ITC
ITC AS number
🇸🇦 SA
upstream
AS7552
VIETEL-AS-AP
Viettel Group
🇻🇳 VN
upstream
AS31133
MF-MGSM-AS
PJSC MegaFon
🇷🇺 RU
upstream
AS5511
Opentransit
Orange S.A.
🇫🇷 FR
upstream
AS135391
AOFEI-HK
AOFEI DATA INTERNATIONAL COMPANY LIMITED
🇭🇰 HK
upstream
AS8966
Etisalat-AS
P.O. Box 1150, Dubai, UAE
🇦🇪 AE
upstream
AS4134
CHINANET-BACKBONE
No.31,Jin-rong Street
🇨🇳 CN
upstream
AS3491
CONSOLE-CONNECT-ASN
PCCW Global, Inc.
🇺🇸 US
upstream
AS6453
AS6453
TATA COMMUNICATIONS (AMERICA) INC
🇺🇸 US
upstream
AS2914
NTT-DATA-2914
NTT America, Inc.
🇺🇸 US
upstream
AS3356
LEVEL3
Level 3 Parent, LLC
🇺🇸 US
upstream
AS1299
TWELVE99
Arelion, f/k/a Telia Carrier
🇸🇪 SE
upstream
AS7473
SINGTEL-AS-AP
Singapore Telecommunications Ltd
🇸🇬 SG
upstream
AS21859
ZEN-ECN
Zenlayer Inc
🇺🇸 US
upstream
AS17676
ULTINA
SoftBank Mobile Corp.
🇯🇵 JP
upstream
AS9002
RETN-AS
RETN Limited
🇬🇧 GB
upstream
AS39386
STC-IGW-AS
Saudi Telecom Company JSC
🇸🇦 SA
upstream
AS174
COGENT-174
Cogent Communications
🇺🇸 US
upstream
AS4775
GLOBE-TELECOM-AS
Globe Telecoms
🇵🇭 PH
upstream
AS9318
SKB-AS
SK Broadband Co Ltd
🇰🇷 KR
upstream
AS4788
TTSSB-MY
TM TECHNOLOGY SERVICES SDN. BHD.
🇲🇾 MY
upstream
AS35753
ITC
ITC AS number
🇸🇦 SA
upstream
AS135391
AOFEI-HK
AOFEI DATA INTERNATIONAL COMPANY LIMITED
🇭🇰 HK
upstream
下游客户 (1)
AS24429
Taobao
Zhejiang Taobao Network Co.,Ltd
🇨🇳 CN
downstream
互联网交换点 (52)
🇩🇪
DE-CIX Frankfurt
DE
200 Gbps
Bandwidth
🇷🇺
MSK-IX Moscow
RU
10 Gbps
Bandwidth
🇭🇰
Equinix Hong Kong
HK
100 Gbps
Bandwidth
🇸🇬
BBIX Singapore
SG
200 Gbps
Bandwidth
🇸🇬
Equinix Singapore
SG
300 Gbps
Bandwidth
🇺🇸
Equinix Ashburn
US
200 Gbps
Bandwidth
🇺🇸
Equinix Palo Alto
US
100 Gbps
Bandwidth
🇺🇸
Equinix San Jose
US
200 Gbps
Bandwidth
🇭🇰
BBIX Hong Kong
HK
100 Gbps
Bandwidth
🇩🇪
DE-CIX Frankfurt
DE
200 Gbps
Bandwidth
🇦🇪
UAE-IX
AE
10 Gbps
Bandwidth
🇯🇵
BBIX Tokyo
JP
300 Gbps
Bandwidth
🇯🇵
BBIX Tokyo
JP
300 Gbps
Bandwidth
🇲🇾
MyIX
MY
10 Gbps
Bandwidth
🇲🇾
MyIX
MY
10 Gbps
Bandwidth
🇸🇬
SGIX
SG
100 Gbps
Bandwidth
🇰🇷
KINX
KR
20 Gbps
Bandwidth
🇰🇷
KINX
KR
20 Gbps
Bandwidth
🇮🇩
OpenIXP / NiCE
ID
10 Gbps
Bandwidth
🇮🇩
IIX-Jakarta
ID
10 Gbps
Bandwidth
🇺🇸
Equinix Ashburn
US
200 Gbps
Bandwidth
🇷🇺
MSK-IX Moscow
RU
10 Gbps
Bandwidth
🇷🇺
DataLine-IX
RU
10 Gbps
Bandwidth
🇬🇧
LINX LON1
GB
10 Gbps
Bandwidth
🇬🇧
LINX LON1
GB
10 Gbps
Bandwidth
🇬🇧
LONAP
GB
10 Gbps
Bandwidth
🇭🇰
HKIX
HK
100 Gbps
Bandwidth
🇫🇷
France-IX Paris
FR
10 Gbps
Bandwidth
🇨🇦
TorIX
CA
10 Gbps
Bandwidth
🇨🇦
VANIX
CA
10 Gbps
Bandwidth
🇭🇰
Equinix Hong Kong
HK
100 Gbps
Bandwidth
🇸🇬
Equinix Singapore
SG
300 Gbps
Bandwidth
🇳🇱
NL-ix
NL
100 Gbps
Bandwidth
🇮🇩
JKT-IX
ID
10 Gbps
Bandwidth
🇲🇾
DE-CIX Malaysia
MY
10 Gbps
Bandwidth
🇸🇬
DE-CIX ASEAN
SG
10 Gbps
Bandwidth
🇹🇭
JTIX (Thailand)
TH
10 Gbps
Bandwidth
🇯🇵
JPIX TOKYO
JP
10 Gbps
Bandwidth
🇵🇭
GetaFIX Manila
PH
10 Gbps
Bandwidth
🇲🇾
DE-CIX Kuala Lumpur
MY
10 Gbps
Bandwidth
🇮🇩
DCI Indonesia DCI-IX
ID
20 Gbps
Bandwidth
🇸🇦
center3 IX Jeddah
SA
10 Gbps
Bandwidth
🇸🇦
center3 IX Jeddah
SA
10 Gbps
Bandwidth
🇪🇸
ESpanix Madrid Lower LAN
ES
10 Gbps
Bandwidth
🇹🇭
THAILAND IX (TH-IX)
TH
10 Gbps
Bandwidth
🇮🇩
BIX Jakarta
ID
10 Gbps
Bandwidth
🇹🇭
AMS-IX Bangkok
TH
10 Gbps
Bandwidth
🇮🇩
Digital Edge EPIX Jakarta
ID
100 Gbps
Bandwidth
🇭🇰
HKIX
HK
300 Gbps
Bandwidth
🇭🇰
BBIX Hong Kong
HK
100 Gbps
Bandwidth
🇮🇩
EdgeNXT
ID
100 Gbps
Bandwidth
🇵🇭
BBIX Manila
PH
100 Gbps
Bandwidth
正在测试
JavaScript分析正在进行。
历史扫描记录 (4)
No description found
65/100
4 issues
No description found
65/100
4 issues
安全扫描完成
65/100
4 issues
安全扫描完成
65/100
4 issues