Skip to main content

Is shenlongip.com a Scam? Security Check Results - 南京小北信息科技有限公司 Reviews

Is shenlongip.com Safe? Security Analysis for 南京小北信息科技有限公司

https://shenlongip.com

Check if shenlongip.com is a scam or legitimate. Free security scan and reviews.

TechnologyChinamedium
Vue.jsNuxt.jsBing Ads (bat.bing.com)Microsoft ClarityBaidu Analytics
Analyzed 8/2/2025Completed 5:49:27 AM
59
Security Score
MEDIUM RISK

AI Summary

神龙IP代理是一家专注于提供国内IP地址更改和切换服务的技术公司,隶属于南京小北信息科技有限公司。其服务涵盖动态和静态IP代理,支持多种协议如IKEv2、PPTP、L2TP、SSTP和SOCKS5,满足不同网络应用需求。公司通过自营机房和千万运营商资源,提供高纯净度、稳定的IP资源,面向个人及企业用户,提供包括软件客户端在内的全方位解决方案。网站内容丰富,支持多平台客户端,且提供详细的帮助文档和教程,体现出较高的数字化成熟度。

Detected Technologies

Vue.jsNuxt.jsBing Ads (bat.bing.com)Microsoft ClarityBaidu Analytics

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

神龙IP代理在国内IP代理市场中占据一定地位,依托自营机房和运营商合作资源,提供多样化套餐和定制带宽服务,满足不同客户需求。其业务模式以套餐订购和软件服务为主,支持免费试用以吸引新用户。公司通过专属客户经理和7*24小时运维监控提升客户服务体验。网站友情链接显示其合作伙伴网络,增强业务生态。整体业务展现出稳定增长潜力和较强的市场竞争力。

Extracted Contact Information

Marketing Intelligence Data

Phone Numbers (1)

132*******

Physical Addresses (1)

南京市雨花台区安德门大街57号楚翘城7幢404-405室

Security Posture Analysis

Comprehensive Security Assessment

网站采用HTTPS保障数据传输安全,集成了多种安全防护脚本如验证码,防止自动化攻击。未发现明显安全漏洞或敏感信息泄露。缺少部分安全HTTP头部配置和公开的安全政策文档,建议完善安全策略披露和漏洞响应机制。隐私政策和用户协议存在,但缺少明确的GDPR合规声明和Cookie同意机制,隐私合规方面仍有提升空间。

Strategic Recommendations

Priority Actions for Security Improvement

1

完善安全HTTP头部配置,如Content-Security-Policy和X-Frame-Options,提升防护能力。

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

南京小北信息科技有限公司

Description:

神龙ip代理提供国内IP地址更改切换服务,支持IKEv2、PPTP、L2TP、SSTP、SOCKS5等IP协议,动态IP和静态IP可适用于各类网络应用和需求。另提供ip代理软件下载,可实现自动换ip,ip地址切换修改转换器非常稳定,用户可自由切换更改ip地址。

Key Services:
动态高级套餐动态独享套餐静态高级套餐固定长效代理套餐IP代理软件客户端
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
Vue.jsNuxt.jsBing Ads (bat.bing.com)Microsoft ClarityBaidu Analytics
Frameworks:
Vue.jsNuxt.js
Platforms:
Web
Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:
80/100
Best Practices:
  • HTTPS enforced
  • No exposed sensitive data in HTML
  • Use of captcha scripts for bot protection

Analytics & Tracking

Services:
Microsoft ClarityBaidu Analytics
Tracking Level:moderate
Privacy Compliance:basic

Advertising & Marketing

Ad Networks:
Bing Ads
Tracking Pixels:
Microsoft ClarityBaidu Analytics
Marketing Tools:
Microsoft ClarityBing AdsBaidu Analytics
Transparency Level:basic

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:high

Key Observations

1

Website is fully accessible with rich content and navigation

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

30/100
Score

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

Sensitive data may be cached

LOW

Cache-Control header should include "no-store" for sensitive pages

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

50/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: transport, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

60/100
Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

74/100
Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

OCSP Stapling Not Enabled

LOW

OCSP stapling improves performance and privacy

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

HSTS Missing includeSubDomains

LOW

HSTS header does not include subdomains

Protocol Support

TLSv1.2TLSv1.3TLSv1.1

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

75/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

No DMARC Record

MEDIUM

DMARC policy not configured

DNS Records

A Records:61.160.192.102
Name Servers:
vip3.alidns.comDNS only
vip4.alidns.comDNS only
SOA:Serial: 2025073112, TTL: 600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:665ms

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

网站基于现代前端框架Vue.js和Nuxt.js构建,采用CDN加速资源加载,集成微软Bing广告和百度统计等分析工具。页面设计响应式良好,支持多设备访问。技术栈现代且维护良好,但缺少CMS信息。性能表现中等,建议进一步优化加载速度和无障碍支持。整体技术架构适合当前业务需求,具备良好的扩展性和维护性。
Analyze Another Website