What is the security status of shrfb.com?

shrfb.com has a security score of 36/100, rated as Potentially Unsafe. The website may have security concerns that should be addressed.

Is shrfb.com safe to use?

Our security scan shows shrfb.com is Potentially Unsafe. SSL security issues detected. Always practice safe browsing habits.

Does shrfb.com have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 36/100, the website is rated as Potentially Unsafe. However, websites can change over time, so always use updated security software.

What is shrfb.com's trust score?

shrfb.com has a security score of 36/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is shrfb.com Safe? Security Analysis for 2266自考网

https://shrfb.com

Check if shrfb.com is a scam or legitimate. Free security scan and reviews.

EducationChinasmall

BootstrapjQuery

Analyzed 8/3/2025Completed 10:32:26 AM

Security Score

HIGH RISK

AI Summary

The website '2266自考网' serves as an educational portal dedicated to providing comprehensive resources and information related to self-study exams in China. It offers exam schedules, registration guidance, study materials, and news updates targeted primarily at Chinese students preparing for self-study higher education exams. The platform positions itself as a niche resource within the Chinese education sector, catering to a specialized audience seeking official and practical exam-related information. Technically, the website employs a traditional web stack including Bootstrap and an older version of jQuery, indicating a moderate level of digital maturity. The site is mobile responsive at a basic level and features a structured navigation system with regularly updated content. However, there is no evidence of advanced CMS usage or modern frameworks, and performance is moderate. SEO and accessibility practices are basic but functional. From a security perspective, the site uses HTTPS but lacks important security headers and DNSSEC, which are recommended for enhanced protection. The use of an outdated jQuery version may expose the site to known vulnerabilities. Privacy compliance is limited, with no cookie consent mechanism and only a basic privacy/terms page present. Contact information is minimal but available, enhancing business credibility somewhat. WHOIS data shows inconsistencies, particularly with domain creation dates and registrant information, which may warrant further investigation. Overall, the website is functional and serves its educational purpose well but would benefit from improved security practices, updated technical components, and enhanced privacy compliance to increase trust and resilience against threats.

Detected Technologies

BootstrapjQuery

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

The business operates as a specialized educational information provider focusing on self-study exams in China. Its competitive advantage lies in aggregating official exam schedules, policies, and study resources in one accessible platform. The business model appears to be content-driven, potentially monetized through partnerships or advertising, although no explicit monetization mechanisms are visible. The target customers are students and exam candidates seeking authoritative and updated exam information. The presence of multiple city-specific subdomains suggests a regionalized approach to content delivery. Partnerships with related educational and informational websites indicate an ecosystem strategy to broaden reach. Growth indicators include frequent content updates and a maintained ICP license. However, the lack of advanced digital marketing tools and limited contact channels may constrain expansion.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

3*****@qq.com

Phone Numbers (1)

138*******

Security Posture Analysis

Comprehensive Security Assessment

The website demonstrates a basic security posture with HTTPS enabled, which is mandatory. However, the absence of DNSSEC and security headers such as Content-Security-Policy and X-Frame-Options reduces its defense-in-depth capabilities. The use of an outdated jQuery library introduces potential vulnerabilities that could be exploited. No incident response or security policy information is provided, indicating limited transparency and preparedness. Privacy compliance is weak, lacking cookie consent and GDPR indicators. The WHOIS data inconsistencies raise questions about domain legitimacy, which could impact trust. Overall, the security maturity is low to moderate, with significant room for improvement to meet modern standards and regulatory requirements.

Strategic Recommendations

Priority Actions for Security Improvement

Enable DNSSEC on the domain to enhance DNS security and prevent spoofing.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

2266自考网

Description:

全国自考官方报名网站入口,为考生提供自考时间,自考辅导,自考报名,自考本科,自考专升本,自考历年试题,自考报名条件,准考证打印时间,自考招生专业,自考招生院校,最新的自考政策及自考成绩查询服务。

Key Services:

Self-study exam news and updatesExam schedules and arrangementsScore inquiry servicesExam registration guidanceStudy materials and past exam questionsInformation on colleges and majors

Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:

BootstrapjQuery

Frameworks:

Bootstrap

Performance:

moderate

Mobile:

basic

Accessibility:

basic

SEO:

basic

Security Assessment

Security Score:

55/100

Best Practices:

HTTPS enabled

Analytics & Tracking

Tracking Level:minimal

Privacy Compliance:poor

Advertising & Marketing

Tracking Pixels:

Baidu linksubmit push.js

Transparency Level:basic

Website Quality Assessment

Design Quality:good

User Experience:good

Content Relevance:good

Navigation Clarity:good

Professionalism:good

Trustworthiness:moderate

Key Observations

Website is an educational portal focused on Chinese self-study exams.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

30/100

Score

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Critical sector without clear security compliance

HIGH

Detected sectors: transport, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

60/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

0/100

Score

Unable to retrieve SSL certificate

CRITICAL

Could not establish secure connection to retrieve certificate information

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

75/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

No DMARC Record

MEDIUM

DMARC policy not configured

DNS Records

A Records:103.41.80.55

Name Servers:

ns1.julydns.comDNS only

ns2.julydns.comDNS only

SOA:Serial: 1752856755, TTL: 600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:385ms

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

0/100

Score

High-Risk Service Exposed: FTP

HIGH

Port 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer

Critical Service Exposed: MySQL

CRITICAL

Port 3306 (MySQL) is publicly accessible - MySQL - Database server

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built using Bootstrap for responsive design and jQuery (version 1.x) for JavaScript functionality. The HTML structure is valid and includes meta tags for viewport and keywords, supporting basic SEO. The site loads external scripts from Baidu for link submission, indicating some SEO efforts. No modern CMS or structured data (JSON-LD/Open Graph) is detected, limiting rich search engine results. Mobile optimization is basic but present. Performance is moderate, with no explicit indicators of optimization or CDN usage. The hosting provider is not clearly identified beyond the registrar. The site uses multiple city subdomains to localize content. Overall, the technical infrastructure is functional but dated, with opportunities for modernization and performance enhancement.

Analyze Another Website

Is shrfb.com a Scam? Security Check Results - 2266自考网 Reviews

Is shrfb.com Safe? Security Analysis for 2266自考网

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Extracted Contact Information

Email Addresses (1)

Phone Numbers (1)

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing X-Frame-Options header

Missing X-Content-Type-Options header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Missing Referrer-Policy header

Missing Permissions-Policy header

Sensitive data may be cached

👤GDPR Compliance

GDPR Compliance

No Privacy Policy found

No Cookie Policy found

No Cookie Consent Banner found

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

Critical sector without clear security compliance

📧Email Security

Email Security

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

No email authentication configured

🏆SSL/TLS Security

SSL/TLS Security

Unable to retrieve SSL certificate

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

CAA Records Not Configured

No DMARC Record

DNS Records

DNSSEC Status

DNS Performance

⚡Network Security

Network Security

High-Risk Service Exposed: FTP

Critical Service Exposed: MySQL

🔧Technical Analysis

Technical Analysis

Additional Findings