Security Directory

K

Kompetenzzentrum Inklusive Bildung Sachsen-Anhalt

kib-sachsenanhalt.de

0

The Kompetenzzentrum Inklusive Bildung Sachsen-Anhalt is a small, government-funded educational project focused on qualifying people with disabilities as educational professionals and sensitizing academic and leadership staff on inclusion. The website is professionally designed using TYPO3 CMS, with responsive and accessible features, and provides clear contact information and relevant content in German with language alternatives. Security posture is moderate with HTTPS usage but lacks visible security headers and cookie consent mechanisms. The domain registration is consistent with the business claims, and the site holds reputable awards and certifications enhancing trust. Overall, the site is a credible and well-maintained digital presence for a niche educational initiative.

S

Service- und Koordinierungsstelle für das vollzugliche Arbeitswesen

jva.de

0

The website www.jva.de represents the Service- und Koordinierungsstelle für das vollzugliche Arbeitswesen, a Bavarian government entity managing prison labor programs across over 34 locations. It offers a wide range of industrial and craft services, enabling companies and private customers to engage with prison labor for production and craftsmanship. The platform emphasizes social reintegration of inmates through meaningful work, supporting local industry and craftsmanship in Bavaria. The site is well-branded, professionally designed, and highly accessible, reflecting its government affiliation and social mission. Technically, the website employs modern JavaScript frameworks such as Alpine.js, uses Matomo for privacy-conscious analytics, and is hosted on Bavarian government infrastructure as indicated by its nameservers. The site is mobile-optimized, SEO-friendly, and includes accessibility features like contrast toggling, simplified language, sign language, and text-to-speech. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with good SSL configuration and no exposed sensitive data. However, it lacks explicit cookie consent mechanisms, a published security policy, incident response contacts, and a vulnerability disclosure policy, which are areas for improvement. The domain registration aligns with Bavarian government domains, supporting high legitimacy and trust. Overall, the website is a trustworthy, professional government platform with a strong social purpose. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to enhance compliance and security posture.

PATE Hamburg operates a specialized web platform designed to systematically capture offerings, participants, and outcomes for selected social programs managed by the Hamburg Social Authority. The platform supports programs such as Jugendhilfe reporting and ESF+ participant tracking, serving a niche government and social services audience. The business model centers on providing a digital tool for data management and reporting within public social programs, positioning itself as a trusted service for Hamburg's social sector. Technically, the website is built using the Hugo static site generator combined with Bootstrap for responsive design, hosted on Hetzner infrastructure. The site demonstrates good performance and mobile optimization, with a clean and consistent branding approach. However, there is room for improvement in SEO and accessibility features, as well as the implementation of security headers. From a security perspective, the site benefits from HTTPS and uses integrity attributes on scripts and stylesheets, indicating attention to content security. Nonetheless, the absence of explicit security headers, cookie consent mechanisms, and vulnerability disclosure policies suggests moderate security maturity. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration aligns well with the platform's public service nature. Overall, the platform presents a professional and trustworthy digital presence for Hamburg's social programs, with recommendations to enhance privacy compliance, security posture, and user contact accessibility to further strengthen trust and regulatory adherence.

B

BIG direkt gesund

big-direkt.de

0

BIG direkt gesund is a well-established German statutory health insurance provider offering a broad range of health insurance services tailored for individuals, families, students, retirees, and self-employed persons. The company emphasizes digital services, including mobile apps and online customer portals, positioning itself as a modern direct insurer in the healthcare sector. Their market position is solid within Germany, supported by comprehensive service offerings and a strong digital presence. Technically, the website leverages modern frameworks such as Angular and Tailwind CSS, hosted via Akamai CDN, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and cookie consent management, although explicit security policy and incident response information are not publicly detailed. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

D

Deutscher Schützenbund

dsb.de

0

The Deutscher Schützenbund website represents a well-established German shooting sports federation focused on promoting various shooting disciplines including archery and firearms. The organization targets sports enthusiasts, youth, and members of the shooting community in Germany, providing event information, youth programs, and an online shop. The website is built on the TYPO3 CMS platform, indicating a mature technical infrastructure with moderate performance and good mobile optimization. The presence of cookie consent mechanisms and social media integration reflects a reasonable level of digital maturity. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and published privacy or security policies indicates room for improvement. Overall, the site is professional and trustworthy, with a moderate risk profile and recommendations to enhance compliance and security transparency.

H

HRS GmbH

hrs.de

0

HRS GmbH operates a leading hotel booking platform primarily targeting business and private travelers in Germany and worldwide. The website offers extensive hotel listings, member benefits including discounts and loyalty points, and a mobile app to facilitate travel management. The company is positioned as a major player in the hospitality sector with a strong digital presence and brand consistency. Technically, the website is built on modern frameworks such as Next.js and hosted on AWS infrastructure, ensuring fast performance and mobile optimization. Security posture is generally good with HTTPS enabled and use of tracking tools like Google Tag Manager and Adjust; however, the absence of explicit privacy and cookie policies and missing security headers represent areas for improvement. Overall, the domain registration and hosting details align with the business claims, indicating legitimacy and trustworthiness.

R

Rhein-Main-Verkehrsverbund GmbH (RMV)

rmv.de

0

The Rhein-Main-Verkehrsverbund (RMV) operates a comprehensive public transportation network serving the Rhein-Main region in Germany. The website provides extensive information on timetables, ticketing options, flexible mobility services, and local partner information. It targets a broad audience including daily commuters, tourists, and residents seeking reliable transport options. The business model is centered on regional public transport service provision and coordination. Technically, the website is built on TYPO3 CMS with Bootstrap and jQuery frameworks, hosted on a secure provider with HTTPS enforced. The site demonstrates good mobile optimization and accessibility features, including options for easy language and sign language. Matomo analytics is used, reflecting a privacy-conscious approach to user tracking. Security posture is solid with HTTPS and secure form handling, though the absence of explicit security headers and a cookie consent mechanism are areas for improvement. No vulnerabilities or exposed sensitive data were detected. WHOIS data aligns well with the business identity, indicating legitimacy and consistent domain registration. Overall, the RMV website is a professional, trustworthy portal for public transport users, with recommendations to enhance security headers, privacy consent, and incident response transparency to further strengthen its security and compliance stance.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

masernschutz.de

0

The website www.masernschutz.de serves as an official information portal managed by the Bundesinstitut für Öffentliche Gesundheit (BIÖG) to educate the public about the Masernschutzgesetz (Measles Protection Act) in Germany. It targets parents, healthcare workers, and institutional leaders by providing comprehensive, accessible, and authoritative content on measles vaccination requirements and legal obligations. The site is well-branded with official government logos and maintains a high level of trustworthiness. Technically, the site is built on TYPO3 CMS and employs Matomo for privacy-conscious analytics. It demonstrates good mobile optimization, accessibility features including easy language and sign language options, and moderate performance. The cookie consent mechanism is robust and GDPR compliant, reflecting a mature approach to privacy. From a security perspective, the site uses HTTPS and anonymizes IP addresses in analytics. However, it lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced transparency and readiness. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a low-risk profile with strong compliance and professional presentation. Strategic improvements in security transparency and contact information would further strengthen its posture.

pen.sec AG is a German-based IT security company specializing in penetration testing, cyber security consulting, and related services. With over 20 years of experience, the company positions itself as a full-service partner for businesses seeking to protect their digital assets. Their market position is strengthened by memberships in recognized cybersecurity clusters such as the Allianz für Cybersicherheit and IT-Sicherheitscluster e.V. The website presents a professional image with detailed service offerings and customer testimonials, targeting primarily German enterprises concerned with IT security risks. Technically, the website is built on WordPress using Elementor and several modern plugins for SEO and cookie management. The site is well-optimized for SEO and mobile devices, with good performance and accessibility features. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers are not explicitly detected. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy or terms of service pages. Overall, the security posture is solid, with strengths in penetration testing and incident response services. The lack of explicit privacy and vulnerability disclosure policies are areas for improvement. The domain WHOIS data aligns with the business claims, showing no suspicious patterns. The site is safe for general audiences and free from adult or questionable content.

P

Projekt 29 GmbH & Co. KG

projekt29.de

0

Projekt 29 GmbH & Co. KG is a well-established German full-service provider specializing in data protection, information security, and compliance consulting and solutions. Founded in 1996 and headquartered in Regensburg, the company serves over 4500 customers across various industries, offering services such as external data protection officers, IT compliance, ISO 27001 and TISAX certification support, and e-learning platforms. Their market position is strengthened by memberships in key industry associations and certifications, positioning them as a trusted partner for businesses seeking regulatory compliance and security assurance. Technically, the website is built on a modern WordPress CMS with professional design, responsive layout, and integration of relevant plugins and tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Overall, Projekt 29 demonstrates a strong commitment to privacy compliance and business credibility, making it a reliable service provider in its domain.

I

ITAGO-Systems GmbH

itago.de

0

ITAGO-Systems GmbH is a German IT service provider specializing in a broad range of technology solutions including IT infrastructure, cloud services, VoIP telephony, IT security, data protection, and information security. The company positions itself as a trusted regional partner with certifications such as TÜV and IT security certifications, targeting businesses and organizations seeking professional IT solutions. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the site is built on WordPress using modern plugins like WPBakery and Slider Revolution, hosted on Schlund Technologies servers, and optimized for mobile devices with moderate performance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit incident response contacts are missing. Overall, the domain registration and hosting details align well with the business claims, indicating legitimacy and trustworthiness.

M

Mein-Office Webdesign

webdesignbuero-offenbach.de

0

Mein-Office Webdesign is a small, established web agency based in Offenbach, Germany, with over 20 years of experience delivering customized web design, programming, and SEO services. The company emphasizes personalized consultation, high-quality responsive design, and GDPR compliance, targeting local businesses and organizations. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern frontend technologies such as jQuery and Slick Carousel, and mentions the use of the Redaxo CMS, supporting content management capabilities. Mobile optimization and SEO fundamentals are well implemented. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks explicit security headers and documented policies. No critical vulnerabilities or suspicious elements were detected. Overall, the website demonstrates a solid digital presence aligned with the company's business claims.

M

Mein-Office Webdesign

mein-office.com

0

Mein-Office Webdesign is a small, established web agency based in Frankfurt am Main, Germany, with over 22 years of experience in delivering professional web design and development services. The company targets businesses and private clients seeking modern, responsive, and SEO-optimized websites, including specialized services for medical professionals. Their business model focuses on full-service digital agency offerings, including strategy, design, programming, maintenance, and consulting. The website reflects a consistent brand image and clear service offerings, supporting a high level of trustworthiness. Technically, the website is built on the REDAXO CMS platform and utilizes modern JavaScript libraries such as jQuery, flatpickr, and WOW.js to enhance user experience. The site is mobile-optimized and demonstrates good SEO practices with proper meta tags and structured navigation. Hosting is provided by IONOS SE, a reputable registrar and hosting provider. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and has domain transfer protections in place but lacks DNSSEC and explicit security headers, which are recommended to enhance security posture. The site includes a CAPTCHA on its contact form to mitigate spam. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. No incident response or security policy pages were found. Overall, the website is professional, secure enough for its business scope, and compliant with basic privacy regulations. Strategic improvements in security headers, DNSSEC, and cookie consent would enhance trust and compliance. The domain registration data supports the legitimacy and longevity of the business, with no suspicious indicators detected.

S

Stadt Offenbach am Main

offenbach.de

0

Stadt Offenbach am Main operates an official municipal website providing comprehensive information and services to its citizens, businesses, and visitors. The site features news, event listings, online services, and resources related to city governance and community engagement. It maintains a strong market position as the authoritative digital presence of the city government. The website is well-branded, professionally designed, and targets a broad audience including residents and tourists. The business model is focused on public service and information dissemination.

K

Kreativ-Instinkt GbR

kreativ-instinkt.de

0

Kreativ-Instinkt GbR is a small German production company specializing in corporate design, film production, and photography. The company operates primarily in the media sector, serving clients with image films, lifestyle photography, and corporate branding solutions. Their website reflects a professional and consistent brand presence with clear service offerings and client references. Technically, the site is built on Joomla CMS with common JavaScript libraries and integrates social media and marketing widgets. Security posture is moderate with basic protections like CSRF tokens and cookie consent but lacks advanced security headers and explicit security policies. Contact information is transparent and includes a named contact person, enhancing business credibility. Overall, the website is well-structured and trustworthy, though improvements in security and compliance documentation could enhance its maturity.

V

VISTEC Internet Service GmbH

vistec.net

0

VISTEC Internet Service GmbH is a well-established German internet service provider based in Wiesbaden, with over 25 years of experience. The company offers a broad range of services including internet access, IT service, server housing, data backup, security solutions, telephony, and web hosting. Their business model focuses on providing reliable and secure internet and IT infrastructure services primarily to business customers, emphasizing close customer relationships. The website is professionally designed using WordPress and Elementor, optimized for mobile devices, and includes SEO best practices. Technically, the site uses modern web technologies but lacks some advanced security configurations such as DNSSEC and security headers. The security posture is adequate with HTTPS enabled and domain transfer protections in place, but there is room for improvement in publishing security policies and incident response information. Overall, the domain is legitimate, consistent with the business claims, and the website content is safe and professional.

A

Ads&Friends

adsandfriends.de

0

Ads&Friends is a full-service marketing and communication agency based in Gießen, Germany, founded around 2018. The company offers a broad range of services including branding, web and digital solutions, and social media management, targeting businesses and organizations seeking professional marketing support. Their market position is that of a local/regional agency with a diverse client base including public institutions and private companies. Technically, the website is built on WordPress with modern plugins and frameworks, hosted on Amazon AWS infrastructure, and demonstrates good performance, mobile optimization, and SEO practices. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers and policies could be enhanced. Overall, the website is professional, trustworthy, and compliant with GDPR, featuring comprehensive privacy and cookie policies and a consent mechanism. No critical security or content safety issues were detected.

S

SKPD SAVA e.V.

sava-frankfurt.de

0

SKPD SAVA e.V. is a small non-profit Slovenian cultural and educational association based in Frankfurt, Germany, dedicated to promoting Slovenian language, culture, and community activities among the Slovenian diaspora. The website serves as a hub for news, events, language courses, and cultural programs, targeting Slovenians living in Germany and Europe. The organization collaborates with several partner sites and cultural groups to offer language camps, social events, and educational exchanges. The website is well-branded, consistent, and provides clear contact information and community resources. Technically, it is built on WordPress with common plugins and hosted on a German hosting provider, showing moderate performance and good mobile optimization.

A

ASV Köln e.V.

asv-koeln.de

0

ASV Köln e.V. is a well-established sports club based in Cologne, Germany, with a history spanning over 90 years. The organization offers a broad range of sports and fitness activities, including fitness courses, children's sports, various sports disciplines, and community events. The club targets a diverse audience including families, seniors, and sports enthusiasts, positioning itself as a central hub for active living in the Cologne region. The business model is primarily membership-based, supported by partnerships and sponsorships from local companies. The website reflects a professional and community-focused brand with strong trust indicators such as testimonials and partner logos. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and SVG graphics, with AJAX-enabled forms and a responsive design optimized for mobile devices. Hosting appears to be managed via your-server.de, and the site uses HTTPS with a valid SSL configuration. While no explicit CMS or major frameworks are detected, the site demonstrates good SEO and accessibility practices, though some improvements in security headers could be made. From a security perspective, the site enforces HTTPS, uses CSRF tokens in forms, and provides a cookie consent mechanism compliant with GDPR. However, no dedicated security policy or incident response contact information is found, and security headers are not evident in the provided data. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies, and user data collection is limited to necessary contact and newsletter forms. Overall, ASV Köln's website is a secure, professional, and user-friendly platform that effectively supports its community sports mission. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

Welcome Center Schwarzwald-Baar-Heuberg is a regional service organization focused on supporting international skilled workers and local companies in the Schwarzwald-Baar-Heuberg region of Germany. The center offers multilingual consulting, seminars, and assistance with recruitment and integration of foreign professionals. It operates under the auspices of regional economic development and the local Chamber of Industry and Commerce, supported by the Baden-Württemberg Ministry of Economy, Labor, and Tourism. The website reflects a professional and consistent brand presence with clear contact channels and active social media engagement. Technically, the website is built on WordPress using modern plugins such as WPML for multilingual support, Contact Form 7 for forms, and Bootstrap for responsive design. It employs hCaptcha for bot protection and Fathom Analytics for privacy-focused visitor tracking. The site is moderately performant and mobile-optimized, though accessibility features are basic. SEO is present but could be enhanced with more comprehensive metadata and structured data. From a security perspective, the site uses HTTPS and implements CAPTCHA on forms, but lacks visible security headers and explicit security or privacy policies. No vulnerability disclosure or incident response information is provided. The WHOIS data is consistent with the website's regional and organizational claims, indicating legitimacy. No suspicious patterns or privacy protection in WHOIS are noted. Overall, the website is trustworthy and professionally maintained but would benefit from improved privacy compliance documentation and enhanced security headers to strengthen its security posture and user trust.

I

Institut der deutschen Wirtschaft Köln Medien GmbH

iwmedien.de

0

IW Medien is a German full-service communication agency specializing in strategic communication for associations, foundations, companies, and political institutions. The agency focuses on making complex economic and socio-political topics accessible and actionable for its clients. Their market position is strong, supported by notable clients such as government ministries and industry associations, emphasizing their expertise in future-oriented communication solutions. Technically, the website is built on TYPO3 CMS with modern integrations like Google Tag Manager, Usercentrics for consent management, and Google reCAPTCHA for form security. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and consent mechanisms, though some security headers and explicit incident response policies could be improved. Overall, the website presents a professional, trustworthy, and compliant digital presence aligned with its business objectives.

T

TOP Sportmarketing Berlin GmbH

topsportonline.de

0

TOP Sportmarketing Berlin GmbH is a specialized sports marketing agency based in Germany, focusing on event organization, sponsorship, marketing communication, TV productions, and charity within the sports sector. The company targets sports organizations, sponsors, and event attendees primarily in Berlin, positioning itself as a regional player with a small business scale. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with common plugins such as Yoast SEO and WPML, hosted likely by 1&1 IONOS, and shows moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. Privacy compliance is partially met with a privacy policy present but no cookie banner. Contact information is limited on the main pages, which may affect user trust and engagement. Overall, the site is safe, professional, and trustworthy with room for improvement in security and privacy compliance.

M

Minor

minor-wissenschaft.de

0

Minor is a German-based social science research organization specializing in migration, integration, labor market, and democracy studies. The website presents a professional and well-structured platform showcasing ongoing and completed projects, targeting researchers, policymakers, and social organizations. The technical infrastructure is built on WordPress with modern plugins and analytics tools, hosted on reputable German servers. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though explicit security policies and incident response mechanisms are not publicly documented. Overall, the website reflects a credible and trustworthy research entity with good digital maturity.

P

P29 Group

p29.group

0

P29 Group is a German technology-focused company specializing in comprehensive digital security solutions, including compliance, IT security infrastructure, data protection, and employee sensitization. Founded in 2022, it operates through several subsidiaries with a combined experience of over 50 years, positioning itself as a reliable partner for businesses seeking robust security services. The website is professionally designed using WordPress and Elementor, reflecting a moderate to good level of digital maturity with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and security headers. Privacy compliance is strong with a comprehensive privacy policy, though cookie consent mechanisms are missing. Overall, the site is trustworthy and business credible, though improvements in security practices and transparency could enhance its posture.

nuLiga is a specialized platform operated by nu Datenautomaten GmbH, focused on providing automated internet-based network solutions for tennis associations and leagues primarily in Germany and Austria. The website serves as a portal for various regional tennis associations, offering both public and administrative access. The business targets tennis clubs and associations, providing league and club management services through a network of regional subdomains. The company has been established since 2003, indicating a mature presence in its niche market. Technically, the website uses basic HTML, CSS, and JavaScript without modern frameworks or CMS detected. The site performance and mobile optimization are basic, with no advanced SEO or accessibility features evident. The error page analyzed is minimalistic, with no forms or tracking scripts, and no evidence of advanced security headers or HTTPS enforcement from the provided data. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided. The domain registration data is consistent with the business claims, showing a legitimate and stable domain age. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is functional but basic, with room for improvement in security posture, privacy compliance, and technical modernization. The risk level is moderate due to missing security best practices but no critical vulnerabilities were found in the analyzed content.

B

BIÖG - Bundesinstitut für Öffentliche Gesundheit

sexualaufklaerung.de

0

sexualaufklaerung.de is a German government-backed portal operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG), providing comprehensive information, research, and educational materials on sexual education, contraception, and family planning. The website serves a broad audience including educators, health professionals, and the general public interested in these topics. It offers downloadable publications, research studies, and qualification programs, positioning itself as a trusted authoritative source in its domain. Technically, the site is built on TYPO3 CMS, uses Bootstrap for responsive design, and employs Matomo analytics with strong privacy protections such as IP anonymization and consent-based tracking. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital infrastructure. Security-wise, HTTPS is enforced, and privacy policies are comprehensive and GDPR compliant. However, explicit security headers and incident response policies are not clearly published, representing an area for improvement. WHOIS data aligns with the institutional nature of the site, showing no privacy protection or suspicious registrations, reinforcing its legitimacy. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy standards.

B

Bundesinstitut für Öffentliche Gesundheit

rauchfrei-info.de

0

The website www.rauchfrei-info.de is a professionally maintained, government-affiliated public health portal focused on tobacco cessation and related health education. It offers a variety of support services including forums, chat, telephone counseling, and educational resources, targeting smokers and individuals seeking to quit smoking in Germany. The site is well-positioned as a trusted source in the healthcare and non-profit sector with consistent branding and high-quality content. Technically, it is built on TYPO3 CMS with Matomo analytics, indicating a modern and privacy-conscious infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and secure forms, though some security headers and explicit security policies are not evident. Overall, the site is safe, mature content-wise, and trustworthy with no signs of blocking or WAF interference.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

impfen-info.de

0

The website www.impfen-info.de is a comprehensive public health information portal operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG) in Germany. It provides authoritative, up-to-date, and scientifically grounded information on vaccinations for various demographics including children, adolescents, adults, and pregnant women. The site supports public health goals by educating the population on immunization benefits, vaccination schedules, and legal frameworks such as the Masernschutzgesetz. It also offers interactive tools like vaccination checks and media resources to enhance user engagement. Technically, the site is built on the TYPO3 CMS platform, leveraging Matomo analytics configured with strong privacy protections such as IP anonymization and consent-based data collection. The design is modern, mobile-optimized, and accessible, ensuring a positive user experience. The site integrates social media channels for broader outreach and maintains consistent branding aligned with its government affiliation. From a security perspective, the site enforces HTTPS and employs privacy-conscious analytics but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious elements were detected. Privacy compliance is robust, with clear cookie consent mechanisms and GDPR adherence. The absence of direct contact emails or phone numbers on the main pages suggests a focus on information dissemination rather than direct user support. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government health information service. Strategic improvements could include publishing detailed security policies and enhancing security header implementation to further strengthen its security posture.

The website www.klima-mensch-gesundheit.de is a German government-affiliated public health information portal focused on educating the public about the health impacts of climate change. It offers a wide range of free educational materials including videos, posters, flyers, and interactive maps for heat, UV, and pollen warnings. The site is professionally designed, well-structured, and targets a broad audience including the general public, educators, health professionals, and vulnerable groups. It is supported by reputable government and health organizations, enhancing its trustworthiness. Technically, the site is built on TYPO3 CMS with modern web technologies such as Bootstrap and jQuery. It uses Matomo analytics with strong privacy protections including IP anonymization and no cookies without consent. The site is mobile-optimized and accessible, with good SEO practices. Hosting and DNS data indicate German-based infrastructure consistent with the site's government affiliation. From a security perspective, the site uses HTTPS and implements privacy-conscious analytics. However, explicit security headers and published security policies or incident response contacts are not detected. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the website presents a low risk profile with high content quality and strong privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to further improve trust and security posture.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

organspende-info.de

0

The website www.organspende-info.de is an authoritative German government-affiliated portal providing comprehensive information on organ and tissue donation, transplantation, and related topics. It serves the general public with educational content, downloadable organ donor cards, podcasts, and a dedicated information hotline. The site is well-positioned as a trusted source in the healthcare and public health sector in Germany, supported by the Bundesinstitut für Öffentliche Gesundheit (BIÖG). Technically, the site is built on TYPO3 CMS with a modern tech stack including jQuery, Matomo analytics, and various UI libraries. It demonstrates good digital maturity with mobile optimization, accessibility features, and GDPR-compliant privacy and cookie policies. The use of self-hosted Matomo analytics with IP anonymization reflects a strong privacy-conscious approach. From a security perspective, the site enforces HTTPS and employs privacy-respecting analytics but lacks publicly documented security policies or incident response contacts. No critical vulnerabilities or suspicious domains were detected. WHOIS data is minimal but consistent with a government-related domain, supporting legitimacy. Overall, the website presents a low-risk profile with strong content quality and privacy compliance. Strategic improvements include publishing formal security policies, incident response information, and enhancing security headers to further strengthen the security posture.

C

codecentric AG

codecentric.de

0

codecentric AG is a prominent IT consulting and agile software development company based in Germany, positioning itself as a leader in the German IT consulting market. The company offers IT management and consulting services with a focus on modern technologies and agile methodologies, targeting IT professionals and businesses seeking digital transformation. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, indicating a mature digital infrastructure. Security-wise, the site uses HTTPS and Google reCAPTCHA v3, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the website is accessible without WAF or blocking mechanisms, and no suspicious content or vulnerabilities were detected in the provided data.

L

LAC Eichsfeld

lac-eichsfeld.de

0

LAC Eichsfeld is a small, established non-profit sports club founded in 2001 in Germany, focusing on inclusive running activities, especially supporting visually impaired and blind runners through their Blindenlaufschule and Guidenetzwerk Deutschland. The website reflects a community-oriented organization with clear contact information and active engagement in guide training events. Technically, the site is built on Joomla CMS using Helix Ultimate framework and SP Page Builder, with modern libraries like jQuery and Bootstrap. The site is mobile optimized and uses HTTPS with GDPR-compliant cookie consent mechanisms. Security posture is good with CSRF protections and cookie blocking, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

S

Stadt Frankfurt am Main

stadt-frankfurt.de

0

The website frankfurt.de serves as the official city portal for Frankfurt am Main, providing comprehensive information and services related to municipal administration, citizen services, cultural events, and city politics. It targets residents, visitors, and businesses in Frankfurt, offering multilingual support and extensive navigation to various city departments and services. The portal positions itself as a trusted government resource with a large-scale digital presence and active social media engagement. Technically, the site employs modern web technologies including Bootstrap utilities, FontAwesome icons, media players, and translation scripts, ensuring good mobile optimization and accessibility. The site loads with moderate performance and includes SEO-friendly metadata and Open Graph tags, enhancing discoverability and social sharing. From a security perspective, the site enforces HTTPS and uses secure libraries, but lacks visible security headers and published security or incident response policies. No vulnerability disclosure or security.txt files were found. Privacy and cookie policies are not evident, which is a compliance gap. Contact information such as emails and phone numbers are not explicitly presented, limiting direct communication channels. Overall, the site is a professional and trustworthy government portal with good content quality and technical implementation. However, it would benefit from enhanced privacy compliance, explicit security policies, and clearer contact information to improve user trust and regulatory adherence.

L

Landesjugendring Berlin

ljrberlin.de

0

The Landesjugendring Berlin website serves as the digital presence of a non-profit umbrella organization representing 37 youth associations in Berlin. It focuses on youth political engagement, training programs such as Juleica, and project support. The website is built on Drupal 10 and employs Matomo analytics, reflecting a privacy-conscious approach. The site is well-structured, mobile-optimized, and provides clear navigation for its target audience of youth and youth organizations in Berlin. However, the absence of an explicit privacy policy and terms of service pages limits full compliance transparency. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and incident response information.

Sportjugendreisen.de is a website operated by the Sportjugend im Landessportbund Berlin e.V., a non-profit organization focused on providing children and youth sports travel programs in Berlin. The organization offers travel packages for 2025, staffed by trained volunteer teamers, and is supported by the Berlin Senate Department for Education, Youth and Family. The website serves as an information and booking platform targeting children, youth, parents, and potential volunteer teamers. The business model is non-profit, relying on government funding and volunteer support, positioning itself as a regional leader in youth sports travel services. Technically, the website is built on TYPO3 CMS with modern front-end technologies including Bootstrap 5 and Font Awesome 6. It integrates Matomo analytics configured to disable cookies, indicating a privacy-conscious approach. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, with no blocking or WAF detected, allowing full content access. From a security perspective, the site enforces HTTPS and uses Matomo analytics with cookie disabling, which is positive. However, it lacks security headers such as Content-Security-Policy and does not publish any security or incident response policies. There is no cookie consent mechanism despite analytics usage, which is a GDPR compliance gap. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website demonstrates a good level of professionalism, trustworthiness, and technical maturity suitable for a small non-profit organization. Strategic improvements in security headers, cookie consent, and published security policies would enhance compliance and security posture. The domain registration data aligns well with the business claims, supporting legitimacy and trust.

W

WABSOLUTE GmbH

ausbilden-mit-system.de

0

WABSOLUTE GmbH operates the website 'AUSBILDEN MIT SYSTEM', providing digital tools and management solutions for vocational training and education in Germany. Their offerings include software products like APPRENTIO and AZUBI-PLANER, targeting apprentices, trainers, and educational managers. The company has been active since at least 2014, positioning itself as a niche provider in the education technology sector focused on training management. Technically, the website is built on WordPress using the Avada theme, with integrations for SEO (All in One SEO), cookie management (Borlabs Cookie), and analytics (Google Analytics and Tag Manager). The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. Security posture is moderate; while HTTPS is implied, no explicit security headers were detected, and privacy compliance is limited due to missing explicit privacy and cookie policies. Contact information is limited to a phone number, with no verified company emails found. Overall, the website is professional and trustworthy but could improve in privacy compliance and security best practices.

A

APPRENTIO Ausbildungsplanung, Berichtsheft, Lernziele. Digital mit einem Tool.

apprentio.de

0

APPRENTIO is a German-based SaaS company specializing in digital apprenticeship management solutions tailored for companies, administrations, and educational centers. The platform offers comprehensive tools for training planning, report book management, and learning objectives, positioning itself as a leading tool in the apprenticeship management market. The website demonstrates a mature digital infrastructure built on WordPress with Elementor, optimized for SEO and mobile responsiveness. Security posture is strong, evidenced by ISO 27001 certification and GDPR compliance, with HTTPS enforced and cookie consent mechanisms in place. No critical vulnerabilities or suspicious content were detected, indicating a trustworthy and professional online presence. Strategic recommendations include enhancing security headers and publishing incident response and vulnerability disclosure policies to further strengthen security maturity.

S

Seeberger Professional GmbH

seeberger-b2b-shop.de

0

Seeberger Professional GmbH operates a B2B e-commerce platform targeting business customers in the food retail sector in Germany. The website serves as a login portal for customers to access ordering services. The business is positioned as a medium-sized regional player with a focus on professional clients. The platform is built on legacy ASP.NET Web Forms technology with basic mobile optimization and moderate performance. Security measures include standard ASP.NET anti-CSRF tokens and POST-based login forms, but lack modern security headers and bot protections. Privacy compliance is supported by a comprehensive privacy policy, though cookie consent mechanisms are absent. Overall, the site demonstrates moderate business credibility but could benefit from technical modernization and enhanced security practices.

P

Partnerschaft für Demokratie Offenbach am Main

demokratie-offenbach.de

0

The website demokratie-offenbach.de represents the 'Partnerschaft für Demokratie in Offenbach am Main', a government-supported initiative aimed at strengthening democratic values and preventing radicalization within the local community. It is funded by the German Federal Ministry for Family Affairs and supported by the Hessian Ministry of the Interior and the local city administration. The site targets citizens, youth, associations, and organizations in Offenbach, providing information about projects and engagement opportunities. The business model is non-commercial, focusing on public service and community engagement.

R

Ratisbona Compliance

ratisbona-compliance.de

0

Ratisbona Compliance is a specialized compliance service provider based in Regensburg, Germany, focusing on helping medium-sized companies fulfill their legal obligations efficiently and reliably. Their services include whistleblower protection systems, supply chain due diligence, youth protection officer services, and legal consulting tailored to the needs of the German Mittelstand. The website presents a professional image with clear service offerings and a quality seal, positioning the company as a trusted partner in legal compliance. Technically, the site is built on WordPress using Elementor and Astra theme, with modern features such as Lottie animations enhancing user experience. However, the site lacks visible privacy and cookie policies, security headers, and incident response information, which are important for compliance and security transparency. Overall, the security posture is moderate with HTTPS enabled but missing some best practices. The domain WHOIS data is minimal but consistent with the website's German business focus. No WAF or blocking mechanisms were detected, allowing full content access.

F

Fraport AG

frankfurt-airport.com

0

Fraport AG operates the Frankfurt Airport, one of the largest and busiest airports in Europe. The website provides comprehensive travel-related information including flight data, parking options, check-in services, and airline details. It targets travelers, visitors, and business partners with a professional and user-friendly digital presence. The site is well-structured, mobile-optimized, and integrates modern web technologies and consent management tools to ensure privacy compliance. Despite the lack of WHOIS data, the website's branding, social media presence, and content quality strongly support its legitimacy. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. Privacy policies and cookie consent mechanisms are implemented in line with GDPR requirements.

M

Minor

minor-kontor.de

0

Minor is a German non-profit project consulting and research organization focused on education, social research, and integration projects. The website presents a professional and well-structured portfolio of projects related to migration, democracy, and work. The organization targets societal groups, researchers, and NGOs with services including research, program consulting, further education, and networking. Technically, the site is built on WordPress with modern libraries and plugins, including GDPR-compliant cookie management and Google reCAPTCHA Enterprise for security. The security posture is good with HTTPS and consent mechanisms but lacks some advanced security headers and explicit incident response policies. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations.

I

IQ Consult gGmbH

faire-integration.de

0

Faire Integration is a German nationwide non-profit advisory service focused on providing free labor and social law consultation to refugees and migrants from non-EU countries. Coordinated by the Fachstelle Faire Integration under IQ Consult gGmbH, a subsidiary of DGB Bildungswerk e.V., the organization operates through multiple regional counseling centers and offers multilingual support. The website serves as an information hub with resources, videos, and contact points for beneficiaries. The project is funded by German federal ministries and the European Union, ensuring strong institutional backing and trustworthiness. Technically, the website is built on the KONTEXT-CMS platform with modern frontend technologies including Tailwind CSS and jQuery. It is mobile responsive and optimized for accessibility and SEO. The site uses Matomo analytics with an opt-in cookie consent mechanism, reflecting good privacy practices. Hosting is provided by Warenform, consistent with the CMS provider, indicating a stable technical infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security headers and published security or incident response policies, which could be improved to enhance trust and compliance. Privacy compliance is strong with a clear privacy policy and cookie consent banner. Business credibility is high due to transparent funding, partnerships, and professional content. Overall, Faire Integration presents a trustworthy, well-structured, and professionally maintained online presence supporting a socially important mission. Strategic improvements in security policy transparency and technical security headers would further strengthen its posture.

F

Federal Government of Germany

make-it-in-germany.com

0

Make it in Germany is an official federal government portal designed to assist skilled workers from abroad and employers with information on working, studying, and living in Germany. The website offers comprehensive resources including job listings, visa types, recognition of qualifications, and advisory services. It is well-positioned as a trusted government source with a strong market presence in the immigration and labor integration sector. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Matomo for analytics, Google Tag Manager, and Usercentrics for consent management. The site is mobile-optimized, accessible, and performs well, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses reCAPTCHA for form protection, and integrates consent management, indicating a solid security posture. However, explicit security headers could be verified for completeness. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low risk profile with high trustworthiness, though the absence of WHOIS registration data reduces transparency. Strategic recommendations include enhancing security header implementation, maintaining up-to-date third-party scripts, and conducting regular security audits.

B

Bundesministerium für Arbeit und Soziales

bmas.de

0

The Bundesministerium für Arbeit und Soziales (BMAS) operates an official government website providing comprehensive information on labor and social policy in Germany. The site serves a broad audience including citizens, businesses, and policymakers, offering detailed resources on employment, social security, migration, and workplace safety. The website is well-branded, consistent, and professionally designed, reflecting its status as a federal ministry portal. Technically, the site uses a government-specific CMS (Government Site Builder) with modern web technologies such as HTML5, CSS3, and JavaScript modules. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured navigation. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a public security policy or incident response contact, which are recommended for enhanced security posture. Privacy compliance is generally good, with a clear privacy policy present, though no cookie consent mechanism was detected. Overall, the site is trustworthy and authoritative, with a high legitimacy score based on domain registration and content alignment. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, and publishing a vulnerability disclosure or incident response policy to further strengthen security and compliance.

V

Volkshochschule Rüsselsheim

vhs-ruesselsheim.de

0

The Volkshochschule Rüsselsheim website serves as a local adult education provider offering a wide range of courses in society, profession, languages, health, and culture. It targets adult learners and integration course participants in the Rhein Main region of Germany. The site is built on the Cabacos CMS platform and employs modern web technologies including JavaScript libraries and Cookiebot for GDPR-compliant cookie management. Social media integration with Facebook and YouTube supports community engagement. The website content is well-structured, primarily in German, and provides comprehensive information about courses and services.

E

Embassy of the Islamic Republic of Pakistan

pakemb.de

0

The Embassy of the Islamic Republic of Pakistan in Berlin, Germany operates an official government website providing comprehensive information about Pakistan's leadership, bilateral relations, consular services, trade and investment opportunities, tourism, and community announcements. The site targets Pakistani nationals residing in Germany, German citizens interested in Pakistan, diplomats, travelers, and business communities. The website is built on WordPress using the Fusion Builder framework and integrates social media platforms such as Facebook and Twitter for outreach. While the site is well-structured and professionally designed, it lacks a published privacy policy and explicit contact details, which are important for transparency and user trust. Security posture is adequate with HTTPS enabled and nonce tokens used in forms, but security headers are missing and incident response information is not provided. Overall, the site is trustworthy and serves its governmental purpose effectively but could improve privacy and security disclosures.

T

TOP Sportmarketing Berlin GmbH

topsportberlin.de

0

TOP Sportmarketing Berlin GmbH is a specialized sports marketing agency based in Germany, focusing on event organization, sponsorship, marketing communication, and TV production within the sports sector. The company manages notable projects such as ISTAF Berlin and Olympiastützpunkt Berlin, targeting sports organizations, sponsors, and event attendees. The website is built on WordPress with common plugins like Yoast SEO and WPML, indicating a moderate level of digital maturity. The technical infrastructure is standard for a small to medium-sized agency, hosted likely by 1&1 IONOS, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy but could improve in privacy and security practices.

B

Bezirkssportbund Neukölln e.V.

bsb-neukoelln.de

0

Bezirkssportbund Neukölln e.V. is a local non-profit sports association based in Berlin, focused on supporting member sports clubs and organizing community sports events. The website serves as an informational portal for local sports enthusiasts and clubs in the Neukölln district, providing membership information, event details, and contact options. The organization positions itself as a community-centric entity with a clear local focus and a straightforward business model typical for non-profit associations. Technically, the website is built on WordPress using the Gutenberg editor and Go-X theme/plugins, employing modern web fonts and responsive design elements. The site is accessible over HTTPS with no detected blocking or WAF challenges, indicating a stable hosting environment. However, the technical implementation is basic with limited SEO and accessibility optimizations and no advanced analytics or tracking detected. From a security perspective, the site uses HTTPS but lacks important security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. The WHOIS data is minimal and lacks detailed registrant information, which slightly reduces trust but is not uncommon for small non-profits. No vulnerabilities or security incidents are evident from the provided data. Overall, the website is functional and serves its purpose as a local sports association portal but would benefit from enhanced privacy compliance features, improved security headers, and more transparent registrant information to increase trust and compliance with modern standards.

B

berlin-sport.de

berlin-sport.de

0

The website berlin-sport.de serves as a regional sports news portal focused on Berlin's broad and elite sports scene. It provides news, information, and community engagement features such as voting for sports awards. The site targets sports enthusiasts and local sports communities in Berlin. Technically, the site is built on WordPress using the Divi theme, hosted on German servers, and employs GDPR cookie consent mechanisms, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy policies, which are areas for improvement. Overall, the site is functional and safe for general audiences but would benefit from enhanced compliance and security documentation.