Security Directory

O

onesto Tigers Bayreuth Eishockey GmbH

onestotigers.de

0

onesto Tigers Bayreuth Eishockey GmbH operates a professional ice hockey team based in Bayreuth, Germany, competing in the Oberliga. The website serves as a comprehensive platform for fans and stakeholders, offering team information, ticket sales including season passes, news updates, and sponsorship opportunities. The organization maintains a strong regional presence with active engagement through multiple social media channels and partnerships with ticketing and streaming services. Technically, the website is built on WordPress with Elementor and WooCommerce, indicating a mature digital infrastructure suitable for e-commerce and content management. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies, reflecting adherence to GDPR requirements. Overall, the website and business present a trustworthy and professional image with clear contact and legal information.

W

Wildstyle Network

wildstyle-network.com

0

Wildstyle Network is a well-established digital agency based in Germany, with over 20 years of experience supporting global clients in digital transformation through innovative communication and technology solutions. The website reflects a professional and consistent brand image, targeting businesses seeking advanced digital services. Technically, the site is built on Drupal 9, leveraging modern web technologies and integrating consent management and analytics tools such as Cookiebot and Piwik/Matomo, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements like enabling DNSSEC and adding a security.txt file could enhance trust further. Overall, the site is compliant with GDPR and provides a good user experience with clear navigation and mobile optimization.

S

Stadtgeschichtliches Museum Leipzig

mxm-leipzig.de

0

The website mxm-leipzig.de represents a cultural and educational project by the Stadtgeschichtliches Museum Leipzig, offering an innovative augmented reality experience within the historic Alten Rathaus. It targets museum visitors and culture enthusiasts, providing digital storytelling that enhances the traditional exhibition. The project is well-positioned locally with strong institutional partnerships and funding support. Technically, the site is built on WordPress with modern JavaScript libraries and includes 3D AR content, delivering a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite Matomo analytics usage. Overall, the site is professional, trustworthy, and content-rich, supporting its non-profit cultural mission.

K

Kreativwirtschaft Sachsen-Anhalt e.V.

kwsa.de

0

Kreativwirtschaft Sachsen-Anhalt e.V. (KWSA) is a regional industry association representing cultural and creative professionals and companies in the German state of Sachsen-Anhalt. The organization focuses on supporting creative entrepreneurs through networking, knowledge transfer, events, and workshops, positioning itself as a key regional player in the creative economy. The website reflects this mission with clear information about services, events, and membership opportunities. Technically, the site is built on TYPO3 CMS, hosted by agenturserver, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no exposed sensitive data, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is adequate with a privacy policy and cookie information present, but no active consent mechanism is detected. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

S

Stadtwerke Lutherstadt Wittenberg GmbH

stadtwerke-wittenberg.de

0

Stadtwerke Lutherstadt Wittenberg GmbH is a regional utility provider serving the Wittenberg area in Germany, offering electricity, natural gas, heat, water, and telecommunications services to over 50,000 residents. The company operates a professional and content-rich website built on TYPO3 CMS, demonstrating a mature digital presence with good mobile optimization and accessibility features. Their online customer portal and clear contact channels enhance customer engagement and service delivery. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and certifications such as ISO and TSM, although explicit security policies and incident response information are not publicly disclosed. Overall, the website reflects a trustworthy and professional utility provider with a solid regional market position.

The Senioren und Pflegezentrum “Am Lerchenberg” gemeinnützige GmbH is a municipally owned non-profit senior care provider based in Lutherstadt Wittenberg, Germany. Established in 1984, it offers a comprehensive range of services including stationary and ambulatory nursing care, day care, senior housing, house emergency call systems, mobile meal services, and catering. The organization serves elderly citizens and their families, positioning itself as a trusted local care center with strong community ties and municipal backing. Technically, the website employs legacy JavaScript libraries such as jQuery 1.7.1 and Modernizr 2.5.3, with no explicit modern CMS detected. Hosting is managed via DomainControl nameservers. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site uses HTTPS but lacks visible security headers and employs outdated JavaScript libraries with known vulnerabilities. There is no cookie consent mechanism or explicit security policy documentation. Contact information is clearly presented, but incident response and vulnerability disclosure details are absent. Overall, the security posture is moderate but could be improved significantly. The website content is safe for general audiences, focusing on senior care without any adult or explicit content. The domain registration data is consistent with the business claims, though limited WHOIS details are available. Strategic recommendations include upgrading legacy scripts, implementing security headers, adding privacy and cookie compliance features, and establishing formal security policies to enhance trust and compliance.

W

Wittenberger Wohnungsbaugesellschaft mbH

wiwog.de

0

Wittenberger Wohnungsbaugesellschaft mbH (WIWOG) is the largest municipal housing provider in Wittenberg, Germany, offering a broad portfolio of rental apartments across various sizes and locations. The company targets local residents and tenants seeking affordable and managed housing solutions. Their business model focuses on municipal real estate management and tenant services, positioning them as a key player in the regional housing market. The website reflects a professional and consistent brand image with clear navigation and relevant content for their audience. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Elementor, ensuring good SEO and user experience. The site is mobile-optimized and uses HTTPS with a cookie consent mechanism compliant with GDPR. The technical infrastructure is moderate in performance and leverages common web technologies and frameworks like Bootstrap and jQuery. From a security perspective, the site enforces HTTPS and employs a robust cookie consent system via Borlabs Cookie plugin, providing granular user controls. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly observed, and no public security or incident response policies are published, indicating room for improvement in transparency and defense-in-depth. Overall, the website is trustworthy, compliant with privacy regulations, and professionally maintained. The risk profile is low, with recommendations to enhance security headers and publish security policies to further strengthen their security posture and stakeholder trust.

W

WBG Wittenberg

wbg.de

0

WBG Wittenberg operates as a regional real estate company specializing in housing and property management services in Wittenberg, Germany. The website is built on WordPress and integrates modern consent management tools such as Usercentrics, indicating a commitment to privacy compliance. The technical infrastructure includes standard web technologies and Google Maps integration for location services. Security posture is adequate with HTTPS enabled and consent mechanisms in place, but lacks explicit security policies and vulnerability disclosures. Overall, the website presents a professional image with good content quality and user experience, though it would benefit from enhanced transparency in privacy and security documentation.

E

eulenblick Kommunikation und Werbung

agentur-eulenblick.de

0

eulenblick Kommunikation und Werbung is a small, full-service advertising and communication agency based in Münster, Germany. The company offers a broad range of services including communication, marketing, website development, and flyer design, targeting both business enterprises and non-profit organizations. The website reflects a professional local agency with a clear focus on effective communication and advertising tailored to its clients' needs. Technically, the website is built on TYPO3 CMS and incorporates modern JavaScript libraries and frameworks, ensuring a good user experience with mobile optimization and moderate performance. Security-wise, the site enforces HTTPS, uses Google Analytics with IP anonymization, and implements a cookie consent mechanism, demonstrating good privacy compliance. However, it lacks explicit security headers and a formal security policy or incident response contact. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, with no signs of blocking or suspicious activity.

E

evian

evian.com

0

Evian is a premium natural mineral water brand with a rich heritage of over 230 years, sourcing water from the French Alps. The website targets German consumers with detailed product information, sustainability initiatives, and brand storytelling. Technically, the site is built on TYPO3 CMS with modern web technologies and includes standard security features such as HTTPS and reCAPTCHA. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. However, the absence of WHOIS data for the domain is unusual and warrants further investigation. Overall, the site demonstrates a strong brand presence and good digital maturity with room for improvement in security transparency and incident response disclosures.

A

Alpro

alpro.com

0

Alpro is a prominent European brand specializing in plant-based food and beverage products, targeting health-conscious and environmentally aware consumers. The company operates under the parent company Danone and maintains a strong market position in the dairy alternative sector. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the site leverages modern frameworks such as Next.js and React, ensuring fast performance and good SEO. Security measures including HTTPS and security headers are properly implemented, though the absence of a dedicated security policy and incident response page suggests room for improvement. The lack of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the brand's established reputation. Strategic recommendations include enhancing transparency around security policies and verifying domain registration details to strengthen trust.

A

Axians IKVS GmbH

axians-ikvs.de

0

Axians IKVS GmbH is a German-based company specializing in providing digital financial management solutions and consulting services to public sector entities such as municipalities, municipal utilities, and state administrations. With approximately 600 customers across 15 federal states, including major cities like Hamburg and smaller municipalities, the company offers a suite of services including interactive financial control, automated reporting, key performance indicators, cloud services, and digital transformation support. The company operates under the parent group Axians and VINCI Energies, indicating strong backing and market presence. Technically, the website is built on WordPress with a modern plugin ecosystem including Yoast SEO for optimization, Events Manager for event handling, and responsive design elements ensuring good mobile usability. The site employs HTTPS with strong SSL configuration and uses cookie consent mechanisms to comply with GDPR. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and no visible sensitive data exposure. The absence of a vulnerability disclosure policy and incident response contact points suggests room for improvement in transparency and readiness. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website and business present a professional and trustworthy digital presence with solid technical implementation and compliance posture. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and security posture.

Qbus Werbeagentur GmbH operates in the advertising and agency sector, with a domain registered since 2017 in Germany. The website qbus.io serves primarily as a minimal placeholder or redirect page linking to the main business site at qbus.de. The site lacks substantive content, contact information, and standard compliance policies such as privacy or cookie policies. Technically, the site is basic with no detected CMS or advanced frameworks, and no security headers or DNSSEC enabled, indicating room for improvement in security posture. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website's digital maturity is low, with minimal user engagement features and limited SEO or accessibility optimizations.

V

Verlag Herder GmbH

herder.de

0

Verlag Herder GmbH operates the website herder.de, a German publishing platform specializing in books, magazines, and educational content primarily focused on theology, pedagogy, religion, and related cultural topics. The company maintains a medium-sized presence in the media industry with a clear market position as an established publisher offering both physical and digital products. The website targets a broad audience including educators, religious communities, and general readers interested in these themes. Technically, the site is built on a custom ASP.NET WebForms platform, integrating modern web technologies such as lazy loading and cookie consent management via Usercentrics. The infrastructure supports a moderate performance level with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and secure login forms, though there is room for improvement in implementing security headers and publishing formal security policies. Privacy compliance is partially addressed through cookie consent but lacks visible privacy and terms of service documentation. Overall, the domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness.

V

Verlagsgruppe Patmos

patmos.de

0

Verlagsgruppe Patmos operates an online bookstore specializing in psychology, biographies, religion, and spirituality literature, targeting German-speaking audiences. The website is built on Magento 2, leveraging modern JavaScript frameworks and third-party tools such as Google Tag Manager, Hotjar, and Cookiebot for analytics and cookie consent management. The technical infrastructure is solid with HTTPS enforced and a mature e-commerce platform. Security posture is good, though the absence of explicit security headers and published privacy or terms policies suggests room for improvement. Overall, the site is professional, trustworthy, and compliant with cookie consent regulations, but would benefit from enhanced transparency and security documentation.

S

SCM Hänssler

scm-haenssler.de

0

SCM Hänssler operates as a Christian-focused e-commerce retailer specializing in books, music, and related products. The website serves a German-speaking audience with a broad catalog of Christian literature and media, positioning itself as a trusted provider within this niche. The business model centers on online retail with a strong emphasis on customer service and compliance with European data protection regulations. Technically, the site is built on the Magento platform, leveraging modern web technologies and analytics tools such as Google Analytics and Matomo. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

Cicero Design GmbH

cicerodesign.de

0

Cicero Design GmbH is a small, professional creative agency based in Lutherstadt Wittenberg, Germany, specializing in corporate design, brand development, and web design with their proprietary CMS called CIDEMOS. The company offers a full range of marketing services including print production and advertising technology, targeting businesses and brands across Germany. Their website demonstrates a strong market position with clear service offerings and a consistent brand image. Technically, the site is built on a custom CMS platform with modern web technologies, responsive design, and integration of Google Analytics and Google Maps, all managed with user privacy in mind through a cookie consent mechanism. Security posture is good with HTTPS and CSRF protections, though some security headers and explicit policies are missing. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

I

incognito digitale lösungen

incognito.ms

0

Incognito digitale lösungen is a small German technology service provider specializing in digital solutions including conception, UI/UX design, programming, and hosting since 2006. The website is professionally designed using modern web technologies such as Nuxt.js and TailwindCSS, providing a good user experience and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy despite the active and professional web presence. Security posture is moderate with HTTPS likely enabled but lacking visible security headers and formal privacy or cookie policies. The site uses Matomo analytics, indicating moderate user tracking but lacks clear privacy compliance indicators. Overall, the business appears credible but would benefit from improved transparency and security practices.

LitVideo, operated by qub media GmbH, provides a specialized online platform for distributing book trailers to online shops and websites, targeting publishers, authors, bloggers, and online retailers. The website serves as a niche marketing tool provider within the German media sector, focusing on enhancing product visibility through video content. The business model centers on B2B services facilitating video marketing content placement, with a consistent brand presence and basic but relevant content quality. Technically, the website employs standard web technologies including HTML5, CSS, JavaScript, and jQuery 1.x, alongside Google Analytics for visitor tracking. While the site is accessible and functional, it shows signs of technical debt such as the use of an outdated jQuery version and lacks advanced SEO, accessibility, and mobile optimization features. The hosting provider is not explicitly identified, and no CMS is detected. From a security perspective, the site uses HTTPS but lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance and overall security posture. The outdated jQuery version poses a potential vulnerability risk. No incident response or security policy information is provided, limiting transparency in security management. Overall, the website is moderately secure and professionally credible but would benefit from technical modernization and enhanced privacy compliance measures. Strategic improvements in security headers, updated libraries, and cookie consent implementation are recommended to strengthen trust and regulatory adherence.

U

Umbreit Content

umbreitcontent.de

0

Umbreit Content appears to be a German-based content platform or service requiring user authentication, as evidenced by the login page. The website is built on Drupal 10 CMS with the Gin theme, indicating a modern and maintainable technical infrastructure. The site is mobile optimized and uses standard web technologies such as jQuery and FontAwesome. However, the public-facing content is minimal, focusing solely on user login without additional business or contact information. Security posture is moderate with secure form inputs but lacks visible security headers and public security policies. No privacy or cookie policies are present, which may impact compliance. Overall, the site is functional and safe but lacks transparency and comprehensive user-facing information.

SoftLevel Communication GmbH operates buchhandelsweb 2.0, a specialized web shop platform designed for independent bookstores in Germany. The platform integrates extensive book catalogs and offers a 24/7 online presence tailored to regional book retailers, emphasizing personalized customer service. The company has evolved from a family-run book trade business into a software provider with a niche focus on the book retail sector. Technically, the website uses a modern but straightforward tech stack including Bootstrap and jQuery, ensuring mobile responsiveness and a professional user experience. Security posture is adequate with HTTPS usage but lacks advanced security headers and published policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

Beltz Verlagsgruppe is a well-established German publishing group specializing in children's books, youth literature, pedagogy, psychology, and social work publications. The company targets educators, parents, professionals, and young readers, offering a broad range of books, journals, and educational materials. Their market position is solid within the German education and publishing sector, supported by multiple imprints and partner publishers. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on TYPO3 CMS with modern web technologies, providing a responsive and moderately performant user experience. Security posture is good with HTTPS enforced and cookie consent implemented, though additional security headers and explicit security policies could enhance protection. Privacy compliance is strong with GDPR-aligned policies and contact information clearly provided. Overall, the site is trustworthy, safe, and professionally maintained, with moderate use of tracking technologies balanced by consent mechanisms.

L

LIMZ Solutions GmbH

limz.de

0

LIMZ Solutions GmbH is a German-based digital agency founded in 2015, specializing in communication and digital transformation services. The company leverages over 10 years of agency experience to deliver effective communication and digital solutions tailored for business success. Positioned as a professional and established player in the technology sector, LIMZ targets businesses seeking comprehensive digital and communication services. The website reflects a mature digital infrastructure with a custom CMS platform, modular design, and good mobile optimization. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks explicit security policy and incident response contacts. The use of an outdated jQuery version suggests a need for modernization to mitigate potential vulnerabilities. Overall, LIMZ presents a trustworthy and professional online presence with strong business credibility and compliance with GDPR.

L

LIMZ Solutions GmbH

limz.com

0

LIMZ Solutions GmbH is a German-based digital agency founded in 2015, specializing in communication and digital solutions for business clients. The company positions itself as an experienced provider with over 10 years in the agency business, offering effective communication and digital services to support client success. Their market presence is medium-sized with a focus on technology-driven solutions. Technically, the website is built on a custom LIMZ CMS platform, leveraging jQuery and Google Analytics, hosted on German servers via Goneo. The site is well-structured, mobile-optimized, and uses modern web practices including structured data for SEO and accessibility. Security-wise, the site enforces HTTPS and cookie consent with opt-in, but lacks explicit security policies and some HTTP security headers. Overall, the security posture is good but could be improved by updating libraries and adding security headers. The website is professional, trustworthy, and compliant with GDPR, making it suitable for business clients seeking digital agency services.

S

Stiftung Lesen

stiftunglesen.de

0

Stiftung Lesen is a prominent German non-profit foundation dedicated to promoting reading competence among children and youth. The website showcases a comprehensive range of projects, campaigns, and educational offers targeting families, educators, and social institutions. It holds a strong market position as a leading literacy promoter in Germany, collaborating with ministries, scientific bodies, and other foundations. The site content is rich, professionally designed, and well-structured, reflecting the foundation's mission and values clearly.

B

buff.rocks GmbH

buff.rocks

0

buff.rocks GmbH is a German advertising and digital agency based in Magdeburg, specializing in creative strategy, design, TYPO3 CMS web projects, campaigns, content marketing, hosting, and digital transformation services. The company positions itself as a regional expert with over 20 years of TYPO3 experience and is part of the +Pluswerk network, enhancing its market credibility. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive service descriptions, targeting businesses and organizations seeking digital agency services. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as Splide.js for carousels and Matomo for analytics, with a cookie consent mechanism in place. The site demonstrates good SEO and accessibility practices, with structured data markup enhancing search engine understanding. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. The WHOIS data is incomplete and malformed, limiting domain registration transparency and trust verification. Despite this, the website content, customer testimonials, and external trust signals such as ProvenExpert reviews and industry memberships support the legitimacy of the business. No adult or questionable content is present, making the site safe for general audiences. Overall, buff.rocks GmbH presents a credible, professional digital agency with a strong regional presence and modern technical infrastructure. Improvements in domain registration transparency and explicit security documentation would further enhance trust and compliance.

T

termin-direkt

termin-direkt.de

0

termin-direkt.de operates as a German-based SaaS platform specializing in online appointment booking and calendar management tailored for various industries including fitness, healthcare, coaching, beauty, education, and veterinary services. The platform offers automated reminders, multi-employee scheduling, and customizable booking interfaces, positioning itself as a mature and trusted solution with a significant monthly appointment volume and a broad customer base. The website is professionally designed, content-rich, and provides clear navigation and multi-language support, enhancing user experience and accessibility. Technically, the website leverages modern JavaScript libraries such as Swiper.js, integrates Google Analytics and Facebook Pixel for marketing and analytics, and is hosted on Amazon AWS infrastructure. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS, complies with GDPR, and implements a cookie consent mechanism, though it lacks explicit security headers and a public security policy or incident response contact. No vulnerabilities or suspicious content were detected. Overall, termin-direkt.de presents a low-risk profile with strong business credibility and privacy compliance. The absence of a formal security policy and vulnerability disclosure channel represents an area for improvement. The domain WHOIS data aligns well with the website's claims, reinforcing legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen trust and security posture.

M

meettle GmbH

miracode.io

0

MIRAcode, operated by meetle GmbH, is a specialized technology service provider focusing on consulting and production of interactive applications, leveraging gamification and modern digital technologies such as AR, VR, and game engines like Unreal and Unity. The company targets businesses and organizations seeking innovative digital solutions to enhance engagement and learning experiences. The website demonstrates a professional and consistent brand presence with a clear portfolio of projects and services, indicating a niche market position in gaming technology solutions. Technically, the website is built on WordPress with Elementor, utilizing modern web technologies and frameworks. The infrastructure appears stable with moderate performance and good mobile optimization. However, there is room for improvement in accessibility and SEO features. The hosting provider is not explicitly stated but DNS records indicate Microsoft Online services. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks DNSSEC and security headers, which are recommended to enhance protection. No explicit privacy, cookie, or security policies are published, and no incident response or vulnerability disclosure information is available, indicating gaps in compliance and transparency. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security best practices, and clearer contact and policy information to improve user trust and regulatory adherence.

onesto GmbH operates a specialized Order Management System and Internet Booking Engine designed for corporate travel management. Their platform connects organizations with travel agencies and service providers such as airlines, rail, hotels, and car rentals, offering real-time, worldwide booking capabilities. The company emphasizes secure, certified data protection and PCI DSS compliance, positioning itself as a trusted provider in the transportation sector. Their product suite includes flight, rail, car, hotel bookings, and a mobile app for travel management, targeting corporate clients and business travelers primarily in Germany. Technically, the website is built on WordPress with common libraries like jQuery and Slick Carousel, hosted by Schlund Technologies. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO could be improved. Security certifications such as ISO 27001 and PCI DSS are prominently displayed, indicating a mature security posture. However, the absence of explicit security headers and cookie consent mechanisms suggests areas for enhancement. The security posture is solid with HTTPS enforced and certified frameworks in place, but lacks published incident response or vulnerability disclosure policies. No WAF or blocking mechanisms were detected, and no vulnerabilities or exposed sensitive data were found in the analysis. Contact information is complete and transparent, supporting business credibility. Overall, onesto GmbH presents a professional, secure, and trustworthy online presence suitable for its B2B business travel management market. Strategic improvements in privacy compliance and security transparency would further strengthen their position and reduce risk.

H

H₂ercules Initiative

h2ercules.com

0

The H₂ercules initiative website represents a collaborative project focused on developing a hydrogen infrastructure network in Germany, involving major energy companies such as RWE and Open Grid Europe. The site provides detailed information about hydrogen production, import options, transport, storage, and consumption, targeting industrial stakeholders and policymakers. The digital infrastructure is built on Sitecore CMS with modern frontend technologies and includes GDPR-compliant privacy and cookie management. Security posture is good with HTTPS and consent management, though explicit security policies and incident response information are absent. The missing WHOIS data for the domain is a notable concern for domain legitimacy verification, but the professional content and partner associations support trustworthiness. Overall, the website is well-designed, informative, and serves as a credible platform for the hydrogen initiative.

RWE AG operates a comprehensive transparency platform providing detailed real-time data on electricity generation from its power plants across multiple countries, primarily Germany, the Netherlands, the UK, and the USA. The website serves as a free resource for the public and market participants, showcasing RWE's commitment to transparency and compliance with European energy market regulations. The platform uses modern web technologies including Angular and integrates consent management tools to ensure GDPR compliance. While the site is professionally designed and content-rich, the absence of WHOIS registration data for the domain raises questions about domain legitimacy, although the content and branding strongly align with RWE AG's corporate identity. Security posture is generally strong with HTTPS and consent mechanisms, but could be improved with explicit security headers and incident response information. Overall, the site is a valuable resource with moderate risk due to domain registration opacity.

The RWE Foundation website represents a corporate social responsibility initiative by RWE AG, a major energy company based in Germany. The foundation focuses on sustainable social change through funding charitable projects, supporting education, and providing humanitarian aid. The website is professionally designed, multilingual (German and English), and provides clear navigation to key sections such as funding principles, projects, application forms, and contact information. The presence of an annual report and CEO statement adds to the trustworthiness and transparency of the foundation. Technically, the website is built on the Sitecore CMS platform, utilizing modern web technologies including JavaScript, CSS, and HTML5. It integrates Usercentrics for cookie consent management and Etracker for analytics, demonstrating compliance with GDPR and privacy best practices. The site is mobile-optimized and accessible, with good SEO and performance characteristics. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms effectively. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is unusual but the website's professional presentation and corporate backing mitigate concerns. Overall, the site demonstrates a solid security posture with room for improvement in transparency and security policy publication. The overall risk assessment is low, with recommendations to enhance security headers, publish a security policy and incident response contacts, and consider adding a vulnerability disclosure or security.txt file to improve trust and security culture.

B

Bundesministerium für Arbeit und Soziales (BMAS)

esf.de

0

The website www.esf.de is the official portal for the European Social Fund (ESF) in Germany, operated by the Bundesministerium für Arbeit und Soziales (BMAS). It serves as a comprehensive information and service platform providing details on funding programs, social integration, employment initiatives, and related EU projects. The site targets a broad audience including employees, unemployed persons, educational institutions, entrepreneurs, families, and other social groups. It is positioned as a key government resource for promoting employment and social cohesion through EU funding mechanisms. Technically, the site is built on the Government Site Builder CMS and employs modern web technologies such as jQuery, Bootstrap, RequireJS, and integrates a consent management platform (Consentmanager.net) for GDPR compliance. Analytics are handled via Etracker, with scripts loaded asynchronously to optimize performance. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and consistent branding. From a security perspective, the site enforces HTTPS and uses a consent management platform to handle privacy and cookie policies. While explicit security headers are not visible in the HTML, the overall posture is strong with no exposed sensitive data or vulnerabilities detected. The WHOIS data aligns with a legitimate government domain, showing consistent registration and authoritative name servers. Overall, the website demonstrates a high level of professionalism, compliance, and trustworthiness, making it a reliable source for information on the European Social Fund in Germany.

The Commerzbank-Stiftung is a reputable non-profit foundation affiliated with Commerzbank AG, focusing on funding projects in culture, social affairs, and science to foster a sustainable and inclusive society in Germany. The website reflects a professional and consistent brand image, providing detailed information about funding opportunities, awards, and current news. The foundation targets non-profit organizations and project initiators seeking financial support and recognition. Technically, the site is built on TYPO3 CMS with modern SEO and user experience features, including responsive design and multimedia content. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site demonstrates high trustworthiness and business credibility.

S

Social Impact

socialimpact.eu

0

Social Impact is a German-based agency specializing in social innovation projects aimed at addressing societal challenges for a just and sustainable future. The website positions itself as a niche player in the non-profit sector, offering consultancy and project development services focused on social impact. The digital infrastructure is built on TYPO3 CMS, enhanced with modern tracking and consent management tools such as Google Analytics, Google Tag Manager, and Usercentrics for GDPR compliance. The website demonstrates good SEO practices and mobile optimization, though lacks explicit privacy and terms of service pages. Security posture is adequate with HTTPS enabled and consent mechanisms in place, but could be improved by adding security headers and publishing formal security policies. Overall, the site is professional and trustworthy with moderate tracking and no suspicious content detected.

N

NBank

nbank.de

0

NBank is the official investment and development bank of the German state of Niedersachsen, providing a broad range of funding programs, consulting, and support services to individuals, companies, municipalities, and institutions within the region. The website reflects a strong government affiliation with clear communication of its mission to foster growth and quality of life in Niedersachsen. The digital infrastructure is modern and well-implemented, featuring responsive design, accessibility considerations, and integration with consent management and analytics tools. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response information are not publicly disclosed. Overall, the website presents a trustworthy and professional front for a large government entity.

H

Holii - Holistic Impact Incubator

holii.de

0

Holii - Holistic Impact Incubator is a small educational incubator project affiliated with Leuphana University in Germany, focused on supporting impact-driven startups and founders through a structured program involving design thinking, impact measurement, and financing. The website presents a professional and consistent brand image with clear descriptions of services and partnerships with multiple universities and research institutions. Technically, the site is built on WordPress using Elementor and related plugins, optimized for performance and SEO, and is mobile responsive. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, but could improve transparency and security practices.

C

Contact & Cooperation Lüneburg e.V.

contact-cooperation.de

0

Contact & Cooperation Lüneburg e.V. is a well-established student consultancy affiliated with Leuphana University in Germany. The organization bridges academic knowledge with practical business consulting, serving a diverse client base from startups to global enterprises. Their business model is non-profit and focuses on providing students with real-world consulting experience while delivering value to partner companies. The website reflects a professional and consistent brand image with comprehensive content and clear navigation, targeting students and businesses alike. Technically, the website is built on WordPress using the Avada theme framework, incorporating modern libraries such as jQuery and FontAwesome. It integrates social media feeds and GDPR-compliant cookie consent mechanisms, indicating a mature digital infrastructure. Hosting appears to be managed by kasserver.com, with proper SSL and security headers in place, contributing to a secure browsing experience. From a security perspective, the site enforces HTTPS, employs security headers, and uses anti-spam measures like honeypot plugins. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance transparency and readiness. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website presents a low-risk profile with strong compliance to privacy regulations and a trustworthy business presence. Strategic recommendations include publishing explicit security and incident response policies, adding vulnerability disclosure mechanisms, and continuous monitoring of third-party plugins to maintain security posture.

P

Playful Business

moonshot.game

0

Moonshot is a specialized innovation game designed to facilitate creative processes within companies and startups by making innovation playful and engaging. The business operates primarily in Germany and targets corporate clients, trainers, and individuals interested in enhancing creativity and innovation culture. Their offerings include workshops, an academy for training game masters, and a lab for customization, supported by a professional website with strong branding and client trust signals. Technically, the website employs modern JavaScript libraries such as jQuery and particles.js, integrates Mailerlite for marketing forms, and uses Goatcounter for privacy-friendly analytics. The site is mobile-optimized, well-structured, and SEO-friendly. Security posture is good with HTTPS and domain transfer protections, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is strong with clear policies, though a cookie consent mechanism is missing. Overall, the website and business present a trustworthy, professional image with no signs of malicious activity or content safety concerns.

F

FabLab Lüneburg e.V.

fablab-lueneburg.org

0

FabLab Lüneburg e.V. is a non-profit community maker and hack space established in 2015 in Lüneburg, Germany. It provides an open MakerSpace equipped with tools such as 3D printers and laser cutters, and a HackSpace focused on Free and Open Source Software (FOSS). The organization operates primarily on donations and memberships, fostering a collaborative environment for technology enthusiasts and hobbyists. The website is well-structured, content-rich, and targets local community members interested in technology and DIY projects. Technically, the website is built on WordPress 6.8.3 with common plugins like Jetpack and All-in-One Event Calendar. It uses modern web technologies including jQuery and Google Fonts, and implements HTTPS with good SSL configuration. The site is mobile-optimized and accessible, with a cookie consent mechanism compliant with EU regulations. Analytics are minimal and privacy-conscious, using Jetpack Stats. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security or incident response policies. WHOIS data is unavailable due to privacy protection, which is justified for this non-profit entity. No suspicious or malicious indicators were found. Overall, the site demonstrates a good security posture for its type and size. The overall risk is low, with recommendations to enhance HTTP security headers and publish incident response information. The site is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable resource for its community audience.

R

Redeleit und Junker

redeleitundjunker.de

0

Redeleit und Junker is a German design and branding agency specializing in transforming ideas into remarkable brands through services such as branding, web design, print, packaging, photography, and online marketing. The company targets businesses seeking professional creative services and maintains a consistent brand presence online. The website is built on WordPress and integrates modern marketing and analytics tools including Google Tag Manager, Hotjar, and Cookiebot, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though formal security policies and incident response contacts are not published. Overall, the website is professional, compliant with GDPR, and trustworthy, with room for improvement in accessibility and explicit security disclosures.

S

Startup Port

startupport.de

0

Startup Port is a regional startup support organization focused on qualifying, networking, and promoting technology and knowledge-based startups in the Hamburg metropolitan region and neighboring German states. It aggregates support offerings from ten universities and research institutions, targeting students, researchers, graduates, and startups. The website is built on WordPress with Elementor and uses privacy-conscious Matomo analytics. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and cookie consent mechanisms are missing. The domain registration is consistent with the business purpose, though WHOIS details are minimal. Overall, the site presents a professional, trustworthy, and well-structured platform for startup support.

E

Elevator - Startups Lüneburg

startups-lueneburg.de

0

Elevator - Startups Lüneburg is a regional accelerator program based in Lüneburg, Niedersachsen, Germany, focused on supporting startups primarily in the IT and media sectors. Founded in 2017 and operated by Wirtschaftsförderung Lüneburg, it offers coaching, office space, and networking opportunities to startups in early growth phases. The program is free to join and equity-free, positioning itself as a key enabler in the regional startup ecosystem. The website is professionally designed using WordPress and Elementor, with a modern tech stack and multiple Jet plugins enhancing functionality. Consent management is implemented via Usercentrics, reflecting GDPR awareness. However, the absence of a published privacy policy and terms of service represents a compliance gap. Security posture is solid with HTTPS and no visible vulnerabilities, but lacks explicit security policies and security headers. Overall, the site is trustworthy and well-positioned but could improve transparency and compliance documentation.

C

Cobot

cobot.me

0

Cobot is a well-established technology company founded in 2010, specializing in coworking space management software. Their platform offers a comprehensive suite of tools including mobile apps, booking systems, invoicing, access control, analytics, and member management. Serving over 90 countries, Cobot positions itself as an intuitive and scalable solution for coworking operators. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site leverages modern web technologies and frameworks, including Ruby on Rails and Google Tag Manager, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS, CSRF protections, and cookie consent mechanisms, though explicit security policies and vulnerability disclosure pages are absent. WHOIS data is unavailable due to query failure or privacy protection, but the website's consistency and trust signals support legitimacy. Overall, Cobot presents a credible and professional SaaS business with a solid market position in the coworking software industry.

Luna Giro is a regional online platform affiliated with Sparkasse Lüneburg, offering a suite of financial and lifestyle services including banking account models, cashback programs, travel booking, and ticketing services. The website targets consumers in the Lüneburg region, providing localized benefits and incentives. Technically, the site employs modern web technologies such as the Ionic framework, Font Awesome icons, and integrates Google Tag Manager and Usercentrics for analytics and consent management. The hosting includes Amazon S3 for static assets, indicating a hybrid hosting approach. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and detailed security policies are absent. Contact information is clearly presented, and the site maintains a professional design with good mobile optimization. Overall, the website is trustworthy and well-positioned within its regional banking and service niche.

W

Westsächsische Hochschule Zwickau

whz.de

0

The Westsächsische Hochschule Zwickau is a regional university of applied sciences in Germany offering a broad range of study programs in technology, economics, and quality of life disciplines. The website serves students, prospective students, alumni, and international visitors with detailed information about study offerings, research, and campus life. The institution positions itself as a practical and accessible higher education provider with a strong regional and international profile. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper, and integrates Matomo for analytics. The site demonstrates good mobile optimization, accessibility features including visual aids, and a comprehensive navigation structure. Hosting appears to be managed by academic or regional providers, consistent with the institution's profile. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly detailed, and security headers are not evident. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its educational mission effectively. Strategic improvements in security transparency and header implementation could further enhance its posture.

W

Westsächsische Hochschule Zwickau

techniknacht-zwickau.de

0

The website www.techniknacht-zwickau.de serves as an informational platform for the 'Lange Nacht der Technik' event organized by the Westsächsische Hochschule Zwickau. It targets technology enthusiasts, students, and the general public interested in science and technology events. The site provides event details, images, and partner information, positioning itself as a regional educational event organizer with strong academic and community ties. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery, Swiper.js, and Magnific Popup for interactive content. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were found. The WHOIS data aligns well with the institution, indicating high legitimacy. Overall, the website presents a low-risk profile with good content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its posture and trustworthiness.

WireHeadZ is an eSports association linked to the Westsächsische Hochschule Zwickau, focusing on integrating gaming, academic research, corporate cooperation, and community building. The organization targets students, eSports enthusiasts, and companies interested in innovative event management and talent networking. The website reflects a professional and modern digital presence, leveraging Next.js and Prismic CMS, hosted on Vercel, ensuring fast performance and mobile optimization. Security posture is solid with HTTPS and secure forms, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the site is trustworthy and well-positioned within its niche, supported by multiple corporate partners and sponsors.

W

WHZ Racing Team

whz-racingteam.de

0

The WHZ Racing Team website represents a student-led Formula Student racing team affiliated with the Westsächsische Hochschule Zwickau in Germany. The team focuses on designing, building, and competing with innovative racing vehicles in international Formula Student competitions. The site targets students, motorsport enthusiasts, and potential sponsors, providing detailed information about the team, vehicles, events, and contact points. The business model is non-commercial, centered on education, technical development, and motorsport passion. Technically, the website is built on TYPO3 CMS with standard web technologies including jQuery and Magnific Popup. It uses HTTPS and integrates Piwik analytics for visitor tracking. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and professional design. However, accessibility and SEO optimizations are basic, and some modern security headers are missing. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance. No vulnerabilities or malicious content were detected. The WHOIS data aligns well with the university infrastructure, supporting legitimacy. Overall, the website is trustworthy and professional but could improve privacy compliance and security posture by adding cookie consent, security headers, and clear privacy/security policies.

EUROPE DIRECT Bayerischer Wald - Böhmerwald - Unterer Inn operates as a regional EU information and cultural engagement center serving the Bavarian-Bohemian border region. It provides citizens, students, and local communities with educational events, workshops, and cross-border cooperation initiatives to promote understanding of the European Union and its policies. The organization is part of the EUREGIO network and collaborates with universities, government bodies, and cultural institutions. The website is built on TYPO3 CMS and uses standard web technologies including jQuery and Bootstrap. It features event announcements, educational content, and contact information prominently, targeting a general audience interested in EU affairs.