Security Directory

T

The tilde.zone Team

tilde.zone

0

tilde.zone operates as a niche Mastodon instance within the fediverse, providing a platform for social networking focused on collaboration, creativity, and community engagement. The service is community-driven and targets users interested in open social networks without ads or algorithms. The website is technically modern, leveraging React, TypeScript, and Ruby on Rails, and is optimized for mobile devices. It uses HTTPS and WebSockets for real-time communication, but lacks some advanced security configurations such as DNSSEC and security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service. Contact information is not publicly visible, which is common for community-run platforms. Overall, the site is trustworthy and professional, but could improve in privacy and security practices.

W

William Harrison

wdh.gg

0

William Harrison's website is a personal portfolio showcasing his skills as a full-stack developer based in Australia. The site highlights his experience in multiple programming languages and his involvement in various open source and volunteer projects. The business model is centered around personal branding and project contributions, targeting developers and technology enthusiasts. The website is hosted on Cloudflare Pages and uses modern web technologies including HTML5, CSS3, JavaScript, and Cloudflare's Turnstile captcha for form security. The site is well-optimized for mobile devices and SEO, with a professional design and clear navigation. Security posture is solid with HTTPS enforced and captcha protection on forms, though it lacks some security headers and formal policies. No privacy or cookie policies are present, which impacts compliance scores. Overall, the domain registration aligns well with the website content, indicating legitimacy and trustworthiness.

W

William Harrison

hrsn.net

0

The website status.hrsn.net serves as an uptime status page for William Harrison, leveraging the HetrixTools uptime monitoring platform. It provides detailed uptime statistics and performance metrics for various services categorized under Dedicated Servers, Email, Hosting, and Storage. The site is technically well-implemented with modern frontend technologies such as Bootstrap, jQuery, and DataTables, and is served over HTTPS with CSRF protection tokens, indicating a good level of technical maturity. However, the absence of WHOIS registration data for the domain status.hrsn.net raises concerns about domain legitimacy and ownership transparency. The site lacks privacy, cookie, and terms of service policies, as well as contact information, which limits its compliance posture and business credibility. Overall, the site functions effectively as a status page but would benefit from enhanced transparency and compliance documentation.

C

Cyprezz LLC.

planetminecraft.com

0

Planet Minecraft is a well-established community platform dedicated to Minecraft players and content creators worldwide. Operating since 2010 under Cyprezz LLC., it offers a wide range of user-generated content including maps, skins, mods, texture packs, and data packs. The site fosters social interaction through forums, groups, and content jams, positioning itself as a leading fan community in the Minecraft ecosystem. Its business model relies on community engagement and advertising revenue, supported by a large active user base exceeding 5 million members. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, and ad networks like Google Adsense and Venatus. It is mobile-optimized and implements HTTPS with good security practices such as CSRF tokens. However, it lacks some advanced security headers and explicit cookie consent mechanisms, which are important for GDPR compliance. The site integrates multiple analytics and tracking services, reflecting a moderate level of user tracking typical for community platforms. From a security perspective, the site demonstrates a solid posture with encrypted connections and no visible vulnerabilities or exposed sensitive data. The absence of a security.txt file and dedicated incident response contacts suggests room for improvement in vulnerability disclosure and incident management. The WHOIS data is unavailable, possibly due to privacy protection or query issues, which slightly reduces trust but is mitigated by the site's long history and consistent branding. Overall, Planet Minecraft presents a trustworthy, family-friendly environment with high-quality content and good technical implementation. Strategic enhancements in privacy compliance, security transparency, and WHOIS data availability would further strengthen its risk profile and user trust.

S

Swyftlight

hiram.io

0

The website hiram.io represents a solopreneur and indie hacker named Hiram Núñez, operating under the organization Swyftlight. The business focuses on building and launching multiple digital projects aimed at improving the web, with an emphasis on privacy, no-code/low-code development, and emerging technologies. The site showcases a portfolio of ventures including privacy-respecting analytics, digital product sales, and consulting services. The market position is niche but credible, targeting tech enthusiasts, startups, and business strategists. Technically, the site is built on the Dorik platform, uses modern JavaScript libraries like jQuery and Typed.js, and is hosted and registered via Cloudflare, ensuring reliable infrastructure. The site is mobile optimized and has good SEO practices, though accessibility is basic. Security posture is moderate with HTTPS enforced and clientTransferProhibited domain status, but lacks DNSSEC and security headers. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security disclosures.

A

Akasha System

akasha.cv

0

Akasha System is a specialized online platform providing Genshin Impact players with damage leaderboards, profile sharing, and character card generation services. It targets the gaming community with a niche focus on enhancing player engagement through data-driven insights and community features. The platform operates primarily as a free service with optional Patreon support and occasional giveaways to incentivize user participation. Technically, the website is built using modern React.js technology, incorporating popular libraries such as Font Awesome and leveraging third-party ad networks and analytics tools. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. Security-wise, the site enforces HTTPS and avoids exposing sensitive data but lacks comprehensive security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, the site is a legitimate community tool with moderate trustworthiness but would benefit from enhanced security and privacy practices.

B

Bitwarden, Inc.

bitwarden.com

0

Bitwarden, Inc. operates a leading open source password management platform trusted by millions globally, serving individuals, families, businesses, and enterprises. Their product suite includes password management, secrets management, passwordless authentication, and developer tools, positioning them strongly in the cybersecurity technology market. The company emphasizes transparency, security, and compliance, supported by certifications such as SOC 2 and ISO 27001. Their business model is primarily SaaS with free and paid tiers, including self-hosting options for enterprises. Technically, Bitwarden employs a modern React-based web platform, leveraging Cloudflare for hosting and CDN services, and integrates analytics tools like Google Tag Manager and Plausible Analytics. The website demonstrates excellent performance, mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. Security posture is robust, with enforced HTTPS, comprehensive security headers, a bug bounty program, and regular compliance audits. However, DNSSEC is not enabled, and a security.txt file is absent, representing areas for improvement. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact information is available primarily via contact forms, with no explicit phone numbers or emails disclosed. Overall, Bitwarden presents a high-trust, professional, and secure online presence with minimal risk. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing incident response transparency to further strengthen their security and compliance posture.

P

Pixelfed

pixelfed.social

0

Pixelfed.social is the original and main instance of the decentralized photo sharing social media platform Pixelfed, operated by the lead developer known as @dansup. The platform offers a federated social media experience focusing on photo posts, albums, filters, and video support, targeting general users interested in privacy-respecting social media alternatives. The website is professionally designed with good content quality and clear navigation, supporting mobile optimization and modern web technologies such as Vue.js and Plyr media player. Hosting and DNS are managed by Cloudflare, ensuring reliable performance and security. The domain is well-established since 2018, consistent with the business history. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and some security headers. There is no explicit public security or incident response policy, and no cookie consent mechanism was detected, which may impact GDPR compliance. The platform enforces community rules prohibiting hate speech, harassment, explicit content, and illegal activities, contributing to a safe user environment. Overall, the security posture is good but could be improved with enhanced policies and technical controls. The business model centers on providing a decentralized, federated photo sharing service with a strong community focus. The site maintains transparency with contact email and clear rules but lacks some formal compliance disclosures. The platform is positioned as a privacy-conscious alternative to mainstream social media, appealing to users valuing decentralization and open-source principles. Strategic recommendations include implementing cookie consent, enabling DNSSEC, publishing security policies, and adding security headers to strengthen trust and compliance.

P

PrivacyGuardian.org llc

sakurajima.moe

0

Sakurajima.moe is a specialized Mastodon server catering to the Anime, Manga, and Japanese media fandom and content creator community. It offers a decentralized social media platform with enhanced moderation, custom features, and integration with related platforms such as Misskey/Sharkey and forums. The server emphasizes a safe, inclusive, and non-toxic environment, supported by a small but active user base and funded through donations. Technically, it leverages a customized Mastodon Glitch fork, hosted on ReliableSite with media storage on Linode, and employs Elasticsearch and Meilisearch for search capabilities. Security practices include daily backups, strict moderation policies, and domain transfer protections, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is partial, with a comprehensive privacy policy but no cookie consent mechanism. Overall, the site demonstrates a mature and professional approach to community management and technical infrastructure, suitable for its niche audience.

G

Garuda Linux

garudalinux.org

0

Garuda Linux is a technology company focused on providing an opinionated Arch Linux-based distribution that emphasizes ease of use and powerful features. The website presents a professional and modern design, targeting Linux users who want a user-friendly yet powerful operating system. The company operates primarily in Germany and has been active since 2020, with a small but dedicated community and ecosystem including forums and donation support. Technically, the website uses modern Angular framework and PrimeNG components, hosted via Cloudflare, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is minimal as no privacy or cookie policies are found. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

B

Backloggd LLC

backloggd.com

0

Backloggd LLC operates a specialized online platform focused on video game collection tracking, rating, and reviewing, targeting gamers who want to organize and share their gaming experiences. The website demonstrates a solid market position within the niche gaming community sector, offering key services such as personal game libraries, social following, and curated game lists. Founded in 2018, the company maintains a consistent brand presence and provides a user-friendly, content-rich experience.

J

Jason Cameron

jasoncameron.dev

0

Jason Cameron's website is a professional personal portfolio showcasing his expertise in backend web development, scalable systems, DevOps, and cybersecurity. The site highlights his contributions to major open source projects and organizations, positioning him as a credible and skilled developer with a focus on security and automation defenses. The portfolio targets developers, technology professionals, and organizations seeking expertise in these areas. Technically, the site is built with modern frameworks like SvelteKit, uses Golang and other technologies for projects, and demonstrates good performance and mobile optimization. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security headers and formal privacy or cookie policies. Overall, the site is trustworthy and professional but could improve compliance and security posture by adding relevant policies and contact information.

L

Linktree Pty Ltd

bento.me

0

Bento.me is a technology platform owned by Linktree Pty Ltd, specializing in providing creatives and content creators with rich, customizable link-in-bio pages that aggregate various content types such as videos, podcasts, newsletters, and paid products. The platform positions itself as a modern, beautiful alternative to traditional link-in-bio services, targeting a niche market of digital creators seeking to showcase and monetize their content in one place. The website demonstrates a good level of digital maturity, leveraging modern web technologies including Webflow CMS, Cloudflare DNS, and advanced analytics tools like PostHog and Segment. Mobile optimization and user experience are well addressed, with a professional design and clear navigation. However, the site lacks explicit privacy and cookie policies, which is a notable compliance gap. Security posture is generally good with HTTPS enforced and domain registration protections in place, but the absence of DNSSEC and security headers suggests room for improvement. Overall, Bento.me presents a credible and trustworthy business with a solid technical foundation but should enhance privacy compliance and security best practices to strengthen its risk profile.

D

Dracula Team

draculatheme.com

0

Dracula Theme is a well-established open source project providing a popular dark color scheme for over 300 applications, primarily targeting developers and programmers. The website showcases a professional design with clear branding and a strong community presence, evidenced by a highly starred GitHub repository. The business model includes free theme offerings alongside a premium Dracula PRO product sold via a partner store. Technically, the site leverages modern web technologies such as Next.js and React, with good performance and mobile optimization. Security posture is strong with HTTPS and multiple security headers implemented, though the absence of explicit privacy and cookie policies, as well as contact information for security incidents, represents compliance gaps. Overall, the site is trustworthy and professional but could improve privacy compliance and incident response transparency.

A

Arctic Ice Studio

nordtheme.com

0

Nord, developed by Arctic Ice Studio, is a specialized website offering an arctic, north-bluish color palette designed for clean and minimal UI and code syntax highlighting. The site targets developers and designers seeking cohesive and harmonious color schemes for their digital projects. The business operates as a niche provider in the technology sector, focusing on design resources rather than commercial products. Technically, the website leverages modern frameworks such as React and Gatsby, ensuring fast performance and excellent mobile optimization. It integrates Google Analytics and Google Tag Manager with IP anonymization to monitor traffic while respecting user privacy to some extent. Security-wise, the site enforces HTTPS and includes standard security headers, reflecting a good security posture. However, it lacks explicit privacy and cookie policies, consent mechanisms, and contact information for security incidents, which are notable compliance gaps. Overall, the website is professional, trustworthy, and well-designed but would benefit from enhanced privacy compliance and clearer contact channels.

T

Tailwind Labs

heroicons.com

0

Heroicons is an open source SVG icon library created and maintained by Tailwind Labs, the makers of Tailwind CSS. The website offers a comprehensive set of 316 hand-crafted icons under the permissive MIT license, targeting developers and designers who use Tailwind CSS or modern frontend frameworks like React and Vue. The site is well-positioned in the technology sector as a popular resource for UI/UX assets, with a small but focused business model centered on open source community engagement and design tooling. Technically, the website is built using modern web technologies including React, Vue, and Next.js, styled with Tailwind CSS. It is hosted with Cloudflare DNS and served over HTTPS, ensuring good performance, mobile optimization, and accessibility. The site lacks a CMS and does not appear to use advertising or tracking services, reflecting a clean and developer-friendly infrastructure. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data or vulnerable libraries. However, it lacks explicit security headers and formal policies such as privacy, cookie, or terms of service documents, which are important for compliance and user trust. No incident response or vulnerability disclosure mechanisms are publicly available. Overall, Heroicons presents a low-risk profile with strong technical and business credibility but could improve privacy compliance and security transparency. Strategic recommendations include publishing privacy and cookie policies, adding security headers, and providing a vulnerability disclosure channel to enhance trust and compliance.

R

RippleUI | TailwindCSS Components

ripple-ui.com

0

RippleUI is a small technology business offering a comprehensive collection of reusable Tailwind CSS components designed to streamline modern interface design. The website serves developers and UI designers by providing easy-to-integrate UI components, thorough documentation, and community support via Discord and GitHub. The business operates primarily through open-source distribution channels such as npm and CDN links, positioning itself as a niche provider within the Tailwind CSS ecosystem. Technically, the website is built on a modern stack including Next.js and React, with excellent mobile optimization and fast performance. The site demonstrates good SEO and accessibility practices, contributing to a professional user experience. Security posture is moderate; HTTPS is implied, but security headers and explicit policies are absent. The lack of WHOIS registration data and absence of privacy and cookie policies represent compliance and trust gaps. Overall, the site is professional and trustworthy in content but would benefit from improved transparency and security disclosures.

S

Squiz

funnelback.com

0

Squiz is a technology company specializing in AI-powered enterprise search and digital experience platforms. Their flagship product, Funnelback Search, leverages over 25 years of search innovation and 70+ ranking signals to deliver highly accurate and relevant search results across multiple content sources. The company targets enterprise clients in sectors such as Higher Education, Government, and Professional Services, offering a comprehensive suite of tools including content management, personalization, conversational AI, and analytics. Technically, the website demonstrates a mature digital infrastructure with modern JavaScript libraries, HubSpot integration for forms, and extensive use of analytics and tracking tools. Security posture is strong with HTTPS enforced and privacy policies in place, although explicit security headers are not clearly visible in the HTML. The absence of WHOIS domain registration data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional presentation and trust indicators on the site. Overall, Squiz presents as a credible and established player in the enterprise search market with a well-implemented digital presence.

3

32-Bit Cafe

32bit.cafe

0

32-Bit Cafe is a small, community-driven platform focused on revitalizing the personal web through self-expression and creativity. It serves a niche audience of website hobbyists and professionals who seek alternatives to mainstream social media, offering various free services such as email, collaborative documents, RSS aggregation, and community forums. The website is well-structured with good navigation and content relevance, supporting a positive user experience for its target audience. Technically, the site uses standard web technologies (HTML, CSS, JavaScript) without reliance on major CMS or frameworks, indicating a lightweight and straightforward infrastructure. Security posture is moderate; while HTTPS is implied, no security headers or DNSSEC are enabled, and no cookie consent mechanism is present. The domain is privacy protected, which aligns with the community's ethos and non-commercial nature. Overall, the site is safe, trustworthy, and professionally maintained but could improve in security and privacy compliance aspects.

The website ap5.dev is a personal professional portfolio and blog belonging to Anna Kudriavtsev, focusing on computing systems design and software development with an emphasis on correctness and maintainability. The site positions itself as a personal brand rather than a commercial business, targeting a general audience interested in technology and software development. The business model is primarily informational and portfolio-based, with links to a resume and GitHub repository. Technically, the website uses standard modern web technologies including HTML5, CSS3, and JavaScript, with external resources such as Google Fonts and a chat widget from cactus.chat. The site is moderately optimized for mobile and SEO, with good design quality and clear navigation. However, no CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site uses HTTPS and does not expose forms or sensitive data, but lacks explicit security headers and formal privacy or cookie policies. No vulnerability disclosure or incident response information is provided. The domain registration is privacy protected, which is appropriate for a personal site. Overall, the security posture is adequate but could be improved with additional headers and compliance documentation. The overall risk is low given the nature of the site, but strategic recommendations include implementing privacy and cookie policies, adding security headers, and providing vulnerability disclosure information to enhance trust and compliance.

T

toki.social

toki.social

0

toki.social is an independent Mastodon social networking server focused on the Toki Pona language community. It operates as part of the federated fediverse, providing users with a decentralized platform for social interaction. The website is relatively new, founded in 2021, and serves a niche audience interested in the Toki Pona language and culture. The platform leverages the open-source Mastodon software, currently running version 4.4.2, and uses modern web technologies including React and ES modules for its frontend. The hosting and domain registration are managed via NameCheap with privacy protection enabled, which is common for small independent social platforms.

B

Books.by

books.by

0

Books.by is a technology-driven platform based in Australia that empowers authors to create their own personal print-on-demand bookstores. The platform enables authors to sell books directly to readers, retain 100% of royalties, and receive daily payouts. Positioned as a competitive alternative to traditional distribution channels like Amazon and Ingram, Books.by targets self-publishers seeking greater control and profitability. The website is professionally designed, leveraging modern web technologies and marketing tools to deliver a seamless user experience. The technical infrastructure is robust, utilizing Webflow CMS, integrated analytics, and multiple tracking pixels for marketing optimization. Security posture is strong with HTTPS enforcement and standard security headers, though the absence of a cookie consent mechanism and public security policies indicates room for improvement. Overall, the site demonstrates high business credibility and trustworthiness with transparent contact information and positive user testimonials.

P

Private by Design, LLC

unseen.ninja

0

The website unseen.ninja is a personal portfolio site representing an individual or small entity focused on design and coding services. The site presents a modern, clean design with SVG-based branding and uses Vue.js framework for frontend interactivity. The content is minimal but relevant, targeting a general audience interested in design and code. The domain is newly registered in early 2024, consistent with the site's apparent purpose as a personal portfolio. Technically, the site employs modern web technologies including ES modules, web fonts, and SVG graphics. It is hosted under a reputable registrar Porkbun LLC, though the hosting provider is not explicitly identified. The site is mobile optimized and has basic accessibility features. SEO is basic but includes proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS but lacks DNSSEC and visible security headers, which are recommended for enhanced security. No forms or data collection mechanisms are present, reducing attack surface but also limiting user interaction. No privacy or cookie policies are provided, which is a compliance gap. The WHOIS data is consistent and transparent, with no privacy protection, appropriate for this type of site. Overall, the site is low risk with moderate trustworthiness but would benefit from improved security headers, privacy compliance, and contact transparency to enhance credibility and user trust.

N

newt

newty.dev

0

newty.dev is a personal website of an 18-year-old developer based in Scotland, showcasing software engineering projects, blogging, and a game server hosting initiative called amethyst. The site targets developers and tech enthusiasts, aiming to share knowledge and collaborate on emerging projects. The business model is primarily personal branding and project promotion with a small team focus. Technically, the website is built using modern frameworks such as Astro and Svelte, styled with TailwindCSS, and optimized for performance and mobile use. The hosting appears to be self-managed, with references to a home server. Security posture is solid with HTTPS enforced and minimal exposed risks, though the site lacks explicit security headers and formal security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR indicators. Overall, the site is professional and trustworthy for a personal developer portfolio, with room for improvement in security and compliance documentation.

P

index · pigeon

pigeon.life

0

The website pigeon.life is a small-scale personal or creative project site launched in 2019, featuring interactive tools such as language translation, pixel plotting, morse code encoding, and font displays. It also links to a GitHub profile, indicating a developer or hobbyist focus. The site is built using modern web technologies including the Astro framework and is hosted on DigitalOcean, reflecting a moderate level of technical maturity. However, the site lacks formal business information, contact details, and compliance policies, which limits its professional credibility. Security posture is minimal with no security headers or privacy policies detected, and DNSSEC is not enabled on the domain. The domain registration is privacy protected, which is typical for personal projects and does not raise immediate concerns. Overall, the site is safe and suitable for general audiences but would benefit from improved security and compliance measures.

M

mooncell07

mooncell07.me

0

Mooncell07 is a personal website and blog operated by an individual known as nova/mooncell07, focusing on web development learning, emulator development, network programming, gaming, and visual novels. The site serves as a platform to share open source projects and personal posts, targeting technology enthusiasts and developers. The website is built using modern frontend technology SvelteKit and hosted by Hostinger with privacy-protected domain registration, reflecting a small-scale personal project rather than a commercial enterprise. Technically, the site demonstrates a modern tech stack with good mobile optimization and basic SEO, though performance is moderate and accessibility is basic. Security posture is adequate with HTTPS and domain transfer protection but lacks DNSSEC and security headers, and no formal privacy or cookie policies are published. Overall, the site is safe, trustworthy, and professional for its intended personal use, but lacks formal compliance and security documentation typical of commercial sites.

Z

aman/home

zeffo.me

0

The website zeffo.me is a personal portfolio site owned by an individual named Aman, primarily showcasing programming projects and animal rehabilitation efforts. The site is small-scale and targets a general audience interested in technology and personal hobbies. It is hosted on Cloudflare and built using the modern SvelteKit framework, indicating a moderate level of technical maturity. The website design is good with clear navigation and mobile optimization, but lacks formal business and compliance documentation such as privacy or cookie policies. Security posture is adequate with HTTPS enabled and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the site is safe, trustworthy, and professionally presented for a personal project, but lacks formal compliance and security policies expected in business contexts.

The website is a personal portfolio and blog of a computer science student and open source contributor named Isabel Roses. It documents her development journey, contributions to open source projects such as Nixpkgs and Catppuccin themes, and showcases her projects. The site targets developers and tech enthusiasts interested in programming and open source software. The business model is personal branding and community engagement through blogging and project maintenance. The site is small scale and founded recently in 2023. Technically, the site is built using the Astro static site generator (version 5.8.0) with client-side JavaScript for theme switching. It uses Cloudflare DNS servers but does not have DNSSEC enabled. The site loads quickly, is mobile optimized, and has good SEO metadata. Analytics are self-hosted, indicating some privacy consideration. However, no CMS or hosting provider is explicitly identified. From a security perspective, the site uses HTTPS and domain registration includes protective statuses against unauthorized deletion or transfer. However, DNSSEC is not enabled, and no security headers are detected in the HTML content. There are no privacy or cookie policies, no contact information, and no vulnerability disclosure or security.txt files. These gaps reduce compliance and security posture scores. Overall, the site is trustworthy and legitimate as a personal project with good technical quality but lacks formal privacy and security documentation. Strategic improvements include adding privacy and cookie policies, enabling DNSSEC, implementing security headers, and providing contact information for incident response.

A

ryu@archy

alokranjan.me

0

The website alokranjan.me is a personal technology-focused site operated by an individual who identifies as a Linux enthusiast, Rust programmer, and cybersecurity aficionado. It serves as a portfolio and blog platform, targeting technology professionals and enthusiasts. The site features modern frontend technologies such as Tailwind CSS, Anime.js, and GSAP, hosted behind Cloudflare DNS and CDN services, ensuring good performance and mobile optimization. The content is well-structured, professional, and relevant to its niche audience. However, the site lacks formal privacy, cookie, and terms of service policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled but missing key security headers and DNSSEC. The WHOIS data indicates privacy protection but contains an anomalous domain creation date set in the future, which may be a data error or placeholder. Overall, the site is trustworthy for its intended purpose but could improve compliance and security practices.

The website pontushenriksson.com represents a personal portfolio for an individual web developer and programmer named Pontus Henriksson. The site is currently under development with a legacy site linked for reference. The business model is focused on showcasing skills and previous work to attract freelance or contract opportunities. The target audience includes potential clients or employers seeking web development and design services. The website is hosted on Cloudflare Pages and uses basic modern web technologies such as HTML5, CSS3, and JavaScript. The design is responsive and user-friendly, though content is minimal and lacks comprehensive business or contact information. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which are recommended to enhance protection. No privacy, cookie, or terms of service policies are present, indicating limited compliance with GDPR or other privacy regulations. No contact emails, phone numbers, or social media links are provided, reducing business credibility and user trust. Analytics are implemented via Cloudflare Pages Analytics with minimal user tracking. Overall, the website is safe with no adult or questionable content detected. The domain registration is consistent with the website's new status and shows no suspicious patterns. The security posture is moderate but can be improved by adding security headers and privacy policies. The site’s technical implementation is adequate for a personal portfolio but lacks advanced SEO and accessibility features. Strategic recommendations include implementing privacy and cookie policies, adding security headers, providing clear contact information, enabling DNSSEC, and enhancing SEO and accessibility to improve user trust and compliance.

L

lighttigerXIV - About

lighttigerxiv.dev

0

The website lighttigerxiv.dev is a personal portfolio site for Afonso Fonseca, a young developer from Portugal. It serves primarily as a showcase for his programming projects, open source contributions, and professional CV. The site targets a general audience interested in technology and programming, with a focus on personal branding rather than commercial business operations. Technically, the site is built using modern web technologies including SvelteKit and Google Fonts, delivering a fast and mobile-optimized experience. However, it lacks explicit privacy, cookie, and security policies, which are important for compliance and trust. Security posture is moderate with HTTPS implied but no detected security headers or incident response information. Overall, the site is safe, professional, and trustworthy but could improve in privacy compliance and security best practices.

R

Robin Roses

robinroses.xyz

0

Robin Roses is a personal website serving as an internet garden for sharing ideas, blog posts, and documentation related to software development, aesthetics, and nature-inspired projects. The site targets individuals interested in neovim, nix, rust, UI design, and minimalism. It operates as a small-scale personal brand with open-source projects and content sharing as its core offerings. Technically, the site is built using modern static site generation tools like Zola and reproducible build systems like Nix, hosted behind Cloudflare DNS and CDN services. The site demonstrates good performance, mobile optimization, and basic accessibility, but lacks advanced SEO and comprehensive privacy compliance features. Security posture is moderate with HTTPS enabled and domain transfer protections in place, but lacks DNSSEC and security headers. No privacy or cookie policies are published, and no contact or incident response information is provided, limiting compliance and trust. Overall, the site is safe, professional, and well-structured but would benefit from enhanced security and privacy practices.

I

InvitedToHell

pompomsoft.de

0

The website pompomsoft.de represents a personal or small-scale developer presence primarily focused on social and gaming community engagement. The site features links to social media platforms such as Telegram, GitHub, and Mastodon, and includes a 3D interactive element powered by Spline. There is no formal business description or corporate information provided, indicating an individual or hobbyist operation rather than a commercial enterprise. The technical infrastructure leverages modern frontend technologies including Svelte and Cloudflare DNS services, suggesting a moderate level of digital maturity. However, the site lacks comprehensive metadata, privacy policies, and security headers, which limits its compliance and security posture. The absence of forms or data collection mechanisms reduces privacy risks but also limits business functionality. Overall, the site is accessible and functional but basic in content and security features.

I

is-a.dev - Free subdomains for developers

is-a.dev

0

The website is-a.dev offers a free subdomain registration service targeted primarily at developers. It enables users to obtain free `.is-a.dev` subdomains by following instructions hosted on a GitHub repository. The service is positioned as a niche developer tool with a small-scale operation founded in 2020. The website content is clear, relevant, and professionally presented with consistent branding and a focus on developer engagement through GitHub and Discord communities. From a technical perspective, the site uses modern web technologies including HTML5, CSS3, JavaScript, and is hosted behind Cloudflare, ensuring fast performance and good mobile optimization. The presence of Carbon Ads and Cloudflare Insights indicates minimal advertising and analytics usage, with a low level of user tracking. SEO and accessibility are adequately addressed, though accessibility is basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security headers and formal privacy or cookie policies, which are important for compliance and trust. Incident response is partially addressed via a GitHub abuse reporting mechanism, but no dedicated security contact or vulnerability disclosure policy is present. Overall, the website is trustworthy and functional with a good balance of usability and security for its scope. The main risks relate to privacy compliance and formal security governance, which could be improved to enhance user trust and regulatory adherence.

H

H4LO

h4lo.ca

0

H4LO.ca is a personal portfolio website created and maintained by an individual developer named H4LO. The site serves as a showcase for projects, an online storefront, and a code repository linked via GitHub. The business model is personal branding and project demonstration, targeting a general audience interested in technology and development. The website is relatively new, founded in 2024, and positions itself as a niche personal brand rather than a commercial enterprise. The content is concise, well-structured, and professionally presented with consistent branding and clear navigation.

P

Private by Design, LLC

dunkirk.sh

0

The website dunkirk.sh is a personal portfolio and blog site for Kieran Klukas, a 17-year-old homeschooled coder and content creator based in the United States. The site showcases personal interests such as filmmaking, FPV, and TypeScript programming, and provides contact information primarily via email. The domain is newly registered in 2024 under Private by Design, LLC, with transparent WHOIS data and appropriate domain security statuses. The site uses modern web technologies including TypeScript, Cloudflare DNS and CDN, and JavaScript, delivering a fast and mobile-optimized user experience with good SEO practices. From a security perspective, the site enforces HTTPS and benefits from Cloudflare's infrastructure, but lacks explicit security headers and formal privacy or cookie policies, indicating room for compliance improvement. No forms or sensitive data collection mechanisms are present, reducing attack surface. Analytics usage is minimal and privacy-conscious, relying on anonymous HTTP request counters. No vulnerabilities or suspicious content were detected. Overall, the site presents a moderate to good security posture with a strong technical foundation and clear business credibility as a personal portfolio. However, the absence of privacy and cookie policies and explicit security headers are notable gaps. Strategic improvements in these areas would enhance compliance and trustworthiness.

R

refact0r

refact0r.dev

0

The website refact0r.dev is a personal portfolio and blog belonging to a student interested in computer science, web development, and design. It serves as a platform to showcase projects, share blog content, and present personal interests. The site is built using modern web technologies including SvelteKit, and it demonstrates good design quality, mobile optimization, and user experience. However, it lacks formal business information, contact details, and compliance documentation such as privacy or cookie policies. From a technical perspective, the site uses a modern JavaScript framework (SvelteKit) and includes minimal analytics via umami, indicating a lightweight and privacy-conscious approach. The performance appears fast, and the site is mobile responsive. However, no security headers were detected in the provided data, and there is no evidence of HTTPS enforcement or advanced security practices. Security posture is moderate but could be improved by implementing standard security headers, privacy policies, and incident response information. The absence of contact information and compliance documents reduces trust and business credibility. No vulnerabilities or suspicious content were detected, and the domain registration uses privacy protection, which is appropriate for a personal site. Overall, the site is a well-designed personal portfolio with room for improvement in security, privacy compliance, and business transparency. Strategic recommendations include adding privacy and cookie policies, implementing security headers, providing contact information, and considering a vulnerability disclosure policy to enhance trust and compliance.

J

Jason Cameron

jsn.cam

0

Jason Cameron's website is a professional portfolio showcasing his expertise as a software engineer specializing in backend web development, scalable systems, DevOps, and cybersecurity. The site highlights his contributions to major organizations and open source projects, positioning him as a credible and skilled developer. The technical infrastructure is modern, leveraging SvelteKit for frontend and Golang for backend projects, with good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and privacy policies are missing. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

The website perseuslynx.dev is a personal portfolio and blog site for an individual named Perseus Lynx. It serves as a digital space to showcase projects, share blog posts, and provide personal information. The site targets a general audience interested in technology and personal projects. The business model is that of a personal brand with no commercial or enterprise scale operations. Technically, the site uses standard web technologies including HTML5, CSS3, and JavaScript, with modern image formats like WebP. Hosting appears to be via Cloudflare, with analytics provided by Umami and Cloudflare Insights. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. Security posture is basic; HTTPS is presumed but no explicit security headers or policies are present. No privacy, cookie, or terms of service policies are found, indicating low privacy compliance. No contact information or incident response details are provided, limiting business credibility and user trust. Overall, the site is functional and professional for a personal portfolio but lacks formal security and compliance measures.

B

bricked

bricked.dev

0

The website bricked.dev serves as a personal portfolio and blog for an individual known as bricked, who is an open-source enthusiast specializing in NixOS configurations, accessible websites, and Discord bots. The site highlights several personal projects and community engagements, positioning itself as a niche personal technology presence rather than a commercial enterprise. Technically, the site is built using the modern Astro framework, employs responsive design, and uses optimized image formats such as WebP. The site is performant and mobile-friendly, with good SEO practices evident from meta tags and structured content. Security-wise, the site enforces HTTPS but lacks additional security headers and formal privacy or cookie policies, which limits its compliance posture. No forms or data collection mechanisms are present, reducing attack surface but also limiting user interaction. Overall, the site is trustworthy and safe, with no adult or questionable content detected.

S

Sydney Newmark

sydneyn.dev

0

Sydney Newmark's website is a personal portfolio and blog focused on computer science topics, projects, and personal interests. The site targets a general audience interested in technology and programming. It serves as a digital presence for Sydney as an individual rather than a commercial business entity. The website is built using modern technologies such as Astro and includes integrations with social media platforms like GitHub, Bluesky, and Mastodon. Hosting and analytics are provided via Cloudflare and Umami, indicating a lightweight and privacy-conscious approach. From a security perspective, the site enforces HTTPS and does not expose sensitive data or include forms that collect user input, reducing attack surface. However, it lacks explicit security headers and formal privacy or cookie policies, which are recommended for compliance and enhanced security posture. No incident response or vulnerability disclosure information is present, which is typical for personal sites but could be improved for transparency. Overall, the website demonstrates good technical implementation and content quality for a personal site, with moderate security and privacy compliance. The domain registration data aligns well with the website content and owner identity, supporting legitimacy. Strategic improvements include adding privacy and cookie policies, implementing security headers, and providing contact or security incident information to enhance trust and compliance.

The website pyrox.dev is a personal blog and portfolio site operated by an individual known as 'dish', who identifies as a student, sysadmin, and UX crafter. The site focuses on topics related to computers, programming, and system administration, targeting a general audience interested in technology. The content is well-structured, with a clear navigation menu and recent blog posts, though limited in volume. The site uses the Lume static site generator, indicating a modern and lightweight technical infrastructure. Performance and mobile optimization are good, but accessibility features are basic. Security posture is moderate; the site lacks security headers and formal privacy or cookie policies, which impacts compliance and trust. No forms or data collection mechanisms are present, reducing privacy risks but also limiting user engagement. The domain registration is privacy protected, which is typical for personal sites, and no suspicious patterns were detected. Overall, the site is safe, professional, and suitable for general audiences.

The website terminaate.site is a personal portfolio of a young web developer from Russia specializing in React and Next.js, with interests in backend and DevOps. The site serves as a showcase of skills and projects, targeting potential collaborators or clients interested in modern web development technologies. The technical infrastructure is modern, leveraging popular JavaScript frameworks, bundlers, and backend tools, hosted with Cloudflare DNS and employing HTTPS. The site is well-designed with good navigation and mobile optimization, though it lacks formal privacy and cookie policies, as well as contact information, which limits its professional completeness. From a security perspective, the site uses HTTPS and modern frameworks but lacks security headers and formal security policies. The WHOIS data raises concerns due to an inconsistent domain creation date set in the future and a registrant organization name that does not clearly align with the personal portfolio branding. No WAF or blocking mechanisms are detected, and the site includes minimal user tracking via Umami analytics. Overall, the security posture is moderate but could be improved with better compliance and security practices. The overall risk is moderate with no critical vulnerabilities detected, but the lack of privacy compliance and contact information, combined with suspicious WHOIS data, suggests caution. Strategic improvements in security headers, privacy policies, and domain registration accuracy are recommended to enhance trust and compliance.

The website aprl.cat is a personal site belonging to an individual named April, a 20-year-old from the UK with interests in programming, music, skateboarding, and cats. The site serves as a personal blog and portfolio showcasing her hobbies, technical skills, and social media presence. It targets a general audience interested in personal tech and music culture. The site is small-scale and non-commercial, with no evident business operations or monetization. Technically, the site is custom-built with vanilla HTML, CSS, and JavaScript, hosted behind Cloudflare DNS and CDN services. It integrates WebSocket connections to the Lanyard API for real-time Discord presence updates. The site lacks a CMS and advanced frameworks but uses modern programming languages and tools in the background as described by the owner. Security posture is moderate with domain transfer protections but lacks DNSSEC and security headers. Privacy and cookie policies are absent, reducing compliance. WHOIS data shows inconsistencies, notably a domain creation date in the future, which raises questions about domain legitimacy. Overall, the site is functional and moderately secure but would benefit from improved security headers, privacy compliance, and WHOIS data accuracy.

The website garnix.dev is a personal blog and content sharing platform maintained by an individual named Emilia. It primarily offers blog posts, music recommendations, and personal content, targeting a general audience interested in technology and related community topics. The site is small in scale and operates as a niche personal blog without commercial business infrastructure or formal corporate presence. Technically, the site is built with standard HTML, CSS, and JavaScript, featuring a simple but consistent design and basic mobile optimization. It uses a fetch API call to an external HTTPS endpoint for form submissions, indicating some level of modern web technology usage. However, there is no evidence of advanced frameworks, CMS, or hosting provider details. SEO and accessibility features are basic, and no structured metadata or Open Graph tags are present. From a security perspective, the site uses HTTPS for external requests but lacks visible security headers and formal security policies. The contact form is minimal and lacks CSRF protection or input validation beyond a non-empty check. No privacy, cookie, or terms of service policies are published, which limits compliance with GDPR and other privacy regulations. The domain uses WHOIS privacy protection, which is common for personal sites and justified here. No suspicious or malicious indicators were found. Overall, the site is safe and trustworthy for general audiences but would benefit from improved security practices, privacy disclosures, and business contact information to enhance credibility and compliance. The AI score reflects a functional but basic personal website with room for improvement in security and privacy compliance.

I

tgt

incognitotgt.me

0

The website www.incognitotgt.me is a personal portfolio of a young fullstack developer showcasing projects, skills, and contact information. It targets individuals interested in developer portfolios, potential collaborators, or employers. The site uses modern frontend technologies including Next.js and various JavaScript frameworks, indicating a good level of technical maturity. The content is well structured and professionally presented, with clear navigation and mobile optimization. Security posture is moderate due to lack of visible security headers and unknown SSL configuration. Privacy compliance is low as no privacy or cookie policies are present. Overall, the site is safe and trustworthy but could improve transparency and security practices.

U

uncenter

uncenter.dev

0

The website uncenter.dev is a personal portfolio site of a high school student and open source software developer. It showcases the individual's passion for programming, open source projects, and learning new technologies such as Rust. The site targets a general audience interested in software development and technology, positioning itself as a personal brand rather than a commercial business. The key services highlighted include software development, open source contributions, and educational content. Technically, the site is built using modern frameworks like Eleventy, Vue, and SolidJS, with a focus on performance and mobile optimization. The site uses HTTPS and minimal tracking via Umami analytics, reflecting a privacy-conscious approach. Security posture is good but could be improved by adding security headers and formal policies. Overall, the site is professional, trustworthy, and safe for general audiences.

R

Race Roster

raceroster.com

0

Race Roster is a well-established technology company founded in 2011, specializing in providing a comprehensive SaaS platform for event organizers, timers, and fundraising coordinators globally. Their platform offers a full suite of products including registration, fundraising, timing tools, CRM, onsite applications, and virtual event management, positioning them as a key player in the event management technology sector. The website reflects a mature digital presence with professional design, clear navigation, and strong content relevance tailored to their target audience. Technically, the website is built on WordPress with modern web technologies such as jQuery, Google reCAPTCHA, and Bootstrap, hosted on Amazon AWS infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. Privacy and cookie compliance are well implemented with clear policies and user consent mechanisms. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks visible security headers and published security policies or incident response information. DNSSEC is not enabled, which is a recommended improvement. No vulnerabilities or suspicious activities were detected in the analysis. Overall, Race Roster presents a trustworthy and professional online presence with a strong business model and good compliance posture. Strategic improvements in security transparency and technical optimizations could further enhance their security posture and user trust.

A

ASICS Runkeeper

runkeeper.com

0

ASICS Runkeeper is a well-established digital fitness platform focused on running tracking and training. The website serves as a community hub and app promotion portal, offering users tools to set goals, train, and monitor progress. The business is positioned strongly in the fitness technology sector, supported by the reputable ASICS brand. The technical infrastructure is based on WordPress CMS with modern SEO and analytics tools, hosted under Amazon Registrar with secure HTTPS and domain protections. Security posture is solid with room for improvement in DNSSEC and security headers. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site reflects a mature, professional digital presence with high trustworthiness.

Polar Global is a recognized brand specializing in heart rate monitors, fitness trackers, and sports watches targeting fitness enthusiasts and athletes worldwide. The website presents professional content aligned with its business focus and employs modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is secured with HTTPS and implements a comprehensive cookie consent mechanism, reflecting a good privacy posture. However, the absence of WHOIS data and explicit contact or security policy information limits full trust assessment. Overall, the website is professional and trustworthy with room for improvement in transparency and security disclosures.