How do I check if a website is safe?

Browse our security directory to find detailed security reports for any website. Each report includes a security score, risk level assessment, and comprehensive vulnerability analysis to help you determine if a website is safe to use.

What security checks are included in the reports?

Our reports include SSL/TLS configuration, security headers, GDPR compliance, NIS2 compliance, malware detection, vulnerability scanning, and AI-powered security analysis. Each website receives a comprehensive security score from 0-100.

How often are security reports updated?

Security reports are updated regularly as websites are rescanned. You can see the last scan date on each report. High-risk websites are monitored more frequently to ensure up-to-date security information.

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

Scan your website Talk about full access

Websites

Industries

Countries

Avg Score

Page 1 of 1|Showing 1-2 of 2

Australia Post

postbillpay.com.au

payment servicesAustralialargeMEDIUM

The website demonstrates a solid foundation in network, email, and SSL/TLS security, indicating good baseline protections. However, significant gaps exist in security headers, GDPR compliance, and adherence to NIS2 cybersecurity frameworks, which together expose the business to legal, reputational, and operational risks. Missing critical headers like Content-Security-Policy and X-Frame-Options leave the site vulnerable to cross-site scripting and clickjacking attacks. The absence of privacy and cookie policies, along with no cookie consent mechanism, poses compliance risks under data protection laws such as GDPR, potentially leading to fines and loss of customer trust. Lack of documented security policies, incident response procedures, and business continuity planning increases the risk of inadequate response to cyber incidents, threatening business operations. DNSSEC is not enabled, which could allow DNS spoofing attacks. Addressing these issues will significantly strengthen security posture, reduce compliance risks, and protect the organization from both cyber threats and regulatory penalties. Immediate focus on privacy policies, security headers, and incident response frameworks is recommended. Overall, the current posture requires urgent remediation to align with industry standards and legal requirements.

100

AngularJS (ng-app, ng-bind, ng-strict-di, ng-cloak)Adobe DTM (adobedtm script)jQueryMoment.js+5

Partner Domains:

2025-06-13T20:21:40.291Z

Payone GmbH

payone.com

payment servicesGermanylargeMEDIUM

Payone.com's overall security posture shows strengths in network security, SSL/TLS, and email security, but significant gaps exist in GDPR compliance and NIS2-related governance and incident response frameworks. Missing critical security headers and cookie consent mechanisms expose the business to regulatory, reputational, and operational risks that need urgent remediation.

100

paymente-commercePOScard readeromnichannel+4 more

TLS (Transport Layer Security)PCI DSS Level 1 CertificationGoogle AnalyticsGoogle Tag Manager+11

2025-06-13T14:51:32.463Z