Security Directory

K

Ko-fi

ko-fi.com

0

Ko-fi is a technology platform founded in 2012 that enables creators across various domains such as art, streaming, podcasting, and writing to monetize their content through tips, memberships, commissions, and shop sales. The platform positions itself as a creator-first alternative to Patreon, emphasizing direct payments and minimal fees. The website demonstrates a high level of digital maturity with modern technologies including Tailwind CSS, jQuery, Google Tag Manager, Azure Application Insights, and Cloudflare DNS/CDN services. It features a professional, mobile-optimized design with clear navigation and comprehensive content including FAQs and detailed cookie consent mechanisms. Security posture is strong with HTTPS enforced and privacy compliance evident through cookie consent and privacy policy, though explicit security policies and incident response contacts are not published. Overall, Ko-fi presents a trustworthy and professional online presence with a well-established domain and consistent branding.

Frans Allen's website serves as a professional portfolio and hub for his open-source projects and software engineering services. The site highlights key projects such as Statically, PureDNS, and Favicone, targeting developers and technology enthusiasts. The business model centers on providing free and open-source tools with some referral and sponsorship monetization. The website is well-positioned in the niche of developer tools with a strong community presence and media recognition. Technically, the site is built using modern frameworks like Next.js and React, with a backend stack involving Go, Node.js, and other technologies. It demonstrates fast performance, mobile optimization, and good SEO practices. The infrastructure appears custom-built without reliance on traditional CMS platforms. From a security perspective, the site enforces HTTPS, uses standard security headers, and avoids exposing sensitive data. However, it lacks explicit security policies, vulnerability disclosure mechanisms, and incident response contacts. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, the site is professional, trustworthy, and secure with minor areas for compliance and security policy improvements. The risk level is low, but enhancing privacy and security transparency would strengthen user trust and regulatory adherence.

P

Pixsell

pixsell.hr

0

Pixsell is a leading Croatian photo and video agency specializing in providing tailored photo and video content to meet unique client needs. Established in 2008, the company holds a strong market position within the Croatian media sector, offering domestic and foreign content, stock media, and specialized services such as Halopix. The website reflects a professional digital presence built on modern Angular technology, integrating Google Analytics and reCAPTCHA for performance monitoring and security. However, the absence of explicit privacy and cookie policies indicates a compliance gap with GDPR and related regulations. Security posture is generally good with HTTPS and reCAPTCHA usage, but could be improved by adding security headers and incident response contacts. Overall, Pixsell presents a trustworthy and professional media service platform with room for enhanced privacy and security transparency.

M

MONDO INC

wanted.rs

0

MONDO INC operates a Serbian media portal focused on style, lifestyle, and general news content. The website serves a general audience with a variety of articles, multimedia content, and advertising. It holds a solid market position as a regional media publisher with multiple partner sites under the WMG Media umbrella. The technical infrastructure is modern, leveraging Nuxt.js, Google Tag Manager, and multiple ad and analytics platforms. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is adequate with HTTPS and consent management but lacks DNSSEC and explicit security policies. No direct contact or privacy policy pages were found on the analyzed page, which could be improved for compliance and trust. Overall, the domain registration is consistent and appropriate for the business age and profile, indicating legitimacy.

M

MONDO, Inc.

yumama.com

0

Yumama is a well-established Serbian parenting and family media portal operated under MONDO, Inc., founded in 2008. It provides comprehensive content focused on pregnancy, child development, and family life, targeting parents and prospective parents in Serbia and the surrounding region. The website enjoys a strong market position as a leading parental guide with a medium-sized audience and a business model centered on content publishing and advertising revenue, supplemented by membership features. Technically, Yumama employs modern web technologies including Nuxt.js and Vue.js, integrates multiple analytics and advertising platforms, and demonstrates good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS, uses consent management for GDPR compliance, and shows no critical vulnerabilities, although DNSSEC is not enabled and some advanced security headers could be added. Overall, Yumama presents a professional, trustworthy, and user-friendly experience with clear privacy and cookie policies, active social media presence, and consistent branding. Strategic recommendations include enhancing DNS security, publishing a formal security policy, and continuing to monitor third-party scripts for vulnerabilities.

M

MONDO, Inc.

stvarukusa.rs

0

Stvar ukusa is a Serbian culinary media portal operated by MONDO, Inc., offering a wide range of recipes, cooking tips, and food-related content targeting general audiences interested in cooking. The website is well-established with a domain age since 2008 and maintains a consistent brand presence with active social media channels. Technically, the site uses modern JavaScript frameworks such as Nuxt.js and integrates multiple third-party analytics and advertising services, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible critical vulnerabilities, though some security headers could be improved. Privacy compliance is strong with accessible privacy and cookie policies and GDPR adherence. Overall, the site presents a professional and trustworthy media outlet with moderate to good performance and user experience.

M

MONDO INC

lovesensa.rs

0

Sensa is a Serbian online media platform focused on women's personal development, intellectual, spiritual, mental, and physical wellness. It operates under the parent company MONDO INC, an established media group with a strong presence in Serbia. The website offers expert articles, inspirational videos, and lifestyle content tailored to its target audience. Technically, the site leverages modern JavaScript frameworks such as Vue.js and Nuxt.js, integrates multiple advertising and analytics services, and employs a comprehensive consent management system to comply with GDPR. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy, with extensive tracking balanced by user consent mechanisms.

M

MONDO INC

lepaisrecna.rs

0

Lepa i srećna is a Serbian online lifestyle magazine targeting women, offering content on astrology, recipes, fashion, health, family, and travel. It operates under the MONDO INC media group, a well-established regional media company. The website demonstrates a mature digital presence with modern technologies such as Nuxt.js, Google Tag Manager, and multiple analytics and advertising platforms integrated. Privacy compliance is well addressed with a GDPR-compliant cookie consent mechanism and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though some security headers could be improved. Overall, the site is professional, content-rich, and trustworthy, with strong social media integration and advertising transparency.

E

elle.rs

elle.rs

0

elle.rs is the Serbian edition of the internationally recognized ELLE magazine brand, focusing on fashion, beauty, lifestyle, and culture content for a Serbian-speaking audience. The website is well-established since 2008 and operates under a reputable media network (WMG Media). It offers rich editorial content, subscription options, and maintains active social media channels. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, integrates multiple analytics and advertising technologies, and implements a comprehensive cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no critical vulnerabilities detected, though DNSSEC is not enabled and some security headers could be improved. Overall, elle.rs presents a professional, trustworthy, and user-friendly media platform with extensive tracking and advertising integrations typical for commercial media sites.

S

Stanco d.o.o.

navidiku.rs

0

Navidiku.rs is a Serbian internet portal established in 2008, operated by Stanco d.o.o. The site functions primarily as a business directory and news portal, offering company listings categorized by city and sector, along with business news articles and user interaction features such as reviews and product orders. It targets Serbian businesses and consumers seeking local company information and promotions. Technically, the site uses a custom CMS with modern web fonts, Google Analytics, Adsense, and Google Tag Manager for analytics and advertising. The site is mobile-optimized with a good user experience and clear navigation. Security posture is moderate with HTTPS enabled and basic security practices, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with no explicit privacy policy or terms of service pages found, though a cookie consent mechanism is implemented via Google Funding Choices. The domain registration is consistent and long-standing, supporting the site's legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

Adria Media Serbia operates as a content network presumably serving the Serbian or Adriatic media market. The website is minimalistic, containing only a title, a header, and a QR code image, with no detailed business descriptions or contact information. The domain is well-established, registered since 2014, which aligns with the business founding year, indicating a stable online presence. However, the lack of substantive content and absence of privacy or cookie policies limit the site's professionalism and user trust. Technically, the website uses Google Analytics and Google Tag Manager for tracking user interactions and Cloudflare for DNS services. There is no evidence of a CMS or advanced frameworks, and no security headers were detected in the provided data. The site does not implement DNSSEC, which is a recommended security enhancement. Performance and SEO optimizations appear minimal due to the sparse content and lack of meta tags. From a security perspective, the site uses HTTPS (implied by Google Analytics scripts loaded over HTTPS), but no additional security headers or policies are present. There is no visible incident response or vulnerability disclosure information, and no contact channels for security issues. The absence of privacy and cookie policies also indicates poor compliance with GDPR and related regulations. Overall, the website presents a low-risk profile due to its minimal content and lack of sensitive data collection but suffers from poor content quality, limited transparency, and weak security posture. Strategic improvements in content, compliance, and security practices are recommended to enhance trust and professionalism.

Adria Media TV is a regional media company based in Serbia, providing a broad range of video streaming content including news, entertainment, and TV shows. The website is well structured, targeting a general Serbian-speaking audience with a focus on current events, lifestyle, and popular culture. The company has been established since 2011, indicating a mature presence in the media sector. Technically, the website uses modern web technologies including JavaScript, CSS, and integrates analytics and tracking services such as Google Analytics and Gemius. Hosting and DNS are managed via Cloudflare, providing a reliable infrastructure. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks some advanced security headers and explicit privacy compliance mechanisms such as cookie consent banners. No direct contact emails or phone numbers are publicly listed, but a contact form is available. Overall, the website is professional and trustworthy but could improve privacy compliance and security transparency.

D

DebugBear Ltd

debugbear.com

0

DebugBear Ltd operates a specialized SaaS platform focused on web performance and Core Web Vitals monitoring. Their service suite includes synthetic website monitoring, real user monitoring, and Google CrUX data integration, targeting SEO specialists, developers, agencies, ecommerce stores, and enterprises. The website is professionally designed with excellent content quality and clear navigation, reflecting a mature digital presence. Technically, the site uses modern frameworks like Bootstrap and React, integrates advanced analytics and error tracking tools such as Google Analytics, Plausible, and Rollbar, and delivers fast performance with mobile optimization. Security posture is good with HTTPS enforced and error monitoring in place, though explicit security headers and cookie consent mechanisms are absent. The WHOIS data is unavailable, which reduces domain trustworthiness despite the professional site appearance. Overall, DebugBear presents a credible and technically sound business with room for security and compliance improvements.

Media Outcast is a small media-focused business, likely specializing in podcast hosting or media content distribution, as inferred from the domain and embedded media player scripts. The website uses modern frontend technologies such as Vue.js and the Bulma CSS framework, indicating a moderate level of technical maturity. However, the site lacks comprehensive content, SEO optimization, and accessibility features, limiting its digital maturity. Security posture is weak, with no detected security headers or privacy policies, and no visible contact information for incident response or data protection. The domain registration is consistent and transparent, with no privacy protection, and the domain age aligns with the business founding year. Overall, the website presents a basic but functional media service presence with room for significant improvements in security, compliance, and content quality.

The website nxjmp.com is currently inaccessible, returning a 403 Forbidden error page with no accessible content. The domain is registered since 2019 with eNom, LLC and uses Cloudflare DNS services, indicating some level of infrastructure maturity. However, the lack of accessible content, metadata, or business information severely limits the ability to assess the company's operations, services, or market position. The technical infrastructure appears to rely on Cloudflare for hosting and security, but no further technology stack details are available due to content blocking. Security posture is limited by the absence of security headers and DNSSEC, though HTTPS is presumably enabled given Cloudflare usage. Overall, the site lacks privacy and cookie policies, contact information, and any form of user engagement mechanisms, which negatively impacts trust and compliance. The website is safe in terms of content but cannot be fully evaluated due to access restrictions.

A

Alma Insights

almatalent.fi

0

Alma Insights is a Finnish-based digital data and content services provider operating under the Alma Media group. The company offers organizations digital data, content, and marketplace services designed to deliver valuable insights through accurate information. The website reflects a professional B2B business model targeting enterprises seeking data-driven solutions. Technically, the site is built using modern technologies such as React and Gatsby, ensuring fast performance and good mobile optimization. Security posture is strong with HTTPS and relevant security headers implemented, although explicit privacy and cookie policies are missing. Overall, the site is trustworthy and well-designed but could improve compliance transparency and incident response visibility.

C

Chatra

chatra.io

0

Chatra is a well-established technology company founded in 2002, specializing in multichannel customer support solutions including live chat, chatbots, email, and social messaging. It serves a broad business audience with a SaaS subscription model and has a strong market presence with over 45,000 customers. Recently, Chatra became a part of Brevo, enhancing its marketing and CRM capabilities. The website demonstrates a mature digital infrastructure with modern analytics and marketing tools, fast performance, and excellent mobile optimization. Security posture is solid with HTTPS and domain lock statuses, though some security policies and incident response details are not explicitly published. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and business-focused, with no signs of blocking or content safety concerns.

P

Pexels

pexels.com

0

Pexels is a prominent online platform offering free stock photos and videos, targeting content creators, marketers, and designers globally. The website provides a vast library of high-quality, royalty-free media with no attribution required, positioning itself as a leading resource in the free stock media market. The platform's business model revolves around providing free content with potential monetization through premium services or partnerships. Technically, Pexels employs modern web technologies including React and Next.js, supported by analytics and consent management tools such as Google Tag Manager, Hotjar, and OneTrust. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses multiple security headers, and manages user consent effectively, though it lacks a publicly visible security policy or incident response page. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy. Strategic recommendations include publishing explicit security and incident response information and providing a vulnerability disclosure channel to enhance trust and compliance.

Glas Istre novine d.o.o. operates a regional Croatian news archive website providing access to both digital portal and printed edition archives. The company is an established media entity founded in 1943 with a strong presence in Istria. The website serves a general audience interested in regional news and historical content. Technically, the site uses modern web technologies including Google Adsense, Analytics, Tag Manager, Bootstrap, and Cloudflare DNS, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-positioned in its market niche.

L

Lidl Hrvatska

lidl.hr

0

Lidl Hrvatska operates as a retail supermarket chain in Croatia, providing a broad range of grocery and household products. The website serves as an information portal for customers, highlighting weekly offers and store locations. The company is positioned as a large retail player in the Croatian market, with a business model focused on physical retail supported by digital presence. Technically, the website employs modern web technologies including JavaScript frameworks, YouTube integration, and cookie consent management via OneTrust, hosted on Akamai infrastructure ensuring reliable performance and security. The security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with comprehensive GDPR-aligned policies and user consent management. Overall, the website reflects a mature digital presence with good user experience and trustworthiness.

I

Internet Assigned Numbers Authority

iana.org

0

The Internet Assigned Numbers Authority (IANA) website serves as the authoritative source for the global coordination of DNS root zone management, IP address allocation, and protocol assignments. Operated as a function under Public Technical Identifiers (PTI), an ICANN affiliate, IANA plays a critical role in maintaining the stability and interoperability of the Internet's core infrastructure. The website provides detailed information about domain name management, number resources, and protocol registries, targeting network operators, protocol developers, and the broader Internet community. Technically, the website employs a straightforward infrastructure using HTML5, CSS3, jQuery, and Google Custom Search Engine for site search capabilities. While the site is accessible and professionally designed with consistent branding, there is room for improvement in mobile optimization, accessibility, and implementation of modern security headers. The absence of visible forms collecting sensitive data reduces attack surface, and HTTPS usage is implied, supporting a secure browsing experience. From a security perspective, the site demonstrates a moderate security posture with no evident vulnerabilities or exposed sensitive data. However, the lack of explicit security headers and incident response information suggests opportunities to enhance security transparency and resilience. Privacy compliance is strong, with clear links to comprehensive privacy and terms of service policies hosted on ICANN domains. The WHOIS data is unavailable due to query restrictions, likely reflecting privacy protection measures appropriate for a critical Internet infrastructure entity. Overall, the IANA website is a trustworthy, authoritative resource with a solid business credibility and technical foundation. Strategic enhancements in security headers, mobile responsiveness, and public security policies would further strengthen its posture and user trust.

Н

Национални ЦЕРТ Републике Србије

cert.rs

0

The website cert.rs represents the National CERT (Computer Emergency Response Team) of the Republic of Serbia, operating under the Regulatory Agency for Electronic Communications and Postal Services (RATEL). It serves as the national authority for cybersecurity incident prevention, coordination, and response within Serbia's ICT infrastructure. The site provides news, alerts, recommendations, publications, and incident reporting mechanisms primarily targeting government bodies, ICT professionals, and the general public in Serbia. The organization is well-established since 2014, with a clear mandate and partnerships with international CERT organizations, reflecting a strong market position in national cybersecurity governance. Technically, the website employs modern web technologies including Bootstrap 5, jQuery, and Font Awesome, with a custom CMS backend. It is mobile responsive and optimized for accessibility and SEO, though some accessibility features could be enhanced. The site is served over HTTPS with DNSSEC enabled, indicating a strong security posture. No major vulnerabilities or security misconfigurations were detected. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms in place. Security-wise, the site demonstrates good practices such as incident reporting, domain protection, and partnerships with trusted cybersecurity entities. However, formal security policy documentation and vulnerability disclosure mechanisms are not publicly available and could be improved. Overall, the site is trustworthy, professional, and aligned with its governmental cybersecurity mission. The overall risk is low, with recommendations focusing on enhancing security headers, publishing formal security policies, and improving accessibility to further strengthen the site's security and compliance posture.

E

Enartia Single Member S.A

tophost.gr

0

Top.Host is a Greek-based web hosting and domain registration provider operating since 2016 under the parent company Enartia Single Member S.A. The company offers a broad range of hosting services including shared, reseller, VPS, and dedicated servers, targeting individuals and businesses primarily in Greece and Europe. Their market position is supported by certifications such as ISO 27001 and McAfee Secure, and a strong emphasis on customer support and service reliability. Technically, the website is built on Drupal CMS with modern frontend technologies like jQuery and Bootstrap, enhanced by analytics and marketing tools including Google Analytics, Facebook Pixel, Hotjar, and CrazyEgg. The infrastructure benefits from Cloudflare DNS and security features, ensuring fast performance and good accessibility. Security posture is strong with HTTPS enforcement, security headers, and compliance with GDPR and other regulations. Privacy and cookie policies are comprehensive and supported by consent mechanisms. Overall, the website demonstrates a professional, trustworthy, and secure online presence with extensive customer engagement and transparency.

N

NIC Liechtenstein

nic.li

0

NIC Liechtenstein operates as the official registry for the .li country code top-level domain (ccTLD), managing domain name registrations on behalf of the Office for Communications of the Principality of Liechtenstein. The service is provided by Switch, a reputable Swiss internet infrastructure provider. The website offers domain lookup services, registrar information, and legal and security policies, targeting domain registrants and registrars. The business model centers on domain administration and registry services, positioning NIC Liechtenstein as a trusted authority in the Liechtenstein internet namespace. Technically, the website is built on a custom CMS platform by Switch, utilizing modern web technologies including Bootstrap for responsive design and Piwik for analytics. The site is mobile optimized and performs moderately well, with a clean and professional design. However, accessibility and SEO optimizations are basic and could be enhanced. The infrastructure is hosted by Switch, ensuring reliable and secure hosting. From a security perspective, the website enforces HTTPS and employs CAPTCHA on its domain lookup form to prevent abuse. While no critical vulnerabilities or exposed sensitive data were detected, the site lacks some advanced security headers and does not publicly provide incident response contact details or a vulnerability disclosure policy. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism, which may be a gap under GDPR requirements. Overall, NIC Liechtenstein presents a trustworthy and professional online presence consistent with its role as a ccTLD registry. Strategic recommendations include implementing a cookie consent mechanism, adding security headers, publishing a vulnerability disclosure policy, and enhancing accessibility and privacy compliance to strengthen security posture and user trust.

S

Switch

nic.ch

0

Switch operates as the official registry for .ch and .li domain names under mandate from the Swiss Federal Office of Communications (OFCOM). The website serves as a portal for domain name lookup, registrar information, and legal and security details related to Swiss internet domains. Positioned as a trusted national authority, Switch provides essential services ensuring the stability and security of the Swiss internet namespace. The site targets domain registrants, registrars, and internet users in Switzerland and Liechtenstein, offering a straightforward domain lookup tool and access to registrar listings. Technically, the website employs a modern tech stack including Bootstrap for responsive design and Piwik for analytics, hosted on Switch's own infrastructure. The site is mobile optimized with good navigation clarity and basic accessibility features. Security is well addressed with HTTPS enforced and CAPTCHA protection on forms, though some security headers are missing. Privacy compliance is partial, with an Acceptable Use Policy present but no explicit GDPR-compliant privacy or cookie policy visible. From a security perspective, the site demonstrates a solid posture with no visible vulnerabilities or exposed sensitive data. However, improvements are recommended in cookie consent implementation, privacy policy transparency, and security header deployment. The WHOIS data confirms the legitimacy of the domain registration, consistent with the official registry operator Switch, reinforcing trustworthiness. Overall, the website is professional, secure, and credible, serving its role effectively as the Swiss domain registry portal. Strategic enhancements in privacy compliance and security best practices would further strengthen its position and user trust.

V

Večernji list d.o.o.

mojahrvatska.hr

0

Moja Hrvatska is a Croatian news portal operated by Večernji list d.o.o., focusing on news and stories relevant to the Croatian diaspora and domestic audience. It holds a leading position in the Croatian media market, offering news, blogs, and cultural content. The website integrates multiple advertising and analytics technologies, including Google Tag Manager, Google Analytics, and consent management tools to ensure GDPR compliance. The site is well-structured with good design and navigation, optimized for mobile devices, and maintains a professional online presence.

The domain zurnal.info is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, preventing access to any substantive website content. Due to this, no business information, contact details, or service descriptions are available for analysis. The domain's WHOIS data is restricted or unavailable, limiting insights into ownership and registration details. Technically, the site uses Cloudflare's security services, indicating some level of protection, but no further security headers or configurations are visible. The lack of accessible content and policies results in a low overall trust and credibility score.

V

Večernji list d.o.o.

vojnapovijest.hr

0

Vojnapovijest.vecernji.hr is a Croatian online magazine specializing in military history, operated under the well-established media company Večernji list d.o.o. The website offers curated content focused on 20th-century military events, including the World Wars and the Croatian Homeland War, targeting a general audience interested in historical military topics. It benefits from the strong brand recognition of Večernji list and integrates with their broader media ecosystem. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, Video.js for media, and a consent management platform (Didomi) to ensure GDPR compliance. Advertising is managed through Google AdSense and Ezoic, with multiple tracking and analytics tools in use. Security posture is strong with HTTPS enforced and standard security headers present, though no explicit security policy or incident response contacts are published. Privacy and cookie policies are comprehensive and include user consent mechanisms. Overall, the site is professionally designed, mobile-optimized, and trustworthy, with no detected critical vulnerabilities or adult content.

Gradivo.hr is an online education platform primarily targeting high school students in Croatia, offering video lessons, practice exercises, and preparation materials for the state maturity exams. It positions itself as the largest online provider of such educational content in the region, operating on a subscription-based business model. The website is professionally designed with a clear focus on user experience and accessibility, leveraging modern web technologies such as React and Next.js. Integration with marketing tools like Google Tag Manager and Shopify Chat enhances user engagement and analytics capabilities. Security posture is solid with HTTPS enforced and use of script offloading via Partytown, though there is room for improvement in security headers and explicit privacy compliance disclosures. The domain WHOIS data is privacy protected, which is common for this business type, and no suspicious patterns were detected. Overall, the platform appears legitimate, professional, and focused on delivering educational value to its audience.

Ordinacija.hr is a well-established Croatian health and lifestyle web portal providing quality content focused on health, wellness, and lifestyle topics. It holds a strong market position as part of the Vecernji.hr media group, targeting a broad general audience interested in health-related information. The website employs a modern technical infrastructure based on WordPress, enhanced with various third-party scripts for advertising, analytics, and consent management, ensuring GDPR compliance. Security posture is solid with HTTPS enforcement and standard security headers, though there is room for improvement in accessibility and explicit security policy disclosures. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable source for health information in its market.

V

Večernji list (implied from domain and content)

diva.hr

0

Diva.vecernji.hr is a Croatian online media platform specializing in fashion, beauty, and lifestyle content. It serves a Croatian-speaking audience interested in trends, beauty tips, and lifestyle stories. The website is professionally designed with a consistent brand identity and offers rich multimedia content including articles, images, and videos. The platform operates under the umbrella of Vecernji.hr, a well-known Croatian media group, indicating a medium-sized media business with a focus on advertising revenue. Technically, the site uses modern web technologies such as Bulma CSS, Google Tag Manager, and consent management platforms to comply with GDPR. Security posture is moderate with HTTPS enforced and consent mechanisms in place, though some security headers are not explicitly detected. No critical vulnerabilities or blocking mechanisms are present, and the site is accessible without WAF challenges. Privacy compliance is basic, with cookie consent implemented but no explicit privacy policy found in the provided content. Overall, the site is safe for general audiences and maintains a moderate to good level of trustworthiness.

P

Poslovni dnevnik

poslovni.hr

0

Poslovni dnevnik is a prominent Croatian business news media outlet offering comprehensive coverage of finance, companies, technology, and related sectors. The website targets business professionals, investors, and the general public interested in business news. It operates on a WordPress platform with a modern tech stack including Google Analytics, Facebook Pixel, and GDPR-compliant consent management via Didomi. The site demonstrates good content quality, professional design, and clear navigation, optimized for mobile devices. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not published. Advertising and tracking practices are standard for media sites, with moderate user tracking balanced by GDPR compliance. Overall, the website is trustworthy and professionally maintained, with no signs of blocking or suspicious activity.

S

SPORTSKI ŽIVOT D.O.O.

sportlife.hr

0

Sportlife.hr is a Croatian-based distributor and retailer specializing in professional and home fitness equipment. The company represents multiple well-known international fitness brands and offers services including equipment sales, maintenance, and fitness space planning. The website is professionally designed using WordPress and WooCommerce, targeting fitness centers, gyms, and individual consumers. The domain is well-established since 2010, consistent with the business's market presence. Technically, the site uses modern web technologies and is mobile optimized, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks visible security headers and privacy policies, indicating room for improvement in compliance and security best practices. Contact information is clearly provided, enhancing business credibility.

E

Elle Hrvatska

elle.hr

0

Elle.hr is a well-established Croatian media website specializing in fashion, beauty, lifestyle, pop culture, and horoscope content. The site targets a general audience interested in contemporary style and cultural trends. It operates as a media publishing business with a consistent brand presence and a decade-long domain history, indicating market stability and recognition. The website leverages modern web technologies and advertising platforms to deliver content and monetize traffic effectively. Technically, the site is hosted on Gandi.net, uses HTTPS with good SSL configuration, and integrates multiple third-party scripts for analytics and advertising. Privacy compliance is evident through a comprehensive privacy policy, cookie consent mechanism, and terms of service, although explicit contact information and security policies are not published. Security posture is solid with HTTPS and basic security headers but could be improved with additional headers and incident response details. Overall, the website is professional, trustworthy, and safe for general audiences, with no signs of content blocking or WAF interference.

M

MONDO INC

mondo.rs

0

Mondo.rs is a prominent Serbian media portal offering a wide range of news, entertainment, sports, and magazine content. The website serves a general audience with timely and objective information across multiple categories. It operates under MONDO INC and maintains several subsidiary brands, enhancing its market presence in the Serbian media landscape. The site is well-structured with a consistent brand identity and a professional design that supports user engagement and content discovery. Technically, the website leverages modern JavaScript frameworks such as Nuxt.js and integrates multiple third-party services for advertising, analytics, and consent management, including Didomi for GDPR compliance. The infrastructure supports good mobile optimization and SEO practices, although some accessibility features could be improved. Performance is moderate, with a comprehensive use of external scripts for marketing and tracking. From a security perspective, the site enforces HTTPS and includes standard security headers, demonstrating a solid baseline security posture. However, explicit security policies and incident response contacts are not publicly available, and there is no security.txt file for vulnerability disclosure. Privacy compliance is strong, with clear cookie consent mechanisms and detailed privacy policies aligned with GDPR requirements. Overall, mondo.rs presents a trustworthy and professional media platform with a mature digital presence. Strategic improvements in security transparency and accessibility would further enhance its risk profile and user trust.

H

Hanza Media

slobodna.hr

0

Slobodna Dalmacija is a leading Croatian regional news portal and daily newspaper primarily serving the Dalmatia region. Owned by Hanza Media, it offers comprehensive news coverage in politics, sports, culture, and economy, supplemented by premium subscription content and advertising revenue streams. The website demonstrates a mature digital presence with a modern tech stack including Joomla CMS, Bootstrap framework, and extensive use of third-party analytics and advertising technologies. The site is well-optimized for SEO and mobile devices, providing a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced, reCAPTCHA integration, and cookie consent management, although some security headers and policies are not explicitly found. No privacy policy or terms of service were detected in the provided content, representing an area for improvement. Overall, the website is trustworthy, safe for general audiences, and maintains a high level of business credibility.

C

CANCOM Austria AG

cancom.ro

0

CANCOM Austria AG operates the website www.cancom.ro, positioning itself as the number one digitalization partner in Austria, offering IT services including network solutions, cybersecurity, collaboration, and cloud solutions. The company targets businesses seeking digital transformation and IT modernization. The website reflects a professional and consistent brand image with a focus on technology services. The technical infrastructure is modern, leveraging HTML5, CSS3, JavaScript, JSON-LD structured data, and a CMS platform (Neos CMS). The site is mobile optimized and demonstrates good SEO practices. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are absent. The WHOIS data is privacy protected as per ROTLD policy, which is typical for Romanian domains, and no suspicious patterns were detected. Overall, the site is trustworthy and professionally maintained, though improvements in privacy policy visibility and security disclosures are recommended.

S

Story.hr

smartlife.hr

0

Story.hr is a Croatian multimedia portal specializing in celebrity news, lifestyle, and technology content. Established in 2011 and operated by MONDO Inc Zagreb, it holds a solid position in the regional media market, offering a variety of news articles and reviews targeting a general audience interested in entertainment and tech. The website demonstrates a mature digital presence with modern web technologies and a comprehensive content offering. Technically, the site uses Nuxt.js framework, integrates multiple analytics and advertising services, and employs a GDPR-compliant cookie consent mechanism, reflecting a good level of digital maturity. Security-wise, the site enforces HTTPS and uses consent management but lacks explicit security policy disclosures and some security headers, indicating room for improvement. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with no signs of content blocking or WAF interference.

M

MONDO, Inc.

sensa.hr

0

Sensa.hr is a Croatian lifestyle and wellness media portal operated by MONDO, Inc., under the parent company Story.hr. The site offers a wide range of content focused on spiritual growth, mental health, beauty, wellness, health, cooking, lifestyle, and astrology, targeting a general audience interested in a healthy and balanced life. The business model is primarily content publishing monetized through advertising and sponsored events such as the Sensa Wellbeing Dan. The website demonstrates consistent branding and professional content quality, supported by a strong social media presence.

The website luxury.hr currently serves as a placeholder with a single under construction image and lacks any substantive content or business information. The domain is registered with a Croatian registrar and has been active since 2015, indicating a legitimate registration. However, the absence of privacy policies, contact information, or any business description limits the website's credibility and user trust. Technically, the site is minimal with basic HTML and CSS, no detected scripts, and no advanced technologies or CMS in use. Security posture cannot be fully assessed due to lack of data but no WAF or blocking mechanisms are detected. Overall, the site scores low on content quality, privacy compliance, and business credibility, resulting in a low overall AI score.

Adria Media Zagreb d.o.o. is a Croatian media company with an established presence since 2006. The website currently displays a maintenance notice but provides clear contact information including emails and phone numbers. The company operates in the media sector, offering publishing and subscription services primarily targeting the Croatian market. The domain registration data aligns well with the business claims, indicating a legitimate and consistent online presence. Technically, the website is built on WordPress using a coming soon plugin, with technologies such as jQuery, Tailwind CSS, and FontAwesome. Hosting and DNS are managed via Cloudflare, providing good SSL configuration. However, the site lacks advanced security headers and privacy compliance features such as cookie or privacy policies. Mobile optimization and accessibility are basic, and no analytics or advertising scripts are detected, indicating minimal user tracking. From a security perspective, the site benefits from HTTPS and Cloudflare DNS but would improve by implementing security headers and formal privacy and cookie policies to meet GDPR requirements. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the security posture is moderate but could be enhanced with better compliance and security best practices. The overall risk is low given the limited content and lack of sensitive data collection, but the absence of privacy and cookie policies and security headers are notable gaps. Strategic recommendations include adding privacy and cookie policies, implementing security headers, improving mobile and accessibility features, and establishing vulnerability disclosure and incident response information to enhance trust and compliance.

I

Iskustva i Novosti - sve na jednom mjestu

iskustva.hr

0

The website 'Iskustva i Novosti' is a Croatian news and experiences portal founded in 2020, providing a variety of news articles and blog posts primarily focused on Croatian and regional topics. The site targets the general public interested in current events and lifestyle content. Technically, it is built on WordPress CMS with Elementor page builder and uses common web technologies such as jQuery, Google Fonts, and Facebook SDK. The hosting is provided by POSLUH HOSTING d.o.o., a Croatian hosting company, which aligns with the website's regional focus. The site employs HTTPS with a good SSL configuration but lacks several security headers and explicit privacy or cookie policies, which impacts its compliance posture. Affiliate marketing is present through links to iHerb, Aliexpress, and Temu, and tracking is implemented via Google Analytics and Facebook Pixel. Overall, the website is functional, with good content quality and user experience, but it requires improvements in privacy compliance and security best practices.

M

MONDO, Inc.

story.hr

0

Story.hr is a prominent Croatian media portal specializing in lifestyle, celebrity news, and general entertainment content. Operated by MONDO, Inc., it maintains a strong market presence with multiple subsidiary brands such as Roditelji.hr and Sensa.hr, targeting a broad general audience interested in news, lifestyle, and entertainment. The website features a professional design, clear navigation, and regularly updated content, supporting its position as a leading media outlet in Croatia. Technically, the site leverages modern web frameworks like Nuxt.js and Vue.js, integrates multiple analytics and advertising platforms, and employs best practices in security such as HTTPS and security headers. Privacy compliance is well addressed with comprehensive policies and consent mechanisms, aligning with GDPR requirements. However, direct contact information and explicit security policies are not prominently published, which could be improved. Overall, the site demonstrates a mature digital infrastructure and a solid security posture, making it a trustworthy and professional media platform.

M

Mondo inc.

espreso.rs

0

Espreso.co.rs is a prominent Serbian online news portal operated by Mondo inc., offering a wide range of news, sports, entertainment, and lifestyle content targeted at the general Serbian-speaking audience. The website holds a strong market position as one of the fastest growing portals in the region, supported by a comprehensive content offering and a subsidiary lifestyle brand 'Glossy'. Technically, the site employs a modern advertising and analytics stack including Google Analytics, Gemius, and multiple ad networks, with a custom CMS platform. The site is mobile optimized and demonstrates good SEO and user experience practices. Security-wise, the site enforces HTTPS and GDPR-compliant consent management but lacks explicit published security policies and incident response contacts, which could be improved. Overall, the site is trustworthy, professionally maintained, and safe for general audiences.

K

Kurir.rs

kurir.rs

0

Kurir.rs is a well-established Serbian online news media portal founded in 2009, providing comprehensive coverage of politics, society, sports, entertainment, and regional news. It operates multiple subsidiary domains focusing on business, lifestyle, and health news, targeting a broad general audience in Serbia. The website features live TV streaming, video content, and RSS feeds, positioning itself as a major player in the Serbian media landscape. Technically, the site uses modern JavaScript frameworks such as Nuxt.js and integrates various analytics and advertising technologies, including Google Tag Manager, Gemius, and CleverPush. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies. WHOIS data confirms the domain's legitimacy and long-term operation. Overall, Kurir.rs demonstrates a mature digital presence with moderate security and privacy compliance, suitable for its media business model.

A

Ablestar

tagreport.io

0

The website Shopify.tagreport.io is a specialized service offering Shopify store owners a free report on their product tags, including unique tags and tag prefixes. It is operated by Ablestar, a small technology company focused on e-commerce tools, particularly for Shopify. The site also promotes the Ablestar Bulk Product Editor app, which provides bulk editing capabilities for Shopify product data. The business model is SaaS-based, targeting Shopify merchants who need better control over product tagging and data management. The website content is professional, well-structured, and clearly communicates the service offered, with supporting links to privacy policy and terms of use hosted on the Ablestar corporate site.

A

Ablestar

linkscanner.io

0

The website 'Shopify Broken Link Checker' is a specialized free tool offered by Ablestar to Shopify store owners, enabling them to scan their stores for broken internal links and receive detailed email reports with direct links to fix issues in the Shopify admin. The business operates in the e-commerce sector, targeting Shopify merchants, and leverages this tool to promote its paid Shopify app, Ablestar Link Manager. The site is professionally designed with consistent branding and clear navigation, providing a good user experience and relevant content for its target audience. Technically, the site uses modern web technologies including Google Fonts, Facebook Pixel, and Google Tag Manager, with assets hosted on Google Cloud Storage, ensuring fast performance and mobile optimization. Security-wise, the site uses HTTPS and includes CSRF protection on its form, but lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. WHOIS data is unavailable due to privacy protection, but the domain appears legitimate and consistent with the business. Overall, the site demonstrates a moderate to good security posture and business credibility, with room for enhancements in privacy compliance and security best practices.