Security Directory

The website futacockinside.me operates as a personal game archive titled "Lea's Game Archive". It hosts various directories of game files across multiple platforms, accessible only after password authentication. The site is clearly intended for personal use rather than commercial purposes, with no evident business or contact information provided. The domain is relatively new, registered in 2022, and the hosting setup includes suspicious nameservers that may pose security concerns. The site uses a custom analytics script but lacks standard privacy and cookie policies, which impacts its compliance posture. Technically, the site is built with basic HTML, CSS, and JavaScript, including Google Fonts for styling. It is moderately optimized for mobile devices but lacks advanced SEO and accessibility features. No CMS or major frameworks are detected. The hosting provider is not clearly identified beyond the registrar and suspicious DNS configuration. Performance appears moderate with no major errors or broken elements. From a security perspective, the site lacks DNSSEC, security headers, and visible HTTPS enforcement details, which lowers its security posture. The use of suspicious nameservers and absence of privacy or security policies further reduce trustworthiness. However, no WAF or blocking mechanisms are detected, and the content is safe with no adult or explicit material. Overall, the site is functional but has significant gaps in security and compliance best practices. The overall risk assessment suggests caution due to DNS and security configuration concerns. Strategic recommendations include improving DNS security, implementing HTTPS and security headers, adding privacy and cookie policies, and providing clear contact information to enhance trust and compliance.

P

Privacy service provided by Withheld for Privacy ehf

corru.observer

0

The website corru.observer is a niche interactive narrative experience centered around speculative technology and immersive storytelling. It does not represent a traditional business but rather a creative project supported by a community of active supporters and merchandise sales. The technical infrastructure relies on modern JavaScript libraries and Cloudflare hosting, providing moderate performance and good mobile optimization. Security posture is basic with HTTPS enforced and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy and cookie policies are absent, and no contact or business information is provided, limiting compliance and trust indicators. Overall, the site is functional and engaging for its target audience but would benefit from improved privacy and security disclosures.

The website bigrat.monster is a minimal content site celebrating its 5-year anniversary. It is registered under a privacy protection service, Private by Design, LLC, based in the US. The site lacks business-related content, contact information, or any commercial services, indicating it is likely a personal or niche hobby site rather than a commercial business. The technical infrastructure is basic, with Cloudflare DNS hosting but no DNSSEC enabled and no visible CMS or frameworks. Security posture is moderate with HTTPS enabled and domain transfer protections, but lacks security headers and privacy policies. Overall, the site poses low risk but also offers limited trust signals or business credibility.

The website transgendersurgeri.es serves as a personal archive platform titled "Lexi's Archive" that hosts various directories and files intended for private use. It employs a password-protected mechanism to restrict downloads, indicating a focus on controlled access rather than public business operations. The site lacks any business branding, contact information, or commercial content, positioning it as a personal or small group resource rather than a commercial entity. Technically, the site is built with basic HTML, CSS, and JavaScript, utilizing the Fira Mono font and a third-party analytics script from lea.pet. The design is minimalistic with basic mobile responsiveness and limited SEO optimization. No CMS or advanced frameworks are detected. The site does not display any privacy or cookie policies, nor does it provide contact or legal information, which limits its compliance posture. From a security perspective, the site uses a numeric key-based password protection for downloads and sets cookies with SameSite=Strict attributes, which is a positive practice. However, there is no visible enforcement of HTTPS or security headers, and no privacy or cookie consent mechanisms are present. The WHOIS data is inaccessible due to Red.es restrictions, preventing verification of domain registration details and reducing trustworthiness. No WAF or blocking mechanisms are detected, and the content is accessible without challenge. Overall, the site scores low on business credibility and privacy compliance, with moderate technical implementation and security posture. It is safe in terms of content, containing no adult or explicit material. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, adding contact information, and enhancing security headers to improve trust and compliance.

I

InfinityFree

000.pe

0

000.pe is a domain hosted by InfinityFree, a free web hosting provider offering PHP and MySQL support for users to create websites on subdomains such as yourname.000.pe. The website serves as an informational landing page promoting InfinityFree's free hosting services and providing an abuse reporting contact. The technical infrastructure is basic, relying on standard HTML5 and CSS3 with Google Fonts, hosted on InfinityFree's platform. The site is mobile optimized with moderate performance but lacks advanced SEO and accessibility features. Security posture is minimal with no detected security headers, but HTTPS is implied. There is no privacy or cookie policy, which impacts compliance. Overall, the site is legitimate and consistent with its purpose but would benefit from enhanced security and compliance documentation.

P

Private by Design, LLC

lea.pet

0

The website lea.pet is a personal instance of the Sharkey social platform, designed for a small community of friends. It operates under the domain registered to Private by Design, LLC, a US-based organization. The site offers social networking services with a focus on personal and community content sharing. The business model is niche and community-oriented, with no commercial or enterprise scale indications. The technical infrastructure uses modern web technologies including JavaScript and CSS, with a custom theme and no detected CMS. Hosting details are not explicit, and the domain uses suspicious name servers which may pose security concerns. The site is accessible without WAF or blocking mechanisms and shows moderate performance and mobile optimization. Security posture is average with no DNSSEC and missing security headers, and privacy compliance is weak due to lack of privacy and cookie policies. The site contains adult-themed content and links, targeting a mature audience without age verification. Overall, the site is functional but has notable security and compliance gaps that should be addressed to improve trust and safety.

The website brodokk.space serves as a personal homepage for an individual known as Brodokk, who identifies as a Fennec fox persona. The site highlights personal and professional programming activities, server management, and participation in various online communities and projects. The content is straightforward, primarily textual with some images, and links to multiple social media and community platforms. The website is small-scale and targeted at a general audience interested in technology and creative online communities. From a technical perspective, the site is built with basic HTML and CSS, hosted by Gandi SAS, and does not use any advanced frameworks or CMS. The site is moderately optimized for mobile devices and accessibility but lacks advanced SEO and performance optimizations. No analytics or advertising technologies are detected, indicating a privacy-conscious or minimalistic approach. Security posture is basic; the domain uses HTTPS (implied by the URL), but no DNSSEC is enabled, and no security headers are present. There are no forms or data collection points, reducing attack surface but also limiting user interaction. The WHOIS data is transparent and consistent with the website's personal nature, with no privacy protection used. No privacy or cookie policies are present, which is a compliance gap. Overall, the website is low risk, safe for general audiences, and serves as a personal portfolio and community hub. Strategic recommendations include improving security headers, adding privacy and cookie policies, enabling DNSSEC, and enhancing mobile and accessibility features to improve user experience and compliance.

Aquamarine.gay is a personal website serving as a digital aquarium for the owner, aquamarine, who identifies with unique personal and gender identities and has interests in mathematics, programming, music, art, and meteorology. The site functions primarily as a personal blog and contact point, with links to source code repositories and social media. The website is small-scale, niche, and non-commercial, targeting a general audience interested in the owner's content and persona. Technically, the site is hosted on a dedicated server running Arch Linux with the Caddy HTTP server, indicating a modern and stable infrastructure. The site is well-designed with good accessibility and mobile optimization, though it lacks advanced frameworks or CMS. Performance is moderate, and SEO is adequately addressed through meta tags and Open Graph data. From a security perspective, the site uses HTTPS and has domain transfer protection but lacks DNSSEC and explicit security headers. No privacy or cookie policies are published, and no vulnerability disclosure or incident response information is provided. The domain registration uses privacy protection, which aligns with the personal nature of the site. No WAF or blocking mechanisms are detected, and no analytics or tracking scripts are present, indicating a privacy-conscious approach. Overall, the site is trustworthy and professionally maintained for a personal project but would benefit from enhanced security headers, published privacy and cookie policies, and vulnerability disclosure mechanisms to improve compliance and security posture.

Arcane Sorrows is a personal website operated by an individual known as mossweaver, presenting a cozy, artistic corner of the internet focused on personal interests and curated content. The site is small-scale, non-commercial, and currently under construction with limited content. The target audience appears to be general internet users interested in personal blogs, art, and niche communities. Technically, the site is built with basic HTML, CSS, and JavaScript, hosted on Hover's infrastructure, and includes external scripts for a webring widget. The site lacks advanced frameworks or CMS platforms and shows basic mobile optimization and accessibility. Security posture is minimal with no DNSSEC, no security headers, and no visible HTTPS enforcement details. Privacy and compliance policies are absent, and no contact or incident response information is provided. The domain registration is consistent with the site's personal nature and shows no suspicious patterns. Overall, the site is safe for general audiences but lacks professional security and compliance features.

A

The personal garden of a broken doll. - Aphrodite.dev

aphrodite.dev

0

Aphrodite.dev is a personal creative website operated by an individual named Artémis, serving as a blog and portfolio for writings, projects, and photo galleries. The site targets a mature audience with explicit NSFW content warnings and offers financial support options via BuyMeACoffee. The website is a niche personal project rather than a commercial business, emphasizing creative expression and community links. Technically, the site is built with simple HTML and CSS, uses Atom feeds for content syndication, and references AGE encryption for secure communication. The site is lightweight, fast, and mobile-optimized but lacks advanced frameworks or CMS. Security posture is moderate with HTTPS implied but missing explicit security headers and policies. Privacy compliance is low due to absence of privacy and cookie policies. No forms or user data collection mechanisms are present, reducing attack surface. Overall, the site is trustworthy for its purpose but could improve security and compliance documentation.

A

Akseli Lahtinen

akselmo.dev

0

The website akselmo.dev is a personal blog authored by Akseli Lahtinen, focusing on topics such as gaming, game development, free and open source software (FOSS), and programming. It serves a niche audience of gamers, developers, and open source enthusiasts. The blog has a consistent and professional presentation with a rich archive of posts dating back to 2016, indicating a well-established presence in its domain. The business model is primarily content sharing without commercial transactions or services. Technically, the site is built with standard web technologies (HTML, CSS, JavaScript) and uses Goat Counter for privacy-respecting analytics. The site appears to be hosted on Hetzner, inferred from blog content, and is likely a static or custom-built blog without a CMS. The site is performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and does not expose sensitive data or forms. However, no explicit security headers were detected, and no privacy or cookie policies are present, which are areas for improvement. The domain registration data is consistent with the website content and author identity, supporting high legitimacy and trustworthiness. Overall, the site is low risk with good content quality and technical implementation but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

The website 1a-insec.net presents minimal content, primarily serving as a placeholder with references to a related domain and an AT Protocol identity. There is no clear business description or detailed service information, indicating an early-stage or low-activity web presence. The domain is relatively new, registered in late 2022, with no privacy protection and standard domain status flags, suggesting legitimate registration but limited business maturity. Technically, the site lacks modern SEO, accessibility, and security features such as DNSSEC, security headers, and published policies. No contact or incident response information is provided, limiting user trust and compliance posture. Security posture is basic with no detected vulnerabilities but also no advanced protections. Overall, the site scores low on content quality, privacy compliance, and business credibility, reflecting a need for significant improvements to establish trust and professionalism.

D

dragon.style

dragon.style

0

Dragon.style is a small, niche Mastodon instance focused on providing a decentralized social media platform for a queer-friendly community. It is administered by an individual known as Gracious Anthracite, emphasizing a moderated, safe, and ad-free environment. The website serves as an about page detailing community rules, contact information, and donation options, reflecting a non-commercial, community-supported business model. Technically, the site runs Mastodon version 4.0.15, hosted on DigitalOcean, with a standard modern web stack including JavaScript and CSS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR-specific features. Overall, the site is trustworthy and professional for its scope but could improve security and privacy practices.

E

eldritch.cafe

eldritch.cafe

0

Eldritch.cafe operates as an independent Mastodon instance providing decentralized social media services primarily targeting queer, feminist, and anarchist communities, with a focus on French-speaking users. The platform emphasizes community moderation, inclusivity, and amplifying marginalized voices. It maintains a small but active user base and is hosted by Fedi Monster in France. The website content is bilingual and includes detailed moderation guidelines, credits, and legal notices consistent with French law. Technically, the site runs on a Glitch-soc fork of Mastodon, leveraging modern web technologies such as React and JavaScript. The infrastructure is moderately performant and mobile-optimized, though accessibility and SEO features are basic. Hosting and domain registration are consistent and legitimate, with HTTPS enabled and domain transfer protections in place. However, DNSSEC is not enabled, and security headers are absent, indicating room for improvement in security hardening. From a security perspective, the instance enforces clear community rules prohibiting hateful conduct, harassment, misinformation, and illegal content. While no explicit security policy or incident response contacts are published, the moderation team is transparent and active. Privacy compliance is adequate with a privacy policy present, but the absence of a cookie consent mechanism is a minor gap. No vulnerabilities or suspicious patterns were detected in the analysis. Overall, eldritch.cafe presents a trustworthy, community-driven social media platform with a solid technical foundation and clear governance. Strategic enhancements in security headers, cookie consent, and incident response transparency would further strengthen its security posture and compliance standing.

V

VSCodium

vscodium.com

0

VSCodium is a community-driven open source project that provides freely-licensed binaries of Microsoft's VS Code editor without telemetry or proprietary licensing. It targets developers and programmers who prefer open source software with privacy considerations. The website offers comprehensive installation instructions across multiple platforms and package managers, emphasizing ease of access to MIT-licensed VS Code binaries. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and external libraries like AnchorJS and Font Awesome, hosted with Cloudflare DNS services. The site is well-structured, mobile-optimized, and fast loading, with good SEO practices but lacks some accessibility features. Security-wise, the project demonstrates good practices by disabling telemetry and signing Windows binaries, but the website itself lacks explicit security headers, privacy policies, and incident response information, which are areas for improvement. Overall, the domain registration is consistent and transparent, supporting the legitimacy of the project. The site contains no adult or questionable content and is safe for general audiences.

M

My Abandonware

myabandonware.com

0

My Abandonware is a niche website offering a comprehensive database of over 35,000 abandonware video games spanning from 1965 to 2014. It targets retro gaming enthusiasts and nostalgia seekers by providing free downloads of classic games along with detailed metadata, screenshots, user comments, and ratings. The site operates on an ad-supported model with optional user accounts for enhanced experience. Technically, the website employs modern web technologies including JavaScript, CSS3, and uses multiple third-party ad and analytics services with GDPR-compliant consent management. Hosting is supported by Fastly CDN ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and standard security headers present, though explicit security policies and incident response information are absent. The WHOIS data is unavailable, which slightly reduces trust but the active content-rich site and social media presence support legitimacy. Overall, the site is well-positioned in its niche with good content quality and user engagement features.

T

The LineageOS Project

lineageos.org

0

LineageOS is a well-established open-source Android operating system distribution project founded in 2016. It targets Android device users, developers, and power users seeking customization and extended device longevity. The project operates with a strong community-driven model supported by donations and offers monthly security updates and open-source apps. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site uses modern web technologies including Material Kit CSS, jQuery, and Cloudflare CDN, ensuring fast performance and mobile optimization. Security posture is good with HTTPS enforced and domain transfer protections, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a privacy policy and terms of service present but lacking cookie consent mechanisms and explicit GDPR compliance indicators. Contact information is limited to community channels such as Reddit, with no direct company emails or phone numbers published. Overall, the website is trustworthy, safe, and well-positioned in the open-source Android ecosystem.

T

The Khronos Group, Inc.

opengl.org

0

The Khronos Group operates the official OpenGL website, providing authoritative resources, documentation, and news for the OpenGL graphics API. The organization is well-established with a domain registered since 1997, reflecting its long-standing presence in the graphics technology industry. The website targets developers and technology professionals seeking high-performance graphics standards and related tools. Technically, the site employs modern web technologies including HTML5, CSS, JavaScript, and integrates Google Analytics and Tag Manager for tracking and search functionality. Hosting is provided by DigitalOcean, ensuring reliable infrastructure. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism despite use of tracking scripts. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and serves as a key resource hub for the graphics development community.

RARLAB operates the official website for WinRAR, a widely used file archiving software supporting RAR and ZIP formats. The company, win.rar GmbH, has a long-standing presence since 2002 and offers software downloads, licensing, and partner programs. The website is professionally designed with clear navigation and provides essential information about the product and purchasing options. Technically, the site uses jQuery and standard web technologies with basic mobile optimization and accessibility. Security posture is moderate with cookie consent implemented but lacks visible security headers and explicit HTTPS verification. WHOIS data is unavailable, which slightly reduces trust but is common for software vendors. Overall, the site is safe, trustworthy, and serves a general audience without any adult or questionable content.

X

X Corp.

pepsi.zip

0

X.com, formerly known as Twitter, is a leading global social media platform specializing in microblogging and social networking services. Owned by X Corp., the platform offers a range of services including advertising and subscription-based features, targeting a broad general audience worldwide. The website demonstrates a mature digital infrastructure with modern web technologies such as React and GraphQL, optimized for performance and mobile responsiveness. Security is robust with HTTPS enforcement, comprehensive security headers, and bot mitigation technologies integrated. Privacy policies and terms of service are clearly linked and comprehensive, reflecting compliance with GDPR and other regulations. However, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. Overall, the platform maintains a high level of trustworthiness and professionalism, supported by a long-established domain and consistent branding.

X

xkcd: Geologic Periods

xkcd.com

0

xkcd.com is a popular webcomic site delivering humor and intellectual content centered on romance, sarcasm, math, and language. The site targets a general audience interested in science and technology humor and maintains a consistent brand presence with active social media channels. The business model primarily revolves around content publishing, newsletter distribution, and book sales. Technically, the site uses standard web technologies (HTML, CSS, JavaScript) with moderate performance and basic mobile optimization. Security posture is moderate but lacks advanced security headers and visible privacy or cookie policies, which could be improved to enhance user trust and compliance. Overall, the site is safe, professional, and trustworthy but would benefit from enhanced privacy and security measures.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

modarchive.org

0

The Mod Archive is a well-established niche media platform hosting one of the world's largest collections of music modules, serving musicians, demoscene enthusiasts, and casual visitors. The site offers a community-driven model with user accounts, module uploads, favorites, and forums, supported by donations and hosted by SceneSat. The platform has a consistent brand and a long history dating back to 1996, with the domain registered since 2004. Technically, the website uses basic web technologies including HTML, CSS, JavaScript, and jQuery, with moderate performance and basic mobile optimization. Security posture is moderate with HTTPS implied but lacking DNSSEC and security headers, and no visible advanced security policies or incident response contacts. Privacy compliance is limited, with no cookie consent or explicit GDPR compliance indicators. Overall, the site is trustworthy and functional but would benefit from enhanced security and privacy measures.

G

Giorgio Maone

noscript.net

0

NoScript.net is the official website for the NoScript Security Suite, a free and open-source browser extension that enhances user security by blocking malicious scripts and allowing trusted content only. The project is well-established since 2005 and is integrated into the Tor Browser, positioning it as a trusted tool in the privacy and security software market. The website targets privacy-conscious users and security experts seeking enhanced browser protection. The business model is donation-based, emphasizing free software principles. Technically, the website is built with standard web technologies (HTML, CSS, JavaScript) and supports multiple major browsers. The site is well-structured, mobile-optimized, and accessible, with good SEO practices. However, some modern security enhancements like DNSSEC are not enabled, and no explicit security headers were detected in the provided data. The site does not appear to use any CMS or complex frameworks, reflecting a lightweight and focused technical infrastructure. From a security perspective, the website promotes strong security practices through its product, including script blocking and anti-XSS protections. However, the site itself lacks published privacy, cookie, or security policies, and no contact information or vulnerability disclosure mechanisms are provided. DNSSEC absence and missing security headers represent minor security gaps. Overall, the security posture is good but could be improved with better transparency and technical hardening. The overall risk assessment is low given the nature of the site and its content. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing clear contact and vulnerability disclosure information to enhance trust and compliance.

The website doubledouble.top serves as a simple region selection landing page directing users to USA or Europe subdomains. It lacks substantive business information, contact details, or policy documents, indicating a minimal online presence likely for a small or new business. The domain is privacy protected and registered in Saint Kitts and Nevis, which is common for privacy but reduces transparency. Technically, the site uses modern web standards with a clean, mobile-optimized design and is hosted behind Cloudflare, providing basic performance and security benefits. However, the absence of DNSSEC, security headers, and privacy or cookie policies indicates room for improvement in security and compliance. No analytics or advertising scripts were detected, suggesting minimal tracking or marketing activity. Overall, the site is safe with no adult or questionable content but lacks trust signals and business credibility.

Open Camera is a small-scale, open source software project focused on providing an advanced camera application for Android devices. The website serves primarily as an informational and download portal, featuring detailed descriptions of app features, licensing, and links to source code repositories. The business model is based on free software distribution with revenue generated through website advertising. The target audience is Android users seeking enhanced camera functionality beyond stock apps. Technically, the website is a static site hosted by 123-Reg Limited, utilizing standard web technologies such as HTML, CSS, and JavaScript. It integrates Google services including Analytics, Tag Manager, and Adsense for tracking and monetization. The site is mobile-optimized with a basic but functional design and navigation structure. However, it lacks advanced CMS features and some modern security headers. From a security perspective, the site uses HTTPS (implied by domain and Google services usage) and implements cookie consent with anonymized IP tracking for analytics, indicating some privacy awareness. However, no explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present. The absence of security headers and contact information for security incidents suggests room for improvement in security posture. Overall, the website is trustworthy and professionally maintained for its niche purpose but would benefit from enhanced security practices and clearer privacy compliance documentation. The domain registration data supports legitimacy with consistent and long-term ownership.

B

brr

brr.fyi

0

The website brr.fyi is a personal blog focused on observations and anecdotes related to US Antarctic infrastructure, specifically McMurdo Station and Amundsen-Scott South Pole Station. It targets USAP support staff and enthusiasts interested in Antarctic life. The business model is content sharing through blog posts with subscription options, positioning itself as a niche informational resource. The site is small in scale, founded in 2022, and maintains consistent branding and good content quality. Technically, the site uses standard web technologies including HTML5, CSS3, and JavaScript with Ionicons for icons. It features a responsive design with a dark mode toggle and basic accessibility features. Hosting details are limited but the domain is registered via Amazon Registrar with privacy protection. Performance is moderate with good SEO practices including meta tags and structured data. From a security perspective, the site uses HTTPS and has domain status protections but lacks DNSSEC and security headers such as CSP or HSTS. No privacy, cookie, or terms policies are present, indicating compliance gaps. No analytics or advertising scripts are detected, suggesting minimal user tracking. The domain registration is privacy protected, which is appropriate for a personal blog, and no suspicious patterns are found. Overall, the site is safe, professional, and trustworthy for its niche audience but would benefit from improved privacy and security policies to enhance compliance and user trust.

C

Chitter

chitter.xyz

0

Chitter.xyz is an independent Mastodon-based decentralized social network fostering a friendly and inclusive community. It operates as a small-scale social platform within the fediverse, emphasizing community moderation and user etiquette to promote kindness and accessibility. The platform is transparent about its hosting and data locations, relying on reputable providers such as Hetzner and AWS for DNS and storage services. The website content is well-structured, with clear descriptions of staff, community guidelines, and support mechanisms via Patreon and Liberapay.

P

Private by Design, LLC

snug.moe

0

Snugly Moe Moe is a small, niche federated social platform instance targeting general users interested in social networking within the 'snuggly beings' community. The website uses modern web technologies including Vue.js and Cloudflare DNS services, providing a moderate level of performance and basic mobile optimization. The domain is registered to Private by Design, LLC in the US, consistent with the website's content and target audience. Security posture is moderate with HTTPS enabled and domain status protections in place, but lacks DNSSEC and security headers which could improve resilience against attacks. Privacy and cookie policies are absent, and no contact or incident response information is provided, which limits compliance and transparency. Overall, the website is safe for general audiences and does not contain adult or explicit content.

H

Hochschule Neubrandenburg – University of Applied Sciences

dabamos.de

0

DABAMOS is an academic research project hosted by Hochschule Neubrandenburg – University of Applied Sciences, focusing on developing advanced deformation monitoring systems integrated with the Internet of Things. The project produces open source software such as DMPACK and OpenADMS to support sensor networks and automated geodetic data processing. The website serves as an information hub for research, software, and monitoring applications, targeting professionals and researchers in geodesy and geotechnics. Technically, the website is built with standard HTML and CSS, with a clean and professional design, good navigation, and mobile optimization. The presence of GitHub links and open source licensing enhances transparency and community engagement. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and safe, with no signs of malicious or adult content.

Miifox.net is a personal and hobbyist website primarily focused on language projects, game development, and miscellaneous personal content. The site features informal language and a variety of technical and creative topics, targeting a general audience interested in conlangs and retro game development. The website is small-scale with limited professional business information or commercial intent. Technically, the site is built with basic HTML and CSS without advanced frameworks or CMS. It is hosted under a domain registered with Metaregistrar BV, but the WHOIS data is inconsistent, showing a future creation date, which raises concerns about domain legitimacy. No advanced security features, analytics, or marketing tools are detected, and the site lacks privacy, cookie, or terms of service policies. From a security perspective, the site does not implement DNSSEC, security headers, or visible HTTPS enforcement, which lowers its security posture. No contact or incident response information is provided, and no vulnerabilities or malware indicators are found. Overall, the site is safe for general audiences but lacks professional security and compliance measures. The overall risk is low due to the non-commercial nature of the site, but the inconsistent WHOIS data and lack of security best practices suggest improvements are needed to enhance trust and compliance.

The website wolfyja.de is a personal site belonging to an individual named jade, a 21-year-old non-binary transfeminine person from Germany who identifies as a wolfy. The site serves as a personal blog and portfolio showcasing interests in vintage computing, Linux, trains, photography, and social engagement within hacker and maker communities. The site also promotes social media presence and community participation but does not represent a commercial business entity. Technically, the site is built with basic HTML and CSS, hosted with Cloudflare DNS services, and shows moderate performance and mobile optimization. However, it lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. Security posture is basic with no visible vulnerabilities but also no formal security disclosures or incident response information. Overall, the site is safe, non-commercial, and targeted at a general audience interested in personal tech and social topics.

The website natalieee.net is a personal site owned by natalie[ee] (roentgen connolly), serving as a platform for personal blogging, technical content, and site information. It is a small-scale, niche personal website with a consistent branding approach and a focus on technical and personal expression. The site is actively maintained with a custom static site generator and HTTP server built using Python and Hy, demonstrating a high level of technical maturity for a personal project. From a technical perspective, the site employs modern technologies such as asyncio and a custom static site generator, indicating a strong technical infrastructure. The site performance is fast, with basic mobile optimization and accessibility features. However, SEO and accessibility could be improved further. The hosting provider is not explicitly stated, but the domain registrar is Spaceship, Inc. Security posture shows some strengths such as domain transfer protection and anti-bot measures in the comment form, but lacks critical elements like DNSSEC, HTTPS confirmation, security headers, and published privacy or cookie policies. No vulnerability disclosure or incident response information is provided, which limits transparency and security readiness. Overall, the security score is moderate but could be significantly improved. The overall risk is moderate with no critical vulnerabilities detected in the content or domain registration. Strategic recommendations include enabling HTTPS and DNSSEC, publishing privacy and cookie policies, adding security headers, and improving spam and bot protections. These steps would enhance trust, compliance, and security posture, aligning the site with best practices for personal websites.

The website lifeless.space presents minimal content with a simple heading and a short descriptive phrase. There is no indication of a commercial business or services offered. The domain is newly registered in October 2024 with privacy protection, which obscures registrant details. The site is hosted via Cloudflare DNS but lacks DNSSEC and security headers, indicating a basic security posture. No privacy, cookie, or terms policies are present, and no contact information is provided, limiting trust and compliance. Overall, the site appears to be a placeholder or personal project rather than a professional business presence.

N

ninee's webbed site

ninee.xyz

0

The website ninee.neocities.org is a personal homepage primarily serving as a curated links page to various social, development, and personal interest sites. It does not represent a commercial business or organization and lacks detailed business information or contact data. The site is hosted on Neocities, a platform popular for personal and hobbyist web projects. The technical infrastructure is minimal, relying on basic HTML and CSS without advanced frameworks or CMS. Security posture is limited, with no detected security headers or privacy policies, and no HTTPS status information available from the data. The site content is safe, general audience appropriate, and free from adult or questionable material. Overall, the site is functional but basic, with room for improvement in security and privacy compliance.

P

Private by Design, LLC

moth.monster

0

moth.monster is a small personal and creative website operated by Private by Design, LLC, based in the US. The site features a blog, projects, art portfolio, an online shop, and contact information, targeting a general audience interested in creative content and merchandise. The business model appears to be content sharing combined with merchandise sales through an external shop platform. The website is modest in scale and positioned as a niche personal digital presence rather than a commercial enterprise. Technically, the website is built with standard HTML, CSS, and JavaScript without any detected CMS or advanced frameworks. Hosting and DNS services are provided by Porkbun, LLC. The site shows basic mobile optimization and SEO features but lacks advanced accessibility and performance enhancements. No analytics or advertising technologies are detected, indicating minimal user tracking and a privacy-conscious approach. From a security perspective, the domain is privacy protected and has domain status flags that prevent unauthorized transfers or deletions, which is positive. However, DNSSEC is not enabled, and no security headers are detected, which are areas for improvement. The site lacks privacy and cookie policies, vulnerability disclosure information, and incident response contacts, indicating gaps in compliance and security transparency. No WAF or blocking mechanisms are present, and the content is safe for general audiences. Overall, moth.monster is a modest, privacy-conscious personal website with basic technical and security posture. Strategic improvements in security headers, privacy compliance, and vulnerability disclosure would enhance trust and resilience. The site is low risk but would benefit from formalizing privacy and security practices to align with best practices.

F

Foxscotch

foxscot.ch

0

Foxscotch is a personal website representing an individual web developer who also enjoys programming, 3D modeling, and animals. The site serves primarily as a personal portfolio and social media hub, linking to various social platforms. The business model is personal branding with a focus on web development services. The website is simple, clean, and consistent in branding but lacks formal business information or policies. Technically, the site uses standard HTML and CSS with FontAwesome icons, but no advanced frameworks or CMS are detected. Performance and mobile optimization are moderate to good, though accessibility and SEO are basic. Security posture is weak due to absence of HTTPS confirmation, security headers, and privacy policies. No forms or data collection mechanisms are present, reducing attack surface but also limiting business functionality. Overall, the site is safe and suitable for general audiences with no adult content or tracking technologies detected.

P

Privacy service provided by Withheld for Privacy ehf

nia.dog

0

The website nia.dog is a personal site belonging to an individual named Nia, who identifies as a transfeminine nerd based in Pittsburgh. The site focuses on personal interests such as retro games, niche content, music, and writing. It is a small-scale, non-commercial personal blog hosted likely on Neocities with domain registration through NameCheap. The site content is basic but relevant to its niche audience, with moderate branding consistency and no commercial business model or professional business information provided. Technically, the site uses basic HTML and CSS without advanced frameworks or CMS. Hosting appears to be on a simple platform with moderate performance and basic mobile optimization. There is no evidence of analytics, tracking, or advertising technologies. Security posture is minimal with no DNSSEC, no security headers, and no visible HTTPS enforcement confirmation. Privacy and cookie policies are absent, and no contact or incident response information is provided. Overall, the security posture is weak but typical for a personal site. The domain is privacy protected, which is justified given the personal nature of the site. No suspicious or malicious indicators were found. The site is safe for general audiences with no adult or explicit content. The overall AI score reflects a basic but functional personal website with room for improvement in security and compliance. Strategic recommendations include enabling DNSSEC, adding security headers, enforcing HTTPS, publishing privacy and cookie policies, and providing contact information to improve trust and compliance.

S

The Barkzone

sugrstrz.com

0

SugrStrz.com is a personal website and blog maintained by an individual gamer and technology enthusiast. The site focuses on sharing personal interests including gaming, music, and social media engagement. It serves a niche audience of gaming and retro game fans as well as followers of the owner's social profiles. The business model is non-commercial, primarily a hobby/personal branding platform with no direct revenue streams or commercial services. The website is hosted on Neocities with DNS managed by Cloudflare and domain registration through GoDaddy, reflecting a modest but stable technical infrastructure. The site uses basic HTML, CSS, and JavaScript with some outdated elements such as the deprecated marquee tag, indicating room for modernization. Security posture is basic with no DNSSEC enabled and no visible security headers or HTTPS enforcement in the HTML content, though the domain registration status includes protective flags. Privacy and cookie policies are absent, and no contact or incident response information is provided, limiting compliance and trust signals. Overall, the site is safe for general audiences with no adult content detected. Recommendations include improving security configurations, adding privacy and cookie policies, and enhancing mobile and accessibility features to improve user experience and compliance.

D

Digital Privacy Corporation

keithhacks.cyou

0

The website keithhacks.cyou is a personal site operated by an individual known as ~keith, who identifies as a queer, trans, cyberpunk anarchist with interests in technology, privacy, and the furry community. The site serves as a hub for personal content, hosting various public services including a Git server, IRC, XMPP, and a Tor mirror, reflecting a strong commitment to privacy and alternative internet culture. The domain is registered to Digital Privacy Corporation in the US, consistent with the site's privacy-focused ethos. Technically, the site is hosted on DigitalOcean and built with standard web technologies including HTML5, CSS (Sass), and JavaScript. The site is mobile-optimized with clear navigation and moderate performance. However, it lacks advanced frameworks or CMS platforms and does not implement DNSSEC or security headers, which are recommended for enhanced security. From a security perspective, the site enforces HTTPS and publishes a PGP key for secure communication, which are positive indicators. However, the absence of DNSSEC, security headers, privacy policies, and incident response information indicates room for improvement in security posture and compliance. No tracking or analytics scripts are present, aligning with the site's privacy values. Overall, the site is a niche personal project with moderate technical maturity and a privacy-conscious approach. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance trust and security. The site is safe for general audiences with no adult or explicit content detected.

A

Adam Walker

furry.engineer

0

Furry.Engineer is a niche Mastodon social networking instance founded in 2018 and administered by Adam Walker in the US. It targets tech enthusiasts and engineers within the furry fandom, promoting an LGBTQ+ friendly and safe community space. The platform leverages the open-source Mastodon software (version 4.4.1+glitch) and is hosted with Cloudflare DNS and domain registration services. The website demonstrates good design quality, mobile optimization, and basic accessibility, providing a user-friendly experience for its audience. However, it lacks some standard compliance features such as cookie consent mechanisms and terms of service documentation. Security posture is adequate with HTTPS enforced and domain transfer protections, but could be improved by enabling DNSSEC and publishing security policies. Overall, the site is a legitimate, small community platform with moderate trustworthiness and a clear focus on its target audience.

A

AS207960 Cyfyngedig

glauca.digital

0

Glauca Digital is a UK-based technology company specializing in domain registration, DNS management, VPS hosting, and related internet infrastructure services. Founded in 2020 and operating under the legal entity AS207960 Cyfyngedig, the company positions itself as a transparent, tech-savvy provider with a focus on ease of use and clear pricing. It is a member of the RIPE NCC, indicating a strong presence in IP address and ASN allocation services. The website reflects a professional and consistent brand image with a clear target audience of technical users and businesses seeking reliable domain and hosting solutions. Technically, the website employs modern web technologies including Bootstrap 4, jQuery, and Keycloak for authentication, with support for passkeys enhancing security. The infrastructure appears custom-built and hosted within the AS207960 network, ensuring control and reliability. Performance and mobile optimization are good, though accessibility features are basic. SEO practices are well implemented with comprehensive metadata and structured data. From a security perspective, the site enforces HTTPS and uses advanced authentication mechanisms. DNSSEC is enabled by default for DNS zones, and hCaptcha is used to mitigate automated abuse. However, the absence of explicit security policies, incident response plans, and cookie consent mechanisms indicates areas for improvement in compliance and transparency. The domain WHOIS data is consistent with the business identity, though the domain is currently expired, which could pose operational risks if not addressed promptly. Overall, Glauca Digital presents a trustworthy and professional online presence with strong technical foundations and a clear business focus. Strategic enhancements in privacy compliance and formal security documentation would further strengthen its market position and customer trust.

D

Digital Overdose

digitaloverdose.tech

0

Digital Overdose is a small, community-driven platform focused on information security, cybersecurity, and ethical hacking education. Founded in 2021, it provides a welcoming space for enthusiasts and professionals to engage through tutoring sessions, events, and a vibrant Discord server. The platform leverages social media and content hosting on Patreon, YouTube, and GitHub to extend its reach and provide resources to its members. The website is built using modern Angular technology and hosted likely on GitHub Pages with Cloudflare DNS services, reflecting a moderate level of digital maturity.