Security Directory

pen.sec AG is a German-based IT security company specializing in penetration testing, cyber security consulting, and related services. With over 20 years of experience, the company positions itself as a full-service partner for businesses seeking to protect their digital assets. Their market position is strengthened by memberships in recognized cybersecurity clusters such as the Allianz für Cybersicherheit and IT-Sicherheitscluster e.V. The website presents a professional image with detailed service offerings and customer testimonials, targeting primarily German enterprises concerned with IT security risks. Technically, the website is built on WordPress using Elementor and several modern plugins for SEO and cookie management. The site is well-optimized for SEO and mobile devices, with good performance and accessibility features. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers are not explicitly detected. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy or terms of service pages. Overall, the security posture is solid, with strengths in penetration testing and incident response services. The lack of explicit privacy and vulnerability disclosure policies are areas for improvement. The domain WHOIS data aligns with the business claims, showing no suspicious patterns. The site is safe for general audiences and free from adult or questionable content.

P

Projekt 29 GmbH & Co. KG

projekt29.de

0

Projekt 29 GmbH & Co. KG is a well-established German full-service provider specializing in data protection, information security, and compliance consulting and solutions. Founded in 1996 and headquartered in Regensburg, the company serves over 4500 customers across various industries, offering services such as external data protection officers, IT compliance, ISO 27001 and TISAX certification support, and e-learning platforms. Their market position is strengthened by memberships in key industry associations and certifications, positioning them as a trusted partner for businesses seeking regulatory compliance and security assurance. Technically, the website is built on a modern WordPress CMS with professional design, responsive layout, and integration of relevant plugins and tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Overall, Projekt 29 demonstrates a strong commitment to privacy compliance and business credibility, making it a reliable service provider in its domain.

I

ITAGO-Systems GmbH

itago.de

0

ITAGO-Systems GmbH is a German IT service provider specializing in a broad range of technology solutions including IT infrastructure, cloud services, VoIP telephony, IT security, data protection, and information security. The company positions itself as a trusted regional partner with certifications such as TÜV and IT security certifications, targeting businesses and organizations seeking professional IT solutions. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the site is built on WordPress using modern plugins like WPBakery and Slider Revolution, hosted on Schlund Technologies servers, and optimized for mobile devices with moderate performance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit incident response contacts are missing. Overall, the domain registration and hosting details align well with the business claims, indicating legitimacy and trustworthiness.

T

The Internet Folks

theinternetfolks.com

0

The Internet Folks is a technology service provider specializing in scaling SaaS products and communities through development and marketing services. Their market position is strengthened by partnerships with early-stage startup communities, venture capital firms, and accelerators, with notable portfolio features on Product Hunt and Shark Tank India. The company targets startups, associations, and communities seeking rapid product development and audience engagement solutions. Technically, the website is built on modern frameworks such as Next.js and Chakra UI, with integrations for analytics and marketing tools including Google Analytics and Facebook Pixel. The site demonstrates excellent design quality, mobile optimization, and SEO practices. Security posture is good with HTTPS enabled and no exposed sensitive data, but lacks some security headers and published security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. WHOIS data is unavailable, which raises some concerns about domain legitimacy, though the professional website content mitigates this risk. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy transparency.

M

Mein-Office Webdesign

webdesignbuero-offenbach.de

0

Mein-Office Webdesign is a small, established web agency based in Offenbach, Germany, with over 20 years of experience delivering customized web design, programming, and SEO services. The company emphasizes personalized consultation, high-quality responsive design, and GDPR compliance, targeting local businesses and organizations. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern frontend technologies such as jQuery and Slick Carousel, and mentions the use of the Redaxo CMS, supporting content management capabilities. Mobile optimization and SEO fundamentals are well implemented. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks explicit security headers and documented policies. No critical vulnerabilities or suspicious elements were detected. Overall, the website demonstrates a solid digital presence aligned with the company's business claims.

M

Mein-Office Webdesign

mein-office.com

0

Mein-Office Webdesign is a small, established web agency based in Frankfurt am Main, Germany, with over 22 years of experience in delivering professional web design and development services. The company targets businesses and private clients seeking modern, responsive, and SEO-optimized websites, including specialized services for medical professionals. Their business model focuses on full-service digital agency offerings, including strategy, design, programming, maintenance, and consulting. The website reflects a consistent brand image and clear service offerings, supporting a high level of trustworthiness. Technically, the website is built on the REDAXO CMS platform and utilizes modern JavaScript libraries such as jQuery, flatpickr, and WOW.js to enhance user experience. The site is mobile-optimized and demonstrates good SEO practices with proper meta tags and structured navigation. Hosting is provided by IONOS SE, a reputable registrar and hosting provider. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and has domain transfer protections in place but lacks DNSSEC and explicit security headers, which are recommended to enhance security posture. The site includes a CAPTCHA on its contact form to mitigate spam. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. No incident response or security policy pages were found. Overall, the website is professional, secure enough for its business scope, and compliant with basic privacy regulations. Strategic improvements in security headers, DNSSEC, and cookie consent would enhance trust and compliance. The domain registration data supports the legitimacy and longevity of the business, with no suspicious indicators detected.

S

Stadt Offenbach am Main

offenbach.de

0

Stadt Offenbach am Main operates an official municipal website providing comprehensive information and services to its citizens, businesses, and visitors. The site features news, event listings, online services, and resources related to city governance and community engagement. It maintains a strong market position as the authoritative digital presence of the city government. The website is well-branded, professionally designed, and targets a broad audience including residents and tourists. The business model is focused on public service and information dissemination.

K

Kreativ-Instinkt GbR

kreativ-instinkt.de

0

Kreativ-Instinkt GbR is a small German production company specializing in corporate design, film production, and photography. The company operates primarily in the media sector, serving clients with image films, lifestyle photography, and corporate branding solutions. Their website reflects a professional and consistent brand presence with clear service offerings and client references. Technically, the site is built on Joomla CMS with common JavaScript libraries and integrates social media and marketing widgets. Security posture is moderate with basic protections like CSRF tokens and cookie consent but lacks advanced security headers and explicit security policies. Contact information is transparent and includes a named contact person, enhancing business credibility. Overall, the website is well-structured and trustworthy, though improvements in security and compliance documentation could enhance its maturity.

V

VISTEC Internet Service GmbH

vistec.net

0

VISTEC Internet Service GmbH is a well-established German internet service provider based in Wiesbaden, with over 25 years of experience. The company offers a broad range of services including internet access, IT service, server housing, data backup, security solutions, telephony, and web hosting. Their business model focuses on providing reliable and secure internet and IT infrastructure services primarily to business customers, emphasizing close customer relationships. The website is professionally designed using WordPress and Elementor, optimized for mobile devices, and includes SEO best practices. Technically, the site uses modern web technologies but lacks some advanced security configurations such as DNSSEC and security headers. The security posture is adequate with HTTPS enabled and domain transfer protections in place, but there is room for improvement in publishing security policies and incident response information. Overall, the domain is legitimate, consistent with the business claims, and the website content is safe and professional.

A

Ads&Friends

adsandfriends.de

0

Ads&Friends is a full-service marketing and communication agency based in Gießen, Germany, founded around 2018. The company offers a broad range of services including branding, web and digital solutions, and social media management, targeting businesses and organizations seeking professional marketing support. Their market position is that of a local/regional agency with a diverse client base including public institutions and private companies. Technically, the website is built on WordPress with modern plugins and frameworks, hosted on Amazon AWS infrastructure, and demonstrates good performance, mobile optimization, and SEO practices. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers and policies could be enhanced. Overall, the website is professional, trustworthy, and compliant with GDPR, featuring comprehensive privacy and cookie policies and a consent mechanism. No critical security or content safety issues were detected.

S

SABsoftzone Pvt. Ltd.

sabsoftzone.com

0

SABsoftzone Pvt. Ltd. is a small-sized Indian technology company specializing in website design, development, hosting, SEO, PPC management, and software development services. The company targets small to midsized businesses, non-profits, and individuals seeking comprehensive IT and digital marketing solutions. Their market position is that of a top SEO and digital marketing provider in Delhi, India, supported by a portfolio of clients and testimonials. Technically, the website employs a modern JavaScript stack with tracking and analytics tools such as Google Analytics and Facebook Pixel, and uses HTTPS with reCAPTCHA for form security. However, the absence of security headers and privacy/cookie policies indicates room for improvement in security and compliance. The WHOIS data is missing, raising concerns about domain registration legitimacy, which impacts trust. Overall, the website is professional and content-rich but requires enhanced security and privacy measures to improve trust and compliance.

N

National Skill Development Corporation

nsdcjobx.com

0

National Skill Development Corporation (NSDC) operates nsdcjobx.com as a government-backed job portal aimed at facilitating employment opportunities for graduates, freshers, and experienced candidates across India. The platform categorizes jobs by industry and location, providing a comprehensive service to job seekers and employers. The website integrates official NSDC branding and links to government resources, reinforcing its authoritative market position in the education and skill development sector. Technically, the website is built on ASP.NET WebForms with modern front-end libraries such as jQuery, Bootstrap, and Select2. Hosting is managed via Amazon AWS infrastructure, ensuring reliable availability. The site is mobile-optimized with good SEO practices, although some legacy technology components remain. Analytics tools like Google Analytics and Facebook Pixel are used for user tracking, but no explicit cookie consent mechanism is present. From a security perspective, the site enforces HTTPS and has domain-level protections such as clientDeleteProhibited status. However, DNSSEC is not enabled, and no security headers are detected in the HTML content. There is no published security policy or incident response contact information, which are areas for improvement. Overall, the security posture is moderate but could be enhanced with standard best practices. The website is fully accessible without WAF or blocking mechanisms, and content safety is rated safe with no adult or questionable content. The domain WHOIS data aligns with the business claims, showing a recent registration consistent with the launch of a government initiative. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security policies, and implementing cookie consent to improve compliance and trust.

The website id-medienservice.de is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks direct access to any business or content information. This prevents a full analysis of the company's services, contact details, or compliance documentation. The domain uses Cloudflare nameservers and security services, indicating an intent to protect the site from automated access or attacks. However, the lack of visible content and registrant data limits the ability to assess the business or security posture comprehensively. The technical infrastructure relies on Cloudflare's security platform, but no additional technologies or CMS platforms are detectable. Security headers and policies are not visible due to the blocked content. Overall, the site currently presents as inaccessible and lacking public-facing business or compliance information.

S

SKPD SAVA e.V.

sava-frankfurt.de

0

SKPD SAVA e.V. is a small non-profit Slovenian cultural and educational association based in Frankfurt, Germany, dedicated to promoting Slovenian language, culture, and community activities among the Slovenian diaspora. The website serves as a hub for news, events, language courses, and cultural programs, targeting Slovenians living in Germany and Europe. The organization collaborates with several partner sites and cultural groups to offer language camps, social events, and educational exchanges. The website is well-branded, consistent, and provides clear contact information and community resources. Technically, it is built on WordPress with common plugins and hosted on a German hosting provider, showing moderate performance and good mobile optimization.

C

Consensus Shipyard

ipc.space

0

Interplanetary Consensus (IPC) is a blockchain scaling framework designed to enable horizontal scalability through hierarchical subnets and customizable consensus algorithms. The website serves as a comprehensive technical documentation portal targeting developers and organizations building decentralized applications that require scalable and performant blockchain infrastructure. The platform leverages modern web technologies such as React, Next.js, and GitBook, ensuring a fast, mobile-optimized, and accessible user experience. Security practices are robust with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not published. Privacy compliance is basic with cookie consent and a privacy policy present. Overall, the website reflects a technically mature and trustworthy project with room for improvement in business transparency and security disclosures.

E

ETHGlobal

ethglobal.com

0

ETHGlobal is a prominent organizer of Ethereum-focused hackathons, summits, and developer community events, fostering innovation and collaboration in the blockchain space. The company has established itself as a key player in the Ethereum ecosystem by providing platforms for developers and entrepreneurs to build decentralized applications and solutions. Their market position is strengthened by partnerships with leading blockchain projects and a global presence in hosting events. Technically, ETHGlobal employs a modern web infrastructure built on Next.js and React, hosted and protected via Cloudflare services. The website is well-optimized for performance and mobile devices, with good SEO and accessibility practices. Analytics are implemented using Google Analytics and Tag Manager, though privacy compliance could be improved with explicit cookie consent mechanisms. From a security perspective, the site enforces HTTPS and includes several security headers, contributing to a strong security posture. However, the absence of DNSSEC and a formal vulnerability disclosure policy are areas for improvement. No critical vulnerabilities or suspicious content were detected, and the domain registration details align well with the business's history and legitimacy. Overall, ETHGlobal presents a trustworthy and professional online presence with a strong focus on community engagement and developer support. Strategic enhancements in privacy compliance and security transparency would further solidify their position and trustworthiness.

A

ASV Köln e.V.

asv-koeln.de

0

ASV Köln e.V. is a well-established sports club based in Cologne, Germany, with a history spanning over 90 years. The organization offers a broad range of sports and fitness activities, including fitness courses, children's sports, various sports disciplines, and community events. The club targets a diverse audience including families, seniors, and sports enthusiasts, positioning itself as a central hub for active living in the Cologne region. The business model is primarily membership-based, supported by partnerships and sponsorships from local companies. The website reflects a professional and community-focused brand with strong trust indicators such as testimonials and partner logos. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and SVG graphics, with AJAX-enabled forms and a responsive design optimized for mobile devices. Hosting appears to be managed via your-server.de, and the site uses HTTPS with a valid SSL configuration. While no explicit CMS or major frameworks are detected, the site demonstrates good SEO and accessibility practices, though some improvements in security headers could be made. From a security perspective, the site enforces HTTPS, uses CSRF tokens in forms, and provides a cookie consent mechanism compliant with GDPR. However, no dedicated security policy or incident response contact information is found, and security headers are not evident in the provided data. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies, and user data collection is limited to necessary contact and newsletter forms. Overall, ASV Köln's website is a secure, professional, and user-friendly platform that effectively supports its community sports mission. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

Welcome Center Schwarzwald-Baar-Heuberg is a regional service organization focused on supporting international skilled workers and local companies in the Schwarzwald-Baar-Heuberg region of Germany. The center offers multilingual consulting, seminars, and assistance with recruitment and integration of foreign professionals. It operates under the auspices of regional economic development and the local Chamber of Industry and Commerce, supported by the Baden-Württemberg Ministry of Economy, Labor, and Tourism. The website reflects a professional and consistent brand presence with clear contact channels and active social media engagement. Technically, the website is built on WordPress using modern plugins such as WPML for multilingual support, Contact Form 7 for forms, and Bootstrap for responsive design. It employs hCaptcha for bot protection and Fathom Analytics for privacy-focused visitor tracking. The site is moderately performant and mobile-optimized, though accessibility features are basic. SEO is present but could be enhanced with more comprehensive metadata and structured data. From a security perspective, the site uses HTTPS and implements CAPTCHA on forms, but lacks visible security headers and explicit security or privacy policies. No vulnerability disclosure or incident response information is provided. The WHOIS data is consistent with the website's regional and organizational claims, indicating legitimacy. No suspicious patterns or privacy protection in WHOIS are noted. Overall, the website is trustworthy and professionally maintained but would benefit from improved privacy compliance documentation and enhanced security headers to strengthen its security posture and user trust.

I

Institut der deutschen Wirtschaft Köln Medien GmbH

iwmedien.de

0

IW Medien is a German full-service communication agency specializing in strategic communication for associations, foundations, companies, and political institutions. The agency focuses on making complex economic and socio-political topics accessible and actionable for its clients. Their market position is strong, supported by notable clients such as government ministries and industry associations, emphasizing their expertise in future-oriented communication solutions. Technically, the website is built on TYPO3 CMS with modern integrations like Google Tag Manager, Usercentrics for consent management, and Google reCAPTCHA for form security. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and consent mechanisms, though some security headers and explicit incident response policies could be improved. Overall, the website presents a professional, trustworthy, and compliant digital presence aligned with its business objectives.

T

TOP Sportmarketing Berlin GmbH

topsportonline.de

0

TOP Sportmarketing Berlin GmbH is a specialized sports marketing agency based in Germany, focusing on event organization, sponsorship, marketing communication, TV productions, and charity within the sports sector. The company targets sports organizations, sponsors, and event attendees primarily in Berlin, positioning itself as a regional player with a small business scale. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with common plugins such as Yoast SEO and WPML, hosted likely by 1&1 IONOS, and shows moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. Privacy compliance is partially met with a privacy policy present but no cookie banner. Contact information is limited on the main pages, which may affect user trust and engagement. Overall, the site is safe, professional, and trustworthy with room for improvement in security and privacy compliance.

M

Minor

minor-wissenschaft.de

0

Minor is a German-based social science research organization specializing in migration, integration, labor market, and democracy studies. The website presents a professional and well-structured platform showcasing ongoing and completed projects, targeting researchers, policymakers, and social organizations. The technical infrastructure is built on WordPress with modern plugins and analytics tools, hosted on reputable German servers. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though explicit security policies and incident response mechanisms are not publicly documented. Overall, the website reflects a credible and trustworthy research entity with good digital maturity.

P

P29 Group

p29.group

0

P29 Group is a German technology-focused company specializing in comprehensive digital security solutions, including compliance, IT security infrastructure, data protection, and employee sensitization. Founded in 2022, it operates through several subsidiaries with a combined experience of over 50 years, positioning itself as a reliable partner for businesses seeking robust security services. The website is professionally designed using WordPress and Elementor, reflecting a moderate to good level of digital maturity with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and security headers. Privacy compliance is strong with a comprehensive privacy policy, though cookie consent mechanisms are missing. Overall, the site is trustworthy and business credible, though improvements in security practices and transparency could enhance its posture.

nuLiga is a specialized platform operated by nu Datenautomaten GmbH, focused on providing automated internet-based network solutions for tennis associations and leagues primarily in Germany and Austria. The website serves as a portal for various regional tennis associations, offering both public and administrative access. The business targets tennis clubs and associations, providing league and club management services through a network of regional subdomains. The company has been established since 2003, indicating a mature presence in its niche market. Technically, the website uses basic HTML, CSS, and JavaScript without modern frameworks or CMS detected. The site performance and mobile optimization are basic, with no advanced SEO or accessibility features evident. The error page analyzed is minimalistic, with no forms or tracking scripts, and no evidence of advanced security headers or HTTPS enforcement from the provided data. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided. The domain registration data is consistent with the business claims, showing a legitimate and stable domain age. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is functional but basic, with room for improvement in security posture, privacy compliance, and technical modernization. The risk level is moderate due to missing security best practices but no critical vulnerabilities were found in the analyzed content.

B

BIÖG - Bundesinstitut für Öffentliche Gesundheit

sexualaufklaerung.de

0

sexualaufklaerung.de is a German government-backed portal operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG), providing comprehensive information, research, and educational materials on sexual education, contraception, and family planning. The website serves a broad audience including educators, health professionals, and the general public interested in these topics. It offers downloadable publications, research studies, and qualification programs, positioning itself as a trusted authoritative source in its domain. Technically, the site is built on TYPO3 CMS, uses Bootstrap for responsive design, and employs Matomo analytics with strong privacy protections such as IP anonymization and consent-based tracking. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital infrastructure. Security-wise, HTTPS is enforced, and privacy policies are comprehensive and GDPR compliant. However, explicit security headers and incident response policies are not clearly published, representing an area for improvement. WHOIS data aligns with the institutional nature of the site, showing no privacy protection or suspicious registrations, reinforcing its legitimacy. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy standards.

B

Bundesinstitut für Öffentliche Gesundheit

rauchfrei-info.de

0

The website www.rauchfrei-info.de is a professionally maintained, government-affiliated public health portal focused on tobacco cessation and related health education. It offers a variety of support services including forums, chat, telephone counseling, and educational resources, targeting smokers and individuals seeking to quit smoking in Germany. The site is well-positioned as a trusted source in the healthcare and non-profit sector with consistent branding and high-quality content. Technically, it is built on TYPO3 CMS with Matomo analytics, indicating a modern and privacy-conscious infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and secure forms, though some security headers and explicit security policies are not evident. Overall, the site is safe, mature content-wise, and trustworthy with no signs of blocking or WAF interference.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

impfen-info.de

0

The website www.impfen-info.de is a comprehensive public health information portal operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG) in Germany. It provides authoritative, up-to-date, and scientifically grounded information on vaccinations for various demographics including children, adolescents, adults, and pregnant women. The site supports public health goals by educating the population on immunization benefits, vaccination schedules, and legal frameworks such as the Masernschutzgesetz. It also offers interactive tools like vaccination checks and media resources to enhance user engagement. Technically, the site is built on the TYPO3 CMS platform, leveraging Matomo analytics configured with strong privacy protections such as IP anonymization and consent-based data collection. The design is modern, mobile-optimized, and accessible, ensuring a positive user experience. The site integrates social media channels for broader outreach and maintains consistent branding aligned with its government affiliation. From a security perspective, the site enforces HTTPS and employs privacy-conscious analytics but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious elements were detected. Privacy compliance is robust, with clear cookie consent mechanisms and GDPR adherence. The absence of direct contact emails or phone numbers on the main pages suggests a focus on information dissemination rather than direct user support. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government health information service. Strategic improvements could include publishing detailed security policies and enhancing security header implementation to further strengthen its security posture.

The website www.klima-mensch-gesundheit.de is a German government-affiliated public health information portal focused on educating the public about the health impacts of climate change. It offers a wide range of free educational materials including videos, posters, flyers, and interactive maps for heat, UV, and pollen warnings. The site is professionally designed, well-structured, and targets a broad audience including the general public, educators, health professionals, and vulnerable groups. It is supported by reputable government and health organizations, enhancing its trustworthiness. Technically, the site is built on TYPO3 CMS with modern web technologies such as Bootstrap and jQuery. It uses Matomo analytics with strong privacy protections including IP anonymization and no cookies without consent. The site is mobile-optimized and accessible, with good SEO practices. Hosting and DNS data indicate German-based infrastructure consistent with the site's government affiliation. From a security perspective, the site uses HTTPS and implements privacy-conscious analytics. However, explicit security headers and published security policies or incident response contacts are not detected. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the website presents a low risk profile with high content quality and strong privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to further improve trust and security posture.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

organspende-info.de

0

The website www.organspende-info.de is an authoritative German government-affiliated portal providing comprehensive information on organ and tissue donation, transplantation, and related topics. It serves the general public with educational content, downloadable organ donor cards, podcasts, and a dedicated information hotline. The site is well-positioned as a trusted source in the healthcare and public health sector in Germany, supported by the Bundesinstitut für Öffentliche Gesundheit (BIÖG). Technically, the site is built on TYPO3 CMS with a modern tech stack including jQuery, Matomo analytics, and various UI libraries. It demonstrates good digital maturity with mobile optimization, accessibility features, and GDPR-compliant privacy and cookie policies. The use of self-hosted Matomo analytics with IP anonymization reflects a strong privacy-conscious approach. From a security perspective, the site enforces HTTPS and employs privacy-respecting analytics but lacks publicly documented security policies or incident response contacts. No critical vulnerabilities or suspicious domains were detected. WHOIS data is minimal but consistent with a government-related domain, supporting legitimacy. Overall, the website presents a low-risk profile with strong content quality and privacy compliance. Strategic improvements include publishing formal security policies, incident response information, and enhancing security headers to further strengthen the security posture.

C

codecentric AG

codecentric.de

0

codecentric AG is a prominent IT consulting and agile software development company based in Germany, positioning itself as a leader in the German IT consulting market. The company offers IT management and consulting services with a focus on modern technologies and agile methodologies, targeting IT professionals and businesses seeking digital transformation. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, indicating a mature digital infrastructure. Security-wise, the site uses HTTPS and Google reCAPTCHA v3, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the website is accessible without WAF or blocking mechanisms, and no suspicious content or vulnerabilities were detected in the provided data.

L

LAC Eichsfeld

lac-eichsfeld.de

0

LAC Eichsfeld is a small, established non-profit sports club founded in 2001 in Germany, focusing on inclusive running activities, especially supporting visually impaired and blind runners through their Blindenlaufschule and Guidenetzwerk Deutschland. The website reflects a community-oriented organization with clear contact information and active engagement in guide training events. Technically, the site is built on Joomla CMS using Helix Ultimate framework and SP Page Builder, with modern libraries like jQuery and Bootstrap. The site is mobile optimized and uses HTTPS with GDPR-compliant cookie consent mechanisms. Security posture is good with CSRF protections and cookie blocking, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

Nature Office is a small real estate business specializing in luxury office rentals in the Masaki area of Dar Es Salaam, Tanzania. The company emphasizes biophilic design, integrating nature into office environments to enhance employee well-being and productivity. Their market position targets businesses seeking premium office spaces with natural aesthetics and modern amenities. The website provides detailed visual content, contact information, and social media links to engage potential clients. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and jQuery, with Google Analytics for user tracking. The site is mobile optimized and has a moderate performance profile. However, it lacks advanced security headers and cookie consent mechanisms, which are important for compliance and security. From a security perspective, the site uses HTTPS but does not implement additional security headers or publish security policies. The absence of WHOIS data for the domain raises concerns about domain legitimacy and transparency, which impacts trustworthiness. No forms or sensitive data collection points were detected, reducing immediate risk exposure. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance improvements, and domain registration transparency to strengthen trust and reduce risk.

S

Stadt Frankfurt am Main

stadt-frankfurt.de

0

The website frankfurt.de serves as the official city portal for Frankfurt am Main, providing comprehensive information and services related to municipal administration, citizen services, cultural events, and city politics. It targets residents, visitors, and businesses in Frankfurt, offering multilingual support and extensive navigation to various city departments and services. The portal positions itself as a trusted government resource with a large-scale digital presence and active social media engagement. Technically, the site employs modern web technologies including Bootstrap utilities, FontAwesome icons, media players, and translation scripts, ensuring good mobile optimization and accessibility. The site loads with moderate performance and includes SEO-friendly metadata and Open Graph tags, enhancing discoverability and social sharing. From a security perspective, the site enforces HTTPS and uses secure libraries, but lacks visible security headers and published security or incident response policies. No vulnerability disclosure or security.txt files were found. Privacy and cookie policies are not evident, which is a compliance gap. Contact information such as emails and phone numbers are not explicitly presented, limiting direct communication channels. Overall, the site is a professional and trustworthy government portal with good content quality and technical implementation. However, it would benefit from enhanced privacy compliance, explicit security policies, and clearer contact information to improve user trust and regulatory adherence.

C

CitiHardware

citihardware.com

0

CitiHardware is a well-established retail chain specializing in home improvement products, including tiles, furniture, building materials, and DIY supplies, primarily serving the Philippine market. The company operates a large network of physical stores across multiple regions, supported by a modern web presence built on Next.js and Chakra UI frameworks. The website demonstrates good content quality and user experience, with detailed store location data embedded in JSON format. However, the site lacks visible privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS enabled but missing key security headers and DNSSEC. Tracking technologies from Google and Facebook are used, indicating moderate user tracking. Overall, the domain's WHOIS data confirms legitimacy and long-term operation, supporting business credibility.

The website www.bunnings.com.au is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct access to content. This prevents extraction of business, contact, and policy information. The domain WHOIS data is unavailable due to auDA policy restrictions and a malformed WHOIS request, resulting in no registrar, creation, or registrant details. The site is protected by Cloudflare, indicating a security-conscious posture but limiting external analysis. Without access to the actual website content, no meaningful assessment of business operations, technical infrastructure, or security posture can be made beyond the presence of the WAF challenge. The overall risk is moderate due to lack of data, but no explicit security threats or suspicious content were detected.

A

Alchemy Pay

alchemypay.org

0

Alchemy Pay is a fintech company specializing in bridging fiat and cryptocurrency economies by providing payment solutions that enable users and businesses to transact seamlessly across both worlds. Their platform offers a suite of products including fiat-crypto on and off ramps, token listing services, branded Web3 cards, crypto payment acceptance, and NFT checkout capabilities. The company has established partnerships with major industry players such as Binance, Polygon, NEAR, and bitcoin.com, positioning itself as an important player in the crypto payment infrastructure market. The website content is professional and targeted towards businesses and platforms seeking to integrate fiat-crypto payment solutions.

C

Chainlink

chain.link

0

Chainlink is a leading decentralized oracle network that connects blockchains to real-world data, other blockchains, and enterprise systems. It serves major financial institutions, DeFi protocols, and governments worldwide, providing critical infrastructure for onchain finance, cross-chain interoperability, and secure data feeds. The company is well-established with a domain age since 2017 and strong partnerships with industry leaders such as J.P. Morgan, Mastercard, and UBS. Their platform offers a suite of products including Chainlink CCIP, data feeds, automation, and verifiable randomness, positioning them as a backbone for blockchain applications. Technically, Chainlink's website is built on modern web technologies including Webflow CMS, Cloudflare CDN, and integrates analytics and marketing tools like HubSpot and Google Tag Manager. The site is fast, mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security posture is strong with HTTPS, security headers, and domain registration protections, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, Chainlink demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations including GDPR. The website content is comprehensive, well-branded, and targeted at institutional and developer audiences. No critical security vulnerabilities or suspicious activities were detected. Recommendations include enabling DNSSEC, publishing a security policy, and adding vulnerability disclosure mechanisms to further enhance trust and security. This analysis indicates Chainlink is a credible, secure, and technically sound organization with a strong market position in blockchain technology and decentralized finance.

A

AlpacaDB, Inc.

alpaca.markets

0

AlpacaDB, Inc. operates Alpaca Markets, a developer-first brokerage platform offering APIs for stock, options, and cryptocurrency trading. The company targets developers, fintech startups, broker-dealers, hedge funds, and other financial service providers seeking to embed trading capabilities into their applications. Alpaca is positioned as a leading API brokerage service with multiple industry awards and strong venture backing. The platform emphasizes commission-free trading, OAuth integration, and a comprehensive suite of brokerage infrastructure services. Technically, the website employs modern analytics and marketing tools, is well-optimized for mobile, and demonstrates excellent SEO and accessibility. Security posture is strong with HTTPS enforcement, no exposed sensitive data, and adherence to industry best practices, though there is room for improvement in publishing vulnerability disclosures and incident response contacts. Overall, Alpaca presents a professional, trustworthy, and mature fintech service with clear compliance and legal disclosures.

F

Filecoin Green Dashboard

filecoin.energy

0

Filecoin.energy operates a specialized data dashboard titled 'Filecoin Green Dashboard' that focuses on providing environmental impact data and analytics for Filecoin storage providers. The platform targets blockchain participants and environmental stakeholders interested in sustainable storage solutions. The website is built using modern web technologies including React and integrates Umami analytics for user tracking. Hosting is managed via AWS infrastructure, as indicated by DNS records. While the site demonstrates a good level of technical maturity and user experience, it lacks critical privacy and security policy disclosures, as well as direct contact information, which impacts its overall trustworthiness and compliance posture. Security practices such as HTTPS are in place, but additional security headers and incident response details are absent.

S

Error

starboard.ventures

0

The website starboard.ventures currently serves only an error page hosted on the Wix platform, indicating that the domain is not connected to an active website. There is no business content, contact information, or policies available on the site. The domain is registered through GoDaddy with privacy protection by Domains By Proxy, LLC, and was created in 2021. The lack of active content and business details limits the ability to assess the company's market position or services. Technically, the site uses AngularJS and jQuery libraries typical of Wix error pages but lacks security headers and DNSSEC, which are recommended for improved security. No privacy or cookie policies are present, and no contact or incident response information is available, indicating low privacy compliance and business credibility. Overall, the site is not currently operational as a business website and scores low on content quality, security posture, and privacy compliance.

D

Datonic

filecoindataportal.xyz

0

The Filecoin Data Portal is an open source, serverless, and local-first data platform focused on providing datasets, dashboards, and data request capabilities for the Filecoin ecosystem. Operated by Datonic, a Spanish organization, the platform targets developers, data analysts, and participants within the Filecoin blockchain community. The website offers clear navigation and structured content, emphasizing transparency through links to GitHub and personal contact pages. Technically, the site is built using the Astro framework, hosted on Cloudflare, and employs modern web technologies ensuring fast performance and good mobile optimization. Security-wise, the site enforces HTTPS and uses Cloudflare DNS and registrar services, but lacks DNSSEC and security headers, and does not publish privacy or cookie policies, which are areas for improvement. Overall, the platform is credible and trustworthy for its niche audience but would benefit from enhanced privacy compliance and security disclosures.

The website filutils.com is currently inaccessible due to a Cloudflare error 521 indicating the web server is down. The domain is registered with 22net, Inc. since April 2023 and uses Cloudflare for DNS and CDN services. No business information, contact details, or policies are present on the site, limiting the ability to assess the company's operations or market position. The technical infrastructure relies on Cloudflare but lacks DNSSEC and visible security headers, indicating room for security improvements. The security posture is weak due to the server downtime and lack of standard security practices. Overall, the site is not operational, which poses a significant risk to business continuity and trust. Strategic recommendations include restoring server availability, enabling DNSSEC, implementing security headers, and publishing privacy and cookie policies to improve compliance and user trust.

D

Domains By Proxy, LLC

filscan.io

0

Filscan.io is a specialized blockchain explorer focused on the Filecoin ecosystem, providing real-time on-chain data, mining rankings, and analytics services. It serves miners, developers, and users interested in Filecoin blockchain data. The platform leverages modern web technologies including React and Next.js, hosted on Alibaba Cloud infrastructure, and integrates Google Analytics for user tracking. The website is professionally designed with good navigation and mobile optimization, though it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled and domain registration protections, but missing security headers and incident response information. Overall, Filscan.io is a credible and functional service within its niche but should improve privacy disclosures and security best practices to enhance trust and compliance.

Z

Zondax

beryx.io

0

Beryx is a blockchain explorer and analytics platform focused on the Filecoin ecosystem, developed by the Swiss company Zondax. It provides users with access to historical and real-time blockchain data, developer tools, and a public API to facilitate interaction with the Filecoin network. The platform targets developers, analysts, and participants in the Filecoin ecosystem, positioning itself as a niche but essential service provider within the blockchain technology sector. Technically, the website is built using modern web technologies including Next.js and Material-UI, hosted with Cloudflare DNS and CDN services, ensuring good performance and mobile optimization. Security measures such as HTTPS, security headers, and cookie consent mechanisms are properly implemented, although DNSSEC is not enabled and no explicit security or incident response policies are published. The domain is privacy protected but consistent with the business profile and age. Overall, Beryx demonstrates a solid technical and security posture with room for improvement in transparency and contactability.

S

Shanghai Taikuai Technology Co. Ltd

filfox.info

0

Filfox.info is a specialized blockchain explorer and data service platform focused on the Filecoin network. It offers comprehensive mining rankings, blockchain data queries, visualization charts, and FEVM contract metrics, targeting Filecoin miners, developers, and investors. The platform is positioned as a key data provider within the Filecoin ecosystem, leveraging modern web technologies and providing API access for developers. The website is professionally designed, mobile optimized, and provides real-time blockchain data, enhancing user experience and engagement. Technically, the site is built on the Nuxt.js framework with Element UI components, hosted on Alibaba Cloud, and uses modern JavaScript technologies. Performance is moderate with good SEO and mobile responsiveness. However, accessibility features are basic and could be improved. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. From a security and compliance perspective, the site lacks visible privacy, cookie, and security policies, which are critical for GDPR and other regulatory compliance. Contact information is limited to an email address, and no incident response or vulnerability disclosure information is published. No WAF or blocking mechanisms are detected, and no suspicious or malicious content is found. Overall, the platform appears legitimate and trustworthy but would benefit from enhanced privacy and security transparency. The overall risk is moderate with recommendations to implement privacy and cookie policies, enable DNSSEC, add security headers, and publish incident response and vulnerability disclosure information to improve trust and compliance.

E

Explara

explara.com

0

Explara is a technology company providing an all-in-one SaaS platform focused on event ticketing, memberships, digital product sales, and fundraising solutions primarily targeting creative entrepreneurs and small businesses. The company enjoys a strong market position with over 100,000 users and enterprise clients globally. Their platform offers a comprehensive suite of event management tools including ticket sales, attendee management, payment processing, and marketing features. Technically, the website is built on modern frameworks such as Bootstrap and uses popular analytics tools like Google Analytics and Yandex Metrika. The site is mobile optimized and well-structured, providing a professional user experience. Security posture is generally good with HTTPS enforced and secure forms, but lacks some security headers and explicit incident response policies. Privacy compliance is indicated by a comprehensive privacy policy and GDPR badge, though cookie consent mechanisms are missing. WHOIS data is unavailable, which slightly reduces domain trustworthiness but the overall business credibility remains high due to consistent branding and active customer engagement. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing vulnerability disclosure information to strengthen trust and compliance.

E

Apache Tomcat/7.0.67

eproc.in

0

The website at eproc.in currently serves a default Apache Tomcat 7.0.67 installation page, indicating that the server software is installed but no custom business content or branding is present. The page primarily provides links to Apache Tomcat documentation and developer resources, targeting developers or system administrators rather than end customers. There is no indication of an active business or service offering on this domain. Technically, the site runs on an outdated version of Apache Tomcat, which may expose it to known vulnerabilities. The absence of HTTPS information, security headers, and privacy policies suggests a low security maturity level. No contact information or business identity is provided, limiting trust and credibility. Overall, the site appears to be either under development or misconfigured, lacking essential business and security features.

S

SMARTODR

smartodr.in

0

The SMARTODR website serves as an online dispute resolution platform focused on the Indian securities market, providing services such as online conciliation and arbitration. The platform targets investors and market participants seeking efficient resolution of securities-related disputes. The website is professionally designed with a clear business description and a user-friendly login interface. Technically, the site leverages modern frontend technologies including React, Leaflet.js for mapping, and Google reCAPTCHA v3 for bot protection. Hosting of static assets on Amazon S3 indicates a reliable infrastructure. Security posture is generally good with HTTPS enforced and secure form inputs; however, the absence of security headers and explicit privacy or cookie policies indicates room for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the site is safe, trustworthy, and well-positioned within its niche market segment.

H

Hydrocarbon Sector Skill Council

hsscindia.in

0

Hydrocarbon Sector Skill Council (HSSC) is a government-recognized skill council focused on developing skilled manpower for the hydrocarbon (oil & gas) sector in India. The organization offers certification, training, and assessment services aligned with national standards and frameworks. The website reflects a medium-sized, credible entity with strong government affiliation and partnerships. Technically, the site uses modern web technologies including Bootstrap and jQuery, with responsive design and lazy loading for performance. Security posture is moderate with HTTPS usage but lacks visible security headers and privacy compliance documentation. Contact information and social media presence are well established, enhancing trust. Overall, the site is professional and informative but would benefit from improved privacy and security practices.

L

Welcome!

lakshya-bharat.com

0

The website lakshya-bharat.com appears to be an informational portal related to Indian government ministries, specifically focusing on the Ministry of Petroleum and Natural Gas. The site provides a video introduction and navigation to ministry-specific pages but lacks substantive content such as privacy policies, contact information, or detailed business descriptions. The domain is registered with GoDaddy.com, LLC since 2021 and shows stable registration status without privacy protection, indicating transparency but limited business maturity. Technically, the website uses basic HTML and JavaScript with jQuery for client-side scripting. The site lacks modern security practices such as HTTPS enforcement, security headers, and cookie consent mechanisms. Performance and mobile optimization are basic, and SEO features are minimal. The site does not use any detected CMS or advanced frameworks. From a security perspective, the absence of HTTPS and security headers is a concern, as is the lack of privacy and cookie policies, which impacts GDPR compliance. No contact or incident response information is provided, limiting trust and transparency. The WHOIS data supports legitimacy but the overall security posture is weak. Overall, the website is functional but minimalistic, with significant room for improvement in security, privacy compliance, and content richness. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, improving accessibility and SEO, and providing clear contact and security incident response information.