Security Directory

R

Red.es

nic.es

0

Dominios.es is the official Spanish government entity responsible for managing the registration of .es country code top-level domains. It operates under the umbrella of Red.es, a public enterprise of the Spanish government. The website provides comprehensive information and services related to domain registration, management, and security, targeting individuals, businesses, and authorized registrars. The entity holds recognized certifications such as ISO 9001, ISO 27001, and ENS, underscoring its commitment to quality and security. Technically, the site is built on Drupal 10 with modern web technologies and integrates Google Tag Manager and CookiesJSR for analytics and cookie management. The site is well-optimized for mobile and accessibility, with clear navigation and professional design.

W

Well BP

wellbp.com

0

Well BP is a newly founded digital consulting agency specializing in custom software development, digital product creation, and digital marketing services. The company positions itself as a trusted partner offering flexible engagement models and comprehensive digital solutions across various industries. Their website is professionally designed using WordPress and integrates modern technologies such as Google Maps API and advanced WordPress plugins. The technical infrastructure is solid with Cloudflare DNS and HTTPS enabled, though there is room for improvement in security headers and privacy compliance. The security posture is moderate with no critical vulnerabilities detected but lacks published security policies and cookie consent mechanisms. Overall, the website is safe, professional, and trustworthy, targeting businesses seeking digital transformation services.

Z

Zoologischer Stadtgarten Karlsruhe

zoo-karlsruhe.de

0

The Zoologischer Stadtgarten Karlsruhe website represents a well-established zoological garden in Germany focused on family-friendly animal exhibitions, conservation, and education. The site is built on WordPress with the Avada theme, optimized with LiteSpeed caching and enhanced accessibility via the UserWay widget. The technical infrastructure is modern and secure, leveraging HTTPS and Cloudflare DNS services. However, the site lacks explicit privacy and cookie policies, as well as visible contact information and security headers, which are areas for improvement. Overall, the website is professional, content-rich, and trustworthy, serving its audience effectively but with room to enhance privacy compliance and security transparency.

K

Karlsruher Pässe

karlsruher-pass.de

0

Karlsruher Pässe operates as a regional government-supported social benefit program providing passes such as the Karlsruhe Pass, Children's Pass, and 60 Plus Pass to residents of Karlsruhe and surrounding municipalities. The website serves as an informational and service portal, offering access to social discounts, cooperation details, and contact points for multiple municipalities. The business model focuses on social inclusion and support through municipal partnerships, positioning itself as a trusted regional social service provider. Technically, the website is built on WordPress with modern plugins like Slider Revolution and Borlabs Cookie for consent management. The infrastructure is hosted by saasweb.gmbh and uses standard web technologies including jQuery and Bootstrap. The site is moderately performant, mobile-optimized, and SEO-friendly, with good content quality and consistent branding. Security posture is adequate with HTTPS enabled and cookie consent implemented. However, some security headers are not explicitly detected, and there is room for improvement in security best practices such as CSP implementation and plugin vulnerability management. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact information and policies. It is safe for general audiences and does not contain adult or questionable content. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and improving accessibility features.

J

Jewelers Mutual Group

jewelersmutual.com

0

Jewelers Mutual Group is a specialized insurance provider focusing on personal jewelry and jewelry business insurance. With over 110 years of expertise and a strong market presence evidenced by more than 11,000 five-star reviews, the company targets jewelry owners and businesses seeking dedicated insurance solutions. The website reflects a mature digital presence built on Drupal 10, integrating advanced analytics and marketing tools such as Google Tag Manager, Mixpanel, and Visual Website Optimizer, alongside a robust consent management system via TrustArc. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although the absence of a dedicated security policy or incident response information is noted. Privacy compliance is well addressed with clear privacy and cookie policies and user consent mechanisms. However, the lack of WHOIS data transparency slightly reduces domain trustworthiness. Overall, the website is professional, secure, and compliant, serving a large enterprise in the finance sector with a focus on jewelry insurance.

D

Doculivery

doculivery.com

0

Doculivery is a document management software provider offering secure, efficient, and cost-effective solutions tailored for businesses seeking to digitize and streamline their document workflows. The company positions itself as an experienced player with over 30 years in the industry, serving a range of clients including large corporations. Their product suite includes document management, payroll, tax, HR, accounting, billing, and business optimization services. The website is built on WordPress with the Avada theme and integrates HubSpot marketing and analytics tools, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enabled and role-based access controls mentioned, but lacks visible security headers and formal security policies. The absence of WHOIS registration data raises some legitimacy concerns, though the professional website content and client logos support a credible business presence. Privacy and cookie policies are not detected, which is a compliance gap. Overall, the site is well-designed, mobile-optimized, and provides clear contact information, but would benefit from enhanced transparency on privacy, security, and domain registration details.

J

John Brightman

john-brightman.com

0

John Brightman is a Paris-based creative agency specializing in web design, brand identity, graphic design, UI/UX, and digital strategy. Founded in 2009, the company emphasizes agile, personalized teams and long-term client relationships, serving a diverse range of businesses seeking professional branding and digital presence. The website reflects a mature digital infrastructure built on WordPress with Elementor, enhanced by SEO and performance optimizations. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are absent. The missing WHOIS data raises some concerns about domain registration legitimacy, but the professional presentation and compliance with GDPR indicate a trustworthy business. Strategic improvements in security headers, contact transparency, and WHOIS clarity would enhance trust and compliance.

D

Deutsche Universitätsstiftung

deutsche-universitaetsstiftung.de

0

Deutsche Universitätsstiftung is a German foundation established in 2009 that aims to bridge science, economy, and society. The website presents itself as a professional platform built on TYPO3 CMS, targeting academic institutions, researchers, and industry partners. The foundation operates in the education and non-profit sectors, focusing on fostering cooperation between universities and the economy. Technically, the website uses modern frameworks and libraries such as TYPO3 CMS, Bootstrap, and jQuery, hosted on German nameservers. The site shows good design quality and mobile optimization but lacks comprehensive privacy and cookie policies, which impacts GDPR compliance. Security posture is moderate with no detected security headers or incident response information, and SSL configuration details are not provided. Overall, the domain registration data aligns well with the business profile, supporting legitimacy.

D

Deutscher Hochschulverband

dhvseminare.de

0

The Deutscher Hochschulverband (DHV) operates a professional seminar and workshop platform targeting academics and scientists in Germany. The website offers over 250 interdisciplinary continuing education events annually, including online, video, in-person, and in-house seminars. The organization is well-established and recognized in the education sector, providing tailored knowledge and career development opportunities for its audience. The platform is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the website employs a modern tech stack including Bootstrap and jQuery, hosted on INWX name servers. The site is mobile-optimized and performs moderately well. Security posture is solid with HTTPS enabled and no visible vulnerabilities, although security headers and explicit security policies are absent. Privacy compliance is strong, with a clear cookie consent mechanism and a comprehensive privacy policy linked to the parent organization's domain. Overall, the site demonstrates a high level of business credibility and trustworthiness, supported by consistent WHOIS data and transparent contact information. No critical security or privacy issues were detected, and the content is safe for general audiences. Strategic improvements could focus on enhancing security headers and publishing incident response information to further strengthen trust and compliance.

S

SimpleThings GmbH

simplethings.de

0

SimpleThings GmbH is a small, established internet agency based in Bonn, Germany, founded in 2001. The company specializes in full-service digital solutions including consulting, web design, software development, online marketing, and hosting. Their market position is strengthened by a focus on open-source technologies such as TYPO3 and Symfony, catering primarily to businesses and organizations seeking professional digital services. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website is built on TYPO3 CMS with integrations of modern frameworks like Symfony and supports various platforms including Magento and Shopware for e-commerce. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The absence of cookie consent mechanisms and explicit security headers suggests room for improvement in privacy and security compliance. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, the lack of explicit security policies and incident response contacts indicates a moderate security posture. No WAF or blocking mechanisms were detected, and the domain appears legitimate and consistent with the business claims. Overall, SimpleThings GmbH presents a trustworthy and professional digital presence with strong business credibility and technical maturity. Strategic enhancements in privacy compliance and security best practices would further strengthen their security posture and regulatory adherence.

Neue Messe Fulda GmbH operates as a regional event organizer and exhibition host based in Fulda, Germany. The company specializes in organizing trade fairs, public exhibitions, conferences, and congresses, providing a platform for businesses and visitors to connect. Their website reflects a professional and consistent brand image, targeting event organizers, exhibitors, and attendees interested in specialized trade fairs and public events. The business model centers on event management and exhibition services, positioning Neue Messe Fulda as a key player in the regional events market. Technically, the website is built on the Odoo CMS platform, utilizing modern frontend technologies such as Bootstrap and jQuery, with integrations like LightGallery for media display and Google Analytics for visitor tracking. The site is mobile-optimized with good SEO practices and moderate performance. Security measures include HTTPS with a valid SSL configuration and a cookie consent mechanism, although some security headers are missing and no explicit security policies are published. From a security perspective, the site demonstrates a reasonable posture with encrypted communications and CSRF token usage. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. No critical vulnerabilities or suspicious content were detected. Privacy compliance is basic but present, with GDPR-aligned cookie consent and a privacy policy page. Overall, the website is trustworthy, professionally maintained, and suitable for its business purpose. Strategic enhancements in security transparency and policy publication would further strengthen its compliance and trustworthiness.

U

unaone imc services Markus Hagge

unaone.net

0

unaone imc services Markus Hagge is a small German technology service provider specializing in personalized web hosting, domain registration, cloud solutions, and managed services such as Nextcloud, Jitsi, and BigBlueButton. The company emphasizes data privacy by hosting exclusively in German data centers, appealing to privacy-conscious customers. The website is professionally designed using WordPress with modern plugins and offers a good user experience with clear navigation and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, but the overall business presentation and social media presence support credibility. Strategic improvements in security transparency and WHOIS registration clarity are recommended.

S

Indikatori za Ciljeve održivog razvoja

sdgmontenegro.me

0

The website www.sdgmontenegro.me serves as an official or semi-official platform providing data and indicators related to the United Nations Sustainable Development Goals (SDGs) specifically for Montenegro. It offers users access to indicator data, downloadable datasets, news, and publications related to SDG progress. The target audience includes government agencies, researchers, policymakers, and the general public interested in sustainable development metrics. The platform is built on the Open SDG framework, leveraging modern web technologies such as Bootstrap, jQuery, Chart.js, and Leaflet for interactive data visualization and mapping.

M

mCloud doo

sdgs4all.rs

0

The website 'Održivi razvoj za sve' is a Serbian platform dedicated to facilitating public dialogue and information sharing on the Sustainable Development Goals (Agenda 2030) within Serbia. It operates as a non-profit initiative, supported by multiple partner organizations, and targets policymakers, NGOs, and the general public interested in sustainable development. The platform offers resources such as news, newsletters, e-learning modules, and document repositories to support its mission. Technically, the site is built on WordPress 6.8.2, utilizing modern web technologies including jQuery, OwlCarousel, FontAwesome, and Slider Revolution. It employs Matomo analytics for user tracking, indicating a privacy-conscious approach. The website is mobile-optimized with good SEO practices and moderate performance. However, there is room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks DNSSEC and some recommended security headers. There is no publicly available security policy or incident response information, and no vulnerability disclosure mechanism is present. Cookie consent is implemented, but no explicit privacy policy page was found, which is a compliance gap. Overall, the website presents a professional and trustworthy front for its niche non-profit mission. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing privacy and security policies, and improving accessibility features to strengthen compliance and user trust.

Indikatori.rs is a Serbian national government portal managed by the Republic Statistical Office, designed to aggregate and provide access to various statistical indicators from multiple sources. The platform aims to facilitate easy access to indicator data, quality reports, metadata, and comparative statistics for Serbia and other countries. The website is funded by the European Union and targets data producers and users including government entities and researchers. Technically, the site uses Bootstrap and jQuery for frontend presentation, with a moderate performance and good mobile optimization. Security posture is moderate with HTTPS assumed but lacking DNSSEC and security headers. No privacy or cookie policies are present, which impacts compliance. The domain registration is consistent and legitimate, with no suspicious patterns. Overall, the site is professional and trustworthy but could improve privacy and security practices.

I

Imagine 2030

zamisli2030.ba

0

Imagine 2030 is a government and non-profit aligned platform dedicated to promoting and implementing the Sustainable Development Goals (SDGs) in Bosnia and Herzegovina. It serves as a central hub for information dissemination, event promotion, and resource sharing related to Agenda 2030. The platform targets government bodies, local self-governments, businesses, NGOs, and citizens interested in sustainable development. The website is built on WordPress using modern themes and plugins, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

L

Lighthouse Engineering

lighthouseeng.com

0

Lighthouse Engineering is a specialized service provider focusing on residential and commercial foundation inspections and planning. The company appears to be established since 2007, with a domain age consistent with its business history. The website is built on WordPress using the Divi theme and incorporates Yoast SEO for search optimization. The technical infrastructure includes Cloudflare DNS but lacks DNSSEC and security headers, indicating room for improvement in security hardening. The website content is professional and relevant to its target audience of property owners and developers, but lacks explicit privacy, cookie, and terms of service policies, which impacts compliance posture. Overall, the security posture is basic with HTTPS enabled but missing advanced protections and incident response information. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and publishing vulnerability disclosure and incident response contacts to enhance trust and compliance.

VR Bank Heilbronn Schwäbisch Hall eG is a regional cooperative bank serving customers primarily in the Heilbronn and Schwäbisch Hall regions of Germany. The website provides information about the bank's services and local presence, targeting local customers seeking banking and financial products. The business model is cooperative banking with a focus on community and local support. The site uses modern web technologies including Angular and Angular Material, with Dynatrace monitoring for performance insights. However, the website lacks visible privacy and cookie policies, contact information, and explicit security headers, which are important for compliance and trust. The security posture is basic with room for improvement in policy transparency and technical security measures. Overall, the site is functional and moderately professional but would benefit from enhanced privacy compliance and security practices.

O

Offensive Mittelstand

offensive-mittelstand.de

0

Offensive Mittelstand is a German platform dedicated to supporting small and medium-sized enterprises (KMU) with practical tools, standards, and consulting services focused on sustainability, digital transformation, work safety, and corporate social responsibility. The website is well-structured, professionally designed, and targets German SMEs with a non-profit/government-supported business model. The platform offers OM-Checks, OM-Tools, workshops, and an advisor database to facilitate SME growth and compliance. Technically, the website is built on TYPO3 CMS, hosted by Alfahosting, and uses modern JavaScript libraries such as Swiper for UI components and Matomo for privacy-conscious analytics. The site is mobile-optimized and performs moderately well, though accessibility features are basic. No major technical issues or vulnerabilities were detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. The absence of direct contact emails or phone numbers reduces transparency slightly. Overall, the website is trustworthy, professional, and safe for general audiences, with a solid business credibility score. Strategic improvements in privacy compliance, security transparency, and contact information would enhance its security posture and user trust.

The website ekulturars.com is registered since 2011 and appears to be a long-standing domain. However, the website content is completely empty with no metadata, no visible content, no contact information, and no policies. This indicates the site is either inactive or a placeholder. The technical infrastructure is minimal with no detected CMS, frameworks, or analytics. Security posture is basic with HTTPS enabled but no DNSSEC or security headers. There are no signs of privacy compliance or business credibility on the site. Overall, the site presents a low risk but also low trust and engagement potential.

The Intra-European Organisation of Tax Administrations (IOTA) operates as an international non-profit entity focused on facilitating practical collaboration and knowledge sharing among tax administrations primarily in Europe. The organization offers a range of services including conferences, workshops, publications, and resources aimed at improving tax administration efficiency and adaptability. The website reflects a professional and consistent brand image, targeting government officials and tax professionals. Technically, the site is built on the Ibexa DXP CMS platform, leveraging modern web technologies and fonts, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response information are absent. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the website demonstrates a mature digital presence suitable for its governmental and non-profit audience, with a trustworthy and professional online representation.

The website stfdoboj.net is a parked domain managed through Sedo's domain parking service. It provides categorized informational links primarily in Finnish, targeting general users seeking information on various topics such as automotive, electronics, travel, and lifestyle. There is no active business presence or company information on the site, and it functions mainly as a placeholder with monetized links. The technical infrastructure relies on standard HTML and JavaScript with Sedo's parking scripts, hosted via Sedo's parking platform. The site lacks advanced technical frameworks or CMS platforms and shows basic mobile optimization and accessibility features. Security posture is weak due to absence of HTTPS enforcement and security headers, and no contact or privacy policies beyond a basic Sedo privacy link are provided. Overall, the site presents low business credibility and minimal privacy compliance, with no signs of malicious or adult content. The domain WHOIS data is unavailable, indicating possible non-registration or privacy protection, which further reduces trustworthiness.

А

Аутопутеви Републике Српске

autoputevirs.com

0

Аутопутеви Републике Српске is a public enterprise responsible for the construction, maintenance, and management of highways and major roads in Republika Srpska, Bosnia and Herzegovina. The website serves as an information portal for infrastructure projects, public procurement, and traffic updates, targeting citizens, drivers, and governmental stakeholders. The company holds a significant position as a key state entity in transportation infrastructure within the region. Technically, the website is built on WordPress, utilizing common plugins such as RevSlider and Contact Form 7, with Google Analytics for traffic monitoring. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some modern security headers and privacy compliance mechanisms are missing, indicating room for improvement in security and GDPR adherence. Security posture is moderate, with HTTPS enforced and domain transfer protection enabled, but lacking DNSSEC and advanced security headers. No vulnerability disclosure or incident response information is publicly available. Overall, the site is trustworthy and professionally maintained but could enhance its security and privacy compliance. The overall risk is low, but strategic improvements in security headers, cookie consent, and transparency policies are recommended to strengthen compliance and user trust.

The website putevirs.com represents the official online presence of Јавно предузеће Путеви Републике Српске, a government-owned public enterprise responsible for managing, constructing, maintaining, and protecting the road network in Republika Srpska, Bosnia and Herzegovina. The site provides detailed news, updates, and information about road infrastructure projects and public procurement plans, targeting residents and stakeholders within the region. The business model is focused on public sector infrastructure services, positioning the company as a key entity in transportation within Republika Srpska. From a technical perspective, the website employs legacy JavaScript libraries such as MooTools 1.2.1 and custom scripts, with CSS-based styling. The platform appears to be custom-built or uses an unknown CMS, with basic mobile optimization and accessibility features. Performance is moderate, and SEO optimization is basic, with proper meta tags but no advanced structured data or Open Graph tags detected. Security posture is moderate but shows room for improvement. The domain lacks DNSSEC, modern security headers, and there is no visible enforcement of HTTPS or HSTS. The use of outdated JavaScript libraries may expose the site to vulnerabilities. Privacy and cookie policies are absent, indicating non-compliance with GDPR and related regulations. No incident response or security contact information is provided. Overall, the website is functional and provides relevant content for its audience but lacks modern security and privacy compliance features. The domain registration is consistent and appropriate for the business history, enhancing trustworthiness. Strategic improvements in security headers, privacy policies, and technology modernization are recommended to enhance the site's security and compliance posture.

The website represents the Savez opština i gradova Republike Srpske, a governmental and non-profit organization supporting municipalities and cities in Republika Srpska, Bosnia and Herzegovina. It provides information on organizational structure, program areas, projects, news, and events, targeting local governments and citizens. The site demonstrates a stable market position as a local government representative with strong international partnerships. Technically, the website uses a modern frontend stack including Bootstrap 4, jQuery, Owl Carousel, and integrates third-party services such as Google Analytics and Mailchimp. It enforces HTTPS and uses client-side redirection to ensure secure connections. However, no CMS or hosting provider is explicitly identified, and some security best practices like DNSSEC and security headers are missing. From a security perspective, the site has a moderate posture with HTTPS enforced and domain transfer protection enabled. However, it lacks DNSSEC, explicit security headers, privacy and cookie policies, and incident response contacts. No vulnerabilities or malware indicators were found in the content. The site is safe for general audiences with no adult or questionable content. Overall, the website is professional and credible but would benefit from enhanced privacy compliance, improved security headers, and formalized policies to strengthen trust and regulatory adherence.

A

Auto-moto savez Republike Srpske

ams-rs.com

0

Auto-moto savez Republike Srpske is a well-established non-profit organization providing roadside assistance, traffic updates, and membership services primarily in Republika Srpska, Bosnia and Herzegovina, and Europe. The website reflects a mature digital presence with a WordPress-based infrastructure, interactive maps, and live border crossing information. The organization targets local residents and travelers, offering key services such as emergency assistance and safety campaigns. The domain is long-standing and consistent with the organization's identity, enhancing trustworthiness. Technically, the site uses modern web technologies and plugins but lacks advanced security headers and DNSSEC, which could improve its security posture. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap for GDPR and regional regulations. Overall, the website is professional and functional with room for security and compliance improvements.

А

Агенција за безбједност саобраћаја Републике Српске

bslzrs.org

0

The website bslzrs.org represents the Agency for Traffic Safety of Republika Srpska, Bosnia and Herzegovina. It primarily serves as an informational platform for the XIV International Conference on Traffic Safety in Local Communities, providing detailed content about traffic safety statistics, conference agenda, speakers, thematic areas, and organizational committees. The agency operates as a governmental and non-profit entity focused on improving traffic safety through research, awareness, and collaboration with regional and international partners. The website targets professionals, researchers, and government officials involved in traffic safety and local community development. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, Slick Carousel, and Google Maps API integration. It is hosted on Bitlab Hosting and demonstrates moderate performance with good mobile optimization. However, accessibility and SEO optimizations are basic, and no CMS or advanced platforms are detected. The site lacks analytics and tracking scripts, indicating minimal user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No privacy or cookie policies are present, which is a compliance gap. The WHOIS data shows privacy protection and a recent domain registration date, which is somewhat inconsistent with the historical content but not necessarily suspicious. No WAF or blocking mechanisms are detected, and the site is fully accessible. Overall, the website is professional and trustworthy with good content quality and business credibility. However, it requires improvements in privacy compliance, security headers, and transparency to enhance its security posture and regulatory adherence.

BTGport.net is a regional web hosting and domain registration service provider primarily serving the Balkan region, with services offered in Serbian language. The company offers a range of hosting packages, domain registration, web design, and email hosting solutions targeting small to medium businesses and individual users. The website content reflects a business focused on technology and telecommunications services with a local market presence. Technically, the website uses older technologies such as jQuery 1.2.6 and PHP with MySQL, and mentions a proprietary CMS (BTGcms). The site shows basic mobile optimization and SEO but lacks modern security features such as HTTPS enforcement and security headers. The presence of Google Analytics indicates moderate user tracking without visible privacy compliance mechanisms. Security posture is weak due to outdated libraries, lack of HTTPS, and no visible security headers or incident response information. WHOIS data for the domain is missing or not found, which raises concerns about domain legitimacy and registration status, conflicting with the website's claim of operation since 2003. Overall, the website is functional but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and protect users.

G

Getlink

getlink.space

0

Getlink.space is a newly launched (June 2024) online URL shortening service offering free and customizable short links with analytics and link management features. The service targets general internet users, businesses, and influencers seeking to simplify link sharing and track link performance. The website is built using modern web technologies including SvelteKit and Bootstrap, hosted with Cloudflare DNS and protected by privacy-protected domain registration. The site is mobile optimized and provides a good user experience with clear navigation and multi-language support. Security posture is moderate with HTTPS enforced and anti-bot CAPTCHA on forms, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a privacy policy and terms of service present but no cookie consent mechanism despite use of Google Adsense and Tag Manager. No direct company contact emails or phone numbers are provided, only a contact form. Overall, the site is functional and trustworthy but could improve in security and privacy transparency.

B

Bündnis für Demokratie und Menschenrechte

buendnis-demokratie-menschenrechte.de

0

The website 'Bündnis für Demokratie und Menschenrechte' represents a regional civil society and governmental alliance based in Baden-Württemberg, Germany, focused on promoting democracy and human rights. It serves as a platform for organizations, churches, political parties, and governmental institutions to collaborate and advocate for these values. The website is built on WordPress using the Divi theme and includes event management functionality via the Modern Events Calendar plugin. The technical infrastructure is modern and moderately optimized for performance and mobile devices, with good SEO practices implemented through the Rank Math plugin and structured data markup. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and incident response contact information. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices to improve compliance and user trust.

S

Stadt Filderstadt

filderstadt.de

0

The website www.filderstadt.de serves as the official municipal portal for the city of Filderstadt, Germany. It provides comprehensive information and services for residents, tourists, and businesses, including citizen offices, appointment booking, economic development, education, and tourism. The site is well-structured with extensive navigation and a consistent branding approach, reflecting a professional municipal government presence. The target audience primarily includes local citizens, visitors, and commercial entities within the region. Technically, the website employs a modern technology stack featuring jQuery, jQuery UI, FontAwesome, and other JavaScript libraries, built on the dvv-Mastertemplates CMS platform. It is hosted on German-based servers with secure HTTPS configuration. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. From a security perspective, the site uses HTTPS and deferred script loading, but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options in the provided data. No vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in security transparency and readiness. Overall, the website is safe, trustworthy, and suitable for general audiences, with no adult or questionable content. The WHOIS data aligns with a legitimate municipal entity, reinforcing the site's credibility. Strategic recommendations include publishing a clear privacy policy, enhancing security headers, and providing incident response information to strengthen compliance and user trust.

G

Gemeinde Dossenheim

dossenheim.de

0

Gemeinde Dossenheim operates as a local government entity serving the residents and visitors of Dossenheim, Germany. The website provides comprehensive information about municipal services, local economy, culture, events, and digital citizen services. The municipality leverages modern web technologies including TYPO3 CMS and integrates ISO 27001 certified third-party services for recruiting and session management. The site is well-structured, accessible, and optimized for mobile devices, reflecting a mature digital presence. Security posture is strong with HTTPS, security headers, and privacy compliance mechanisms including a detailed cookie consent banner and privacy policy. However, explicit incident response and vulnerability disclosure information are absent, which could be improved to enhance trust and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR requirements.

Q

QUACERT Gesellschaft zur Zertifizierung von Qualitätsmanagementsystemen mbH

quacert.de

0

QUACERT is a German certification company specializing in accredited certifications for quality, environmental, energy, and education management systems, as well as waste management compliance. With approximately 30 years of experience and DAkkS accreditation, it holds a strong market position serving companies seeking recognized certifications. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive service descriptions. Technically, the site uses modern JavaScript components and consent management tools, hosted by a reputable provider. Security posture is strong with HTTPS and cookie consent mechanisms, though security headers and incident response disclosures could be improved. Overall, the site is trustworthy, compliant with GDPR, and free of vulnerabilities or suspicious elements.

N

Netzwerk für berufliche Fortbildung Calw

netzwerk-cw.de

0

Netzwerk für berufliche Fortbildung Calw is a regional network of over 20 educational institutions in the Calw area of Germany, offering tailored vocational training and continuing education programs. Supported by the Baden-Württemberg Ministry of Economy, Labor and Tourism, it aims to facilitate career advancement, re-entry, and reorientation for professionals and job seekers. The website is built on TYPO3 CMS and integrates modern web technologies including Usercentrics for cookie consent and Google Analytics with privacy features enabled. The site demonstrates good content quality, clear navigation, and mobile optimization, reflecting a mature digital presence. Security posture is solid with HTTPS and privacy compliance, though some security headers and explicit policies could be improved. Overall, the domain registration and website content are consistent and trustworthy, with no signs of blocking or malicious activity.

The website 'Hadž i umra BiH – Ured za hadž i umru' serves as the official governmental portal for organizing and providing information about Hadž and Umra pilgrimages for citizens of Bosnia and Herzegovina. It offers news, guidelines, and organizational details relevant to pilgrims, positioning itself as the authoritative source in this religious sector within the country. The site targets the Bosnian Muslim community and operates under a governmental/non-profit business model, emphasizing service and information dissemination. Technically, the website is built on WordPress 6.8.2, utilizing common plugins such as WPBakery Page Builder, Everest Forms, Contact Form 7, and Google reCAPTCHA v3 for form security. The design is modern and mobile-optimized, with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in hosting and optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak, with no visible privacy or cookie policies, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional, with a high business credibility score but moderate security and privacy compliance scores. Strategic improvements in privacy policy publication, security header implementation, and accessibility would enhance its security posture and compliance standing.

M

meinKölnBonn

meinkoelnbonn.de

0

meinKölnBonn is a regional content platform operated in affiliation with Sparkasse KölnBonn, providing residents of the Köln and Bonn area with financial advice, lifestyle content, business insights, and local event information. The website positions itself as a trusted source for regional financial and lifestyle topics, leveraging the brand strength of Sparkasse KölnBonn. Technically, the site is built on WordPress with modern frontend technologies such as Swiper.js and lazy loading for images, ensuring a good user experience and mobile optimization. SEO practices are well implemented with Yoast SEO and structured data markup. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though the site lacks explicit security headers and a public security policy. Privacy compliance is moderate, with a cookie consent mechanism present but no explicit privacy policy page found. Overall, the site is professional, trustworthy, and safe for general audiences.

M

Ministerium für Ernährung, Ländlichen Raum und Verbraucherschutz Baden-Württemberg

unser-holz-bw.de

0

The website represents the official online presence of the Ministry for Food, Rural Areas and Consumer Protection of Baden-Württemberg, Germany. It focuses on public information campaigns related to sustainable forestry, climate protection, and consumer awareness, notably the #UnserHolz campaign promoting wood as a climate-friendly resource. The site targets citizens, environmental stakeholders, and professionals in forestry and construction sectors within Baden-Württemberg. The content is professionally curated, accessible, and well-structured, reflecting a mature digital presence of a government entity. Technically, the site is built on TYPO3 CMS, employs Matomo analytics with user consent, and integrates modern web technologies ensuring good performance and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be more visible. Overall, the domain registration and website content align, confirming legitimacy as an official government resource.

M

Middle East Network Operators Group

menog.org

0

The Middle East Network Operators Group (MENOG) operates as a regional platform for Internet network operators and key Internet builders in the Middle East. It facilitates knowledge sharing through meetings, roadshows, and fellowship programs, positioning itself as a vital community organization in the telecommunications sector. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience of network professionals. Technically, the site is built on WordPress using the Divi theme, incorporating modern JavaScript libraries and Matomo analytics with cookies disabled, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and some security plugins in use, but lacks advanced security headers and explicit incident response or vulnerability disclosure policies. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism. Overall, the site is trustworthy and functional but could improve transparency and security practices to enhance credibility and compliance.

eKupon.ba is a regional e-commerce platform focused on providing discounted travel, wellness, and leisure offers primarily targeting customers in Bosnia and Herzegovina. The website presents a professional and modern design with a good user experience, showcasing a variety of hotel deals, spa treatments, and travel packages. The platform leverages modern web technologies including Alpine.js and Laravel Livewire, and integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel. Security posture is strong with HTTPS enforced and appropriate security headers, although privacy compliance could be improved by adding explicit cookie consent and detailed GDPR-compliant privacy policies. Contact information is limited to a contact form, with no direct emails or phone numbers visible. WHOIS data aligns well with the business claims, indicating a legitimate and consistent registration. Overall, the site is well-positioned in its market niche but should enhance privacy and compliance transparency to improve trust and regulatory adherence.

I

Internacionalni teatarski festival MESS

mess.ba

0

The Internacionalni teatarski festival MESS website serves as the official online presence for a well-established cultural and theatrical festival in Bosnia and Herzegovina. It provides comprehensive information about upcoming events, exhibitions, and festival news, targeting theater enthusiasts and the cultural community. The website leverages a modern WordPress infrastructure with popular plugins such as Elementor and Slider Revolution, ensuring a visually appealing and moderately performant user experience. However, it lacks critical compliance elements such as privacy and cookie policies, which are essential for GDPR adherence and user trust. Security posture is adequate with HTTPS enforced but could be improved by adding security headers and incident response information. Overall, the site is credible and professional but would benefit from enhanced privacy and security practices.

P

Promotim d.o.o.

kupipoklon.ba

0

KupiPoklon.ba is an established e-commerce platform based in Bosnia and Herzegovina, specializing in the sale of gift vouchers redeemable at a network of retail partners. The business targets general consumers and corporate clients seeking convenient gifting solutions. The website presents a professional design with clear navigation and relevant content in Croatian, supporting multiple brands and services. Technically, the site uses legacy JavaScript libraries such as jQuery 1.3.2 and plugins like Fancybox and Cycle, indicating some technical debt and potential security risks. The platform integrates payment processing partners including Monri, Mastercard, and Visa, reflecting a mature payment infrastructure. Security posture is moderate with HTTPS enforced but lacks modern security headers and uses outdated libraries. Privacy compliance is partial, with privacy and terms pages present but no cookie consent mechanism or explicit GDPR compliance indicators. Overall, the site is functional and credible but would benefit from modernization and enhanced security and privacy practices.

G

Garden of Dreams

gardenofdreams.ba

0

Garden of Dreams is a cultural event organizer focused on the electronic music festival held in Sarajevo, Bosnia and Herzegovina. The website promotes the 2025 festival and includes a talent development program called Dreamers Talent Camp, aimed at supporting emerging DJs and producers from the region. The business model revolves around event management, sponsorship partnerships, and community engagement through online voting and mentorship programs. The website is built on WordPress with modern frontend technologies and integrates multilingual support and social media channels to reach a broad audience. Technically, the site is well-structured with good mobile optimization and SEO practices, though performance is moderate. Security posture is adequate with HTTPS and secure form handling, but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

M

Monri Payments

monri.com

0

Monri Payments is a payment processing company offering a variety of products including advanced registers and secure card transaction services. The company appears established with a domain age dating back to 2000, indicating long-term presence in the payment industry. Their website is built on WordPress, leveraging common plugins such as Gravity Forms for contact forms and Yoast SEO for search optimization. The technical infrastructure includes Cloudflare DNS and GoDaddy as registrar, with SSL properly configured and domain locked with multiple EPP statuses to prevent unauthorized changes. Cookie consent is managed via Cookiebot, demonstrating attention to privacy compliance, although no explicit privacy policy or terms of service pages were detected in the main content.

P

Promotim d.o.o.

promotim.ba

0

Promotim d.o.o. is a Bosnian technology company specializing in innovative web development and online marketing solutions since 2003. The company offers a range of services including web development, e-commerce platforms, web applications, and social media marketing, supported by their proprietary CMS platform PromoCMS. Their market position is strong locally with a portfolio of notable clients including news agencies and government entities. Technically, the website uses modern web technologies such as Bootstrap, jQuery, and Owl Carousel, and integrates Google Analytics for tracking. However, the site lacks published privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS implied but no visible security headers or incident response information. Overall, the website is professional and well-structured but could improve in privacy and security transparency.

D

Deutscher Hochschulverband

hochschulverband.de

0

The Deutscher Hochschulverband (DHV) is a well-established professional association representing scientists and academics in Germany. The website serves as a comprehensive portal offering legal advice, coaching, seminars, and career support tailored to the academic community. It maintains a strong market position as a key stakeholder in German higher education and research sectors, with a large membership base and diverse service offerings. The site is professionally designed, well-branded, and targets academic professionals effectively. Technically, the website is built on the TYPO3 CMS platform, leveraging privacy-conscious analytics via Matomo and hosted on reputable infrastructure (NetCologne). The site demonstrates good performance, mobile optimization, and accessibility standards. It employs modern web technologies and maintains clear navigation and SEO best practices. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and disables cookies in analytics by default, reflecting a strong privacy posture. However, it lacks explicit security policy documentation and incident response contacts, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, compliant with GDPR, and professionally managed, making it a reliable resource for its target audience. Strategic improvements in security transparency and incident response readiness are recommended to further enhance trust and compliance.

D

Deutscher Landkreistag

landkreistag.de

0

The Deutscher Landkreistag (DLT) is a prominent German government association representing 294 counties, covering 96% of the country's area and serving 68% of its population. The website serves as an information hub for news, publications, events, and digital projects related to county-level governance and administration. It targets municipal officials, policymakers, and stakeholders in local government. The organization operates as a non-profit entity focused on advocacy and support for counties in Germany. Technically, the website is built on Joomla CMS with the Gantry 5 framework, leveraging modern JavaScript libraries such as jQuery and Owl Carousel for interactive content. The site is mobile-optimized and provides a good user experience with clear navigation and multimedia integration. Cookie consent mechanisms are implemented, reflecting GDPR compliance. However, explicit security policies and incident response information are not published. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks visible security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, showing consistent registration and legitimacy. Overall, the website is professional, trustworthy, and well-maintained, serving its government audience effectively. Strategic improvements could include publishing detailed security policies, enhancing accessibility, and adding vulnerability disclosure mechanisms to strengthen security posture and transparency.

The website myspreadshop.it serves as a landing page for Spreadshop, a print-on-demand merchandise platform targeting Italian users. It offers users the ability to create and sell custom merchandise online, leveraging the Spreadshirt group infrastructure. The site is minimalistic, focusing on a call to action to open a merchandise store via a partner registration link. The business model centers on e-commerce and print-on-demand services, with a medium-sized market presence supported by the parent company Spreadshirt. The domain is relatively new but consistent with the business timeline and geographic focus. Technically, the site uses basic HTML and CSS with embedded web fonts, but lacks advanced frameworks or CMS indicators. Performance and mobile optimization are basic but functional. No analytics or tracking scripts were detected, indicating minimal user data collection. SEO and accessibility features are present at a basic level. Security posture is moderate with DNSSEC enabled and domain status OK, but no visible security headers or HTTPS confirmation in the provided data. Privacy and cookie policies are absent, reducing compliance confidence. Security-wise, the site shows no immediate vulnerabilities or exposed sensitive data but lacks formal security policies and incident response information. The absence of privacy and cookie policies and contact details limits trust and compliance with GDPR. No WAF or blocking mechanisms were detected, and content is fully accessible. Overall, the site is safe with no adult or explicit content, targeting a general audience interested in merchandise sales. Recommendations include implementing HTTPS with strong TLS, adding security headers, publishing privacy and cookie policies, providing contact and incident response information, and establishing a vulnerability disclosure process to enhance security posture and compliance.

Z

ZEIT SPRACHEN

zeit-sprachen.de

0

ZEIT SPRACHEN is a reputable language learning brand offering printed and digital magazines for multiple languages including English, French, Spanish, Italian, and German. It operates as a 100% subsidiary of the ZEIT Verlagsgruppe, a well-known German publishing group, positioning itself strongly in the education sector with high-quality journalistic content tailored for language learners and educators. The website is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and relevant content.

Z

ZEIT SPRACHEN

spotlight-verlag.de

0

ZEIT SPRACHEN is a German-based language education publisher serving over 1.4 million users with language learning products and cultural content. The website is built on Drupal 11 and integrates modern consent management tools such as Usercentrics, reflecting a commitment to GDPR compliance. The site targets language learners, educators, companies, and advertisers, positioning itself as a reputable player in the education and media sectors within Germany. Technically, the site demonstrates good mobile optimization, SEO practices, and a moderate performance profile, hosted on servers associated with ccn.net. Security posture is adequate but could be improved by implementing security headers and publishing explicit privacy and terms of service documents. No signs of blocking or WAF interference were detected, allowing full content access and analysis.

HERDT-Verlag für Bildungsmedien GmbH operates HERDT|Campus, a digital educational media platform targeting academic institutions in Germany. The platform restricts access to authorized university networks, providing exclusive learning content for research and teaching. The company has a stable market position as a niche provider of digital educational resources, founded in 2013 and maintaining consistent branding and contact transparency. Technically, the website employs modern frontend technologies such as jQuery, Bootstrap, and the Yii framework, with Cloudflare DNS services enhancing infrastructure reliability. However, the site shows basic SEO and accessibility features and lacks visible advanced security headers or cookie consent mechanisms. Security posture is moderate, with domain registration and DNS configurations indicating legitimacy but missing DNSSEC and security policy disclosures. Overall, the site is safe, professional, and targeted at a general academic audience, but improvements in privacy compliance and security best practices are recommended.