Security Directory

F

Fundalingua

fundalingua.com

0

Fundalingua is a small, specialized service provider offering German translation and localization services with a focus on tourism and recreation sectors. The business is led by a native German speaker with 20 years of experience, targeting Dutch-speaking clients who require culturally adapted German content. The website is built on WordPress using the Divi theme, with standard analytics tools such as Google Analytics and Matomo integrated. The technical infrastructure is moderate in performance and well-optimized for mobile devices. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business credibility is high given the domain age and consistent content.

C

Carter Fiscaal

carterfiscaal.nl

0

Carter Fiscaal is a small Dutch financial services company specializing in payroll administration and fiscal advice for businesses across various sectors. Established in 2000, the company positions itself as a comprehensive service provider aiming to fully relieve clients of financial administrative burdens. The website reflects a professional and consistent brand image, targeting business clients primarily in the Netherlands. Technically, the website is built on WordPress using the Divi theme and incorporates Yoast SEO for search optimization. Basic security measures such as HTTPS and DNSSEC are in place, but there is a lack of advanced security headers and explicit privacy or cookie policies. No contact information or incident response details are readily available, which may impact user trust and compliance with privacy regulations.

Vrijwilligerscentrum Haarlem & omstreken is a small non-profit organization focused on volunteer coordination in the Haarlem region of the Netherlands. The website analyzed is a transitional placeholder page informing visitors that from October 1st, the organization's activities and information will be found on a new domain, Haarlemvoorelkaar.nl. This indicates a consolidation or migration of their web presence to a presumably more modern platform. The business operates locally and targets volunteers and community members in the Haarlem area. The domain is well-established, having been registered since 2001, which aligns with the organization's longevity and local presence. Technically, the website is minimalistic, using basic HTML and jQuery for a countdown animation and redirect. There is no evidence of a CMS or advanced frameworks. The site lacks privacy, cookie, and terms of service policies, and no contact information or forms are present. DNSSEC is enabled, which is a positive DNS security indicator, but no security headers or HTTPS status were provided. The site performance and mobile optimization are basic, reflecting the simple nature of the page. From a security perspective, the site shows limited maturity. The absence of privacy and cookie policies, lack of security headers, and minimal technical implementation suggest room for improvement. However, no vulnerabilities or malicious content were detected. The domain registration data is consistent and trustworthy, supporting the legitimacy of the organization. Overall, the site serves as a simple redirect notice rather than a full operational website. The overall risk is low given the nature of the content and the absence of sensitive data collection. Strategic recommendations include implementing HTTPS if not already done, adding privacy and cookie policies, improving security headers, and providing clear contact information to enhance trust and compliance.

E

Expat Mortgage Platform (EMP)

mortgagemonster.nl

0

Expat Mortgage Platform (EMP) is a specialized mortgage advisory service targeting expatriates in the Netherlands. The company offers independent, professional mortgage advice, helping expats find the best Dutch mortgage products for financing their homes. With over 30 years of experience and recognition such as the Romeo 2025 award, EMP positions itself as a trusted advisor for first-time buyers and expats navigating the Dutch real estate market. Their services include mortgage calculation tools, personalized consultancy, and a network of premium partners. The website reflects a professional and user-friendly digital presence, optimized for both desktop and mobile users, with clear navigation and comprehensive content tailored to their target audience.

Y

Yayaki Hotel Spetses Island Greece

yayaki.com

0

Yayaki Hotel Spetses Island Greece operates as a boutique luxury hotel located on Spetses Island, Greece, offering a family-oriented hospitality experience with a variety of rooms, suites, wellness services, and curated local experiences. The website is professionally designed using WordPress and Elementor, integrating modern analytics and marketing tools such as Google Analytics and Tag Manager. The technical infrastructure is solid with HTTPS enabled and moderate performance, though accessibility and privacy compliance require improvement. Security posture is adequate but lacks published policies and security headers. WHOIS data is inconsistent, with a domain creation date in the future and no registrant details, which reduces domain trustworthiness. Overall, the site is functional and trustworthy from a business perspective but should address privacy and security transparency gaps.

HypotheekPlatform is a Dutch mortgage advisory firm specializing in independent, expert, and reliable mortgage advice primarily serving the Rotterdam region and broader Netherlands market. The company offers a range of services including mortgage calculations, refinancing, expat mortgages, and support for entrepreneurs and self-employed individuals. The website reflects a strong market position with high customer satisfaction ratings and industry recognition. Technically, the site is built on WordPress with modern plugins and tools, ensuring good performance, mobile optimization, and SEO. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

C

Cavallaro Napoli

thekeythesecret.nl

0

TheKeyTheSecret.nl is a professionally designed website representing the Cavallaro Napoli fashion brand, focusing on formal and leisure wear collections for 2021. The site targets fashion-conscious consumers looking for stylish and high-quality apparel with Italian heritage. The business operates primarily in the retail sector within the Netherlands and appears to be a small-sized company founded around 2020. The website offers lookbook downloads and direct contact options via phone and email but lacks interactive forms or e-commerce capabilities on this domain. Technically, the website utilizes modern frontend technologies including Bootstrap, jQuery, Font Awesome, and Google Fonts, ensuring a responsive and visually appealing user experience. Google Analytics is implemented with IP anonymization, indicating some privacy consideration. However, the site lacks critical security headers and DNSSEC is not enabled, which are areas for improvement. The site performance is moderate with good mobile optimization but basic SEO and accessibility features. From a security standpoint, the site uses HTTPS (assumed from domain and scripts) but does not publicly disclose privacy, cookie, or security policies, nor does it provide incident response or vulnerability disclosure information. No forms are present, reducing attack surface but also limiting user interaction. The WHOIS data is consistent with the business profile, showing domain registration in 2020 with no privacy protection, supporting legitimacy. Overall, the website is safe, professional, and credible but has gaps in privacy compliance and security best practices. Strategic improvements in policy disclosures, security headers, and DNSSEC would enhance trust and compliance posture.

The website at arcticicestudio.com currently serves a standard 404 error page hosted on the Netlify platform, indicating the site content is inaccessible or missing. There is no visible business information, contact details, or policy documentation available on the page. The domain is registered with IONOS SE since 2014 and uses privacy protection for registrant details, which is typical for business domains. However, the lack of accessible content severely limits the ability to assess the company's market position, services, or technical maturity. From a technical perspective, the site is hosted on Netlify but lacks any detectable scripts, tracking, or modern web technologies in the provided HTML snapshot. The absence of security headers and SSL configuration details in the data provided suggests potential gaps in security best practices, although this cannot be fully confirmed without live site testing. Security posture is weak due to the lack of visible security policies, privacy compliance documentation, and contact information. No forms or data collection mechanisms are present, reducing immediate data exposure risks but also indicating a lack of engagement or business functionality. The domain WHOIS data is consistent and legitimate, but the site itself does not currently present a professional or trustworthy front. Overall, the site is non-functional from a user perspective and scores very low on content quality, technical implementation, security posture, privacy compliance, and business credibility. Strategic recommendations include restoring website content, publishing essential policies, implementing security headers and HTTPS, and providing clear contact information to improve trust and compliance.

M

Martin Magni

oddbotout.com

0

Odd Bot Out is an indie mobile puzzle game developed and promoted by Martin Magni. The website serves as a promotional platform linking to the iOS and Android app stores and features embedded video content and positive press reviews. The business operates in the technology sector, specifically mobile gaming, targeting casual gamers interested in physics-based puzzles. The site is small-scale and focused on a single product with no indication of a larger corporate structure. Technically, the website is built with basic HTML and CSS, uses Google Fonts, and embeds YouTube videos. It is mobile-optimized and provides a straightforward user experience. However, there is no evidence of advanced frameworks or CMS usage. SEO and accessibility are basic but adequate for the site's scope. From a security perspective, the site lacks visible HTTPS confirmation and security headers, and no privacy or cookie policies are present. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and trustworthiness. No contact information or incident response details are provided, limiting transparency and user trust. Overall, the site is functional and content-rich for its purpose but has notable gaps in security, privacy compliance, and domain registration transparency. Strategic improvements in these areas would enhance trust and compliance.

M

Martin Magni

mekorama.com

0

Mekorama is an indie mobile puzzle game developed by Martin Magni, offering a unique experience with mechanical dioramas and user-generated content via QR codes. The game is available across multiple platforms including iOS, Android, Nintendo Switch, PlayStation, Xbox, and web browsers, positioning it as a niche but well-regarded title in the indie gaming market. The website provides rich content about the game, including links to app stores, console versions, and social media channels, but lacks formal business contact details and privacy-related policies. Technically, the website uses standard web technologies such as HTML5, CSS, and JavaScript, with Google Adsense for monetization and Google Fonts for typography. The site is mobile-optimized and has good SEO practices but lacks advanced security headers and explicit privacy or cookie policies. No forms are present, reducing attack surface but also limiting user interaction on the site. From a security perspective, the site uses HTTPS, but no additional security headers were detected in the provided data. The absence of privacy and cookie policies indicates potential compliance gaps with GDPR and other privacy regulations. The WHOIS data is unavailable, which reduces trust slightly but is not uncommon for small indie projects. No vulnerabilities or malicious content were detected, and the content is safe for general audiences. Overall, Mekorama's website is professionally presented with good content quality and business credibility for an indie game. However, improvements in privacy compliance, security headers, and WHOIS transparency are recommended to enhance trust and regulatory adherence.

F

Fuck I Wish I Knew That

fuckiwishiknewth.at

0

The website 'Fuck I Wish I Knew That' is a personal curated link list managed by Piet Terheyden, targeting general internet users interested in educational and interesting content. It offers a monthly newsletter and an RSS feed to keep subscribers updated. The business model is simple content curation without commercial transactions or complex services. The site is built on WordPress CMS with modern versions of jQuery and integrates third-party services like Mailerlite for newsletter management and Plausible Analytics for privacy-focused user tracking. Hosting appears to be managed via the domain registrar's name servers, with no explicit hosting provider identified. From a security perspective, the site enforces HTTPS and uses deferred JavaScript loading, but lacks explicit security headers such as Content-Security-Policy, X-Frame-Options, and X-Content-Type-Options. No privacy or cookie policies are present, which is a compliance gap. The contact information is limited to an email address and a newsletter subscription form, with no phone numbers or physical addresses. WHOIS data is privacy protected, which aligns with the personal nature of the site. No WAF or blocking mechanisms are detected, and the site content is fully accessible. Overall, the website demonstrates good content quality and user experience with clear navigation and consistent branding. However, it lacks formal privacy and security policies, which impacts its privacy compliance score. The security posture is moderate due to missing security headers and lack of vulnerability disclosure mechanisms. The site is safe for general audiences with no adult or explicit content detected. Strategic improvements in privacy compliance and security headers would enhance trust and compliance.

P

Piet Terheyden

oni-icons.com

0

Oni Icons is a small technology-focused business founded in 2021 by Piet Terheyden, offering customizable icon packs primarily targeting designers and mobile users who want to personalize their iPhone and Android home screens. The website provides vector icon packs with easy color customization and instructions for use, positioning itself as a niche provider in the design tools market. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, jQuery, and integrates privacy-conscious analytics via Plausible. The site is mobile optimized with good navigation and professional design, though accessibility features are basic. Security posture is moderate with HTTPS enforced and domain registration protections in place, but lacks DNSSEC and security headers. Privacy compliance is limited, with no cookie consent mechanism and only a basic privacy policy present. Overall, the site is legitimate and functional but could improve in security and privacy transparency.

M

Marvin Kühner

marvinkuehner.com

0

Marvin Kühner's website serves as a professional portfolio for a film editor specializing in video post-production for high-profile clients such as Mercedes Benz, BMW, Adidas, and Zalando. The business operates as a small entity focused on providing film editing services, targeting film production companies and advertising agencies. The website is built on WordPress and employs common web technologies including jQuery and Plyr.js for video playback, with Google Analytics and Tag Manager for visitor tracking. While the site is visually professional and mobile-optimized, it lacks critical privacy and cookie policies, and does not implement GDPR compliance mechanisms. Security posture is moderate with HTTPS enabled and domain transfer protection, but missing DNSSEC and security headers reduce overall security maturity. Contact information is clearly presented, enhancing business credibility. Overall, the website is functional and professional but would benefit from improved privacy compliance and enhanced security practices.

T

TiQuest Management

tiquest-management.de

0

TiQuest Management is a small, Germany-based artist and influencer management agency specializing in representing social media stars with millions of followers. The company focuses on building sustainable careers for talented artists through personalized management and influencer marketing services. The website is professionally designed, mobile-optimized, and compliant with GDPR and cookie regulations, reflecting a mature digital presence. Technically, the site runs on WordPress with modern plugins and themes, hosted on kasserver.com, and employs HTTPS for secure communications. Security posture is good but could be improved by adding security headers and explicit incident response policies. Overall, the domain registration and hosting details align well with the business claims, supporting legitimacy and trustworthiness.

M

Minimal Gallery

minimal.gallery

0

Minimal Gallery is a curated web design inspiration platform operated by Piet Terheyden since 2013, targeting designers, developers, agencies, and entrepreneurs globally. The site offers a gallery of hand-picked websites, templates, tools, and a newsletter subscription, positioning itself as a leading resource in the web design community. The business model includes sponsorship opportunities and affiliate marketing through template sales. Technically, the site runs on WordPress with advanced custom fields and integrates modern tools like Plausible Analytics and Mailerlite for marketing and analytics. The infrastructure is stable, hosted under a reputable registrar with secure HTTPS configuration. Security posture is solid with no visible vulnerabilities, though lacking some security headers and formal policies. Privacy compliance is limited due to absence of explicit privacy and cookie policies. Overall, the website is professional, trustworthy, and well-maintained, with room for improvement in formal compliance documentation and security best practices.

N

Neatnik

cache.lol

0

omg.lol is a small technology company operated by Neatnik, offering personalized web addresses, profile pages, and email forwarding services with a strong focus on privacy and community engagement. Their market position is niche, targeting individuals and small communities seeking a fun and private web presence. The business model is subscription-based with a transparent flat annual fee, emphasizing simplicity and user control. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and SVG graphics, delivering a fast and mobile-optimized user experience. The integration with Fastmail for email sending enhances their service offering. Security posture is solid with HTTPS enforced and privacy-respecting practices, though there is room for improvement in security headers and formal policies. Overall, the site is professional, trustworthy, and well-aligned with its stated mission.

ShopUp is a Thai-based web design and development company specializing in creating online stores and websites tailored to small and medium businesses. With over 15 years of experience and a customer base exceeding 100,000, ShopUp offers three main service packages ranging from single-page sale pages to fully custom multi-page designs. The company also provides additional digital marketing and design services such as email hosting, fanpage cover design, and product data entry. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Facebook Pixel, ensuring a responsive and user-friendly experience. The presence of a GlobalSign SSL certificate confirms secure HTTPS communication. However, the absence of a privacy policy and cookie consent mechanism indicates compliance gaps with privacy regulations. The WHOIS data is unavailable, raising concerns about domain registration legitimacy, though the website content and branding suggest a legitimate business. Overall, ShopUp demonstrates a solid market position in Thailand's web design sector with room for improvement in privacy compliance and security best practices.

Nintendo Saudi Arabia operates an official localized website serving as the regional distributor and retailer for Nintendo products including consoles, accessories, and games. The website targets Nintendo players and consumers within Saudi Arabia, offering support services such as manuals, repair centers, and return policies. The business model focuses on retail and customer support, positioning Nintendo Saudi as the official regional presence for the brand. Technically, the website is built on the Odoo CMS platform with modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is generally good with HTTPS enforced and CSRF tokens implemented; however, the absence of security headers and cookie consent mechanisms indicates room for improvement. The lack of WHOIS data for the domain reduces trustworthiness from a domain registration perspective, though the website content and branding strongly suggest legitimacy. Overall, the website is functional, professional, and safe for general audiences, but should enhance privacy compliance and security best practices to strengthen trust and regulatory adherence.

C

CQE.CZ | DLKstudio

mojenintendo.cz

0

mojenintendo.cz is an official Nintendo distributor website serving the Czech Republic and Slovakia markets. The site focuses on retailing Nintendo Switch 2 consoles, games, accessories, and related services such as GameChat and GameShare. The business is positioned as a trusted regional distributor with a medium-sized operation founded in 2006. The website is built on WordPress with Elementor and WooCommerce, indicating a modern and flexible technical infrastructure. Performance is moderate with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is basic with privacy and cookie policies present but no explicit consent mechanism. Contact information is available via a dedicated support page, though no direct emails or phone numbers are visible in the main content. Overall, the site presents a professional and trustworthy front for Nintendo products in the region.

N

Numeric Citizen Space

numericcitizen.me

0

Numeric Citizen Space is a personal technology blog operated by an individual contributor focused on Apple products, software, apps, photography, and personal stories. The site targets Apple enthusiasts, digital nomads, and technology readers, offering regularly updated articles and a subscription-based newsletter model. The business model is content-driven with donation support and subscription options. Technically, the website is built on the Ghost CMS platform, hosted and DNS managed by Cloudflare, and uses modern web technologies including JavaScript and CSS. The site is mobile-optimized, fast-loading, and includes privacy-focused analytics services such as Plausible and Cloudflare Web Analytics. Security posture is good with HTTPS enforced and domain transfer protection, but lacks some security headers and DNSSEC. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

M

Mattia Compagnucci

mattiacompagnucci.com

0

Mattia Compagnucci's website serves as a personal portfolio and creative outlet showcasing his work as a product designer, photographer, and writer. The site offers various sections including a journal, photography portfolio, shop, newsletters, and curated web links, targeting individuals interested in design, storytelling, and mindful living. The business model is primarily personal branding with monetization through shop sales and donations. Technically, the website employs a moderate tech stack including jQuery 2.0.0, Flickity for image sliders, Simple Lightbox, Font Awesome icons, Google Fonts, and Plausible Analytics for tracking. Hosting is provided by JustHost, and the site is HTTPS enabled. However, the use of an outdated jQuery version and lack of DNSSEC and security headers indicate areas for improvement. The site is mobile optimized with good SEO and accessibility basics. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers. No privacy or cookie policies are present, and no contact information or incident response details are provided. The site does not collect data via forms and uses minimal tracking through Plausible Analytics, indicating a low privacy risk but also low compliance with GDPR best practices. Overall, the website is safe, professional, and well-structured for its purpose but would benefit from enhanced security measures, privacy compliance, and clearer contact information to improve trust and compliance posture.

G

Nikita Galaiko

galaiko.rocks

0

The website nikita.galaiko.rocks serves as a personal homepage for an individual named Nikita Galaiko. It primarily functions as a personal portfolio and contact point, sharing curated lists of interests such as vinyl records, restaurants, cocktails, movies, and blogrolls. The site targets a general audience interested in these personal interests and provides contact options via email and scheduling calls. The business model is informational and personal, with no commercial or corporate presence evident. Technically, the website is built with standard HTML5 and CSS3, utilizing custom fonts loaded via WOFF2. There is no evidence of a CMS or advanced frameworks. The site appears moderately optimized for performance and mobile devices, with basic accessibility and SEO features. No advanced analytics or tracking technologies are detected, indicating a privacy-conscious approach. From a security perspective, the site lacks visible HTTPS enforcement and security headers, which lowers its security posture. There are no published security policies, incident response contacts, or cookie consent mechanisms, which are typical for personal sites but represent areas for improvement. The WHOIS data is unavailable or privacy protected, which is common for personal domains and does not raise immediate concerns. No vulnerabilities or suspicious patterns were detected. Overall, the website is a safe, personal informational site with moderate technical quality but limited security and privacy compliance features. Strategic recommendations include implementing HTTPS, adding security headers, publishing privacy and security policies, and introducing cookie consent mechanisms to enhance trust and compliance.

D

DomRobot UG (haftungsbeschraenkt)

muhh.lol

0

The website muhh.lol is a personal blog and notes repository maintained by Markus Heurung, a family man based in Hammelburg, Germany. It serves as a personal happy place on the internet with content focused on personal journaling, notes, and links to related social and personal projects. The site is small-scale and niche, targeting a general audience interested in personal blogs and technology notes. The domain is relatively new, registered in 2022, and hosted likely on a personal or small-scale server infrastructure.

The website '𓆱 softlandings' appears to be a personal or thematic blog with dated posts and minimal business or commercial content. It does not present clear business information, contact details, or commercial services, indicating a small-scale or individual operation. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript without detectable CMS or advanced frameworks. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. Security posture is weak due to absence of HTTPS confirmation, security headers, and privacy policies. The WHOIS data is malformed and provides no registrar or registrant information, limiting trust and verification. Overall, the site is safe for general audiences but lacks professional business and security maturity.

P

Pedro Corá

pcora.eu

0

The website pcora.eu serves as a personal professional profile for Pedro Corá, an IT Analyst based in the Netherlands. It primarily functions as a hub linking to various personal blogs, photoblogs, and social media profiles, emphasizing personal branding rather than commercial business operations. The site content is straightforward, professional, and targeted at a general audience interested in Pedro's IT expertise and personal content. Technically, the website uses standard HTML5 and CSS with FontAwesome icons and Open Graph metadata for social sharing. It is hosted on or uses services from omg.lol and cache.lol domains, indicating a lightweight, possibly static or semi-static site architecture. The site is moderately optimized for mobile and accessibility but lacks advanced SEO and security headers. From a security perspective, the site uses HTTPS, but no additional security headers were detected. There are no forms collecting sensitive data, reducing attack surface. However, the absence of privacy and cookie policies, security.txt, or vulnerability disclosure mechanisms indicates limited formal security and compliance posture. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the site is low risk with a moderate trust level, suitable for personal branding. Strategic improvements include adding privacy and cookie policies, implementing security headers, and enhancing SEO and accessibility to improve professionalism and compliance.

Feadin.eu is a personal blog maintained by Paolo, an EU citizen and IT professional with interests in film and personal opinions. The site serves as a platform for sharing weekly film-related posts, lists, and links. It targets a general audience interested in cinema and personal reflections. The business model is non-commercial, focusing on content sharing rather than monetization or services. The website is built using the Hugo static site generator with the PaperMod theme, indicating a modern, lightweight technical infrastructure. The site is moderately optimized for mobile and SEO, with basic accessibility features. Security posture is minimal, lacking standard security headers and privacy policies, which presents compliance and trust challenges. No contact or business information is provided, limiting business credibility. Overall, the site is safe and suitable for general audiences but would benefit from enhanced security and privacy compliance measures.

T

Tangible Life

tangiblelife.net

0

Tangible Life is a personal blog established in 2021 that publishes reflective and experiential content focused on lifestyle, technology, and personal growth. The site targets readers interested in the IndieWeb community and thoughtful living. It operates as a small-scale personal publishing platform without commercial transactions or extensive business infrastructure. Technically, the website uses a simple tech stack including HTML5, CSS, JavaScript with jQuery and Galleria.js, and is likely hosted on Blot.im, a platform for personal blogs. The site demonstrates good design quality, mobile optimization, and clear navigation, though accessibility and SEO optimizations are basic. Security posture is moderate with HTTPS implied but lacking DNSSEC and security headers. No privacy or cookie policies are present, indicating compliance gaps. Analytics usage is minimal via Tinylytics, with no forms or personal data collection evident. The domain registration is consistent and appropriate for the site’s age and content, registered with Porkbun LLC since 2021 with no privacy protection. Overall, the website is trustworthy as a personal blog but would benefit from improved security and privacy compliance.

The website maxy.top is a personal portfolio site for the developer known as 'maxeepy'. It primarily showcases open source projects hosted on platforms such as GitHub and Codeberg, and provides links to various social media profiles. The site is relatively new, with the domain registered in late 2023, and targets a general audience interested in technology and software development. The business model is personal branding and project showcasing rather than commercial services. The site is small in scale and focused on individual presence in the technology sector. Technically, the site is built using Python and the Flask framework, hosted by Spaceship, Inc. The HTML content is basic but functional, with moderate performance and basic mobile optimization. SEO and accessibility features are minimal but present. No CMS or advanced platforms are detected. The site does not use analytics or tracking services, indicating a privacy-conscious approach. From a security perspective, the site lacks advanced security headers and does not enable DNSSEC on the domain. There is no visible privacy or cookie policy, and no contact information is provided for incident response or data protection officers. The domain uses privacy protection for WHOIS data, which is justified given the personal nature of the site. No vulnerabilities or malicious content were detected, but security posture is basic and could be improved. Overall, the site is low risk with a moderate trust level. Strategic recommendations include adding privacy and cookie policies, implementing security headers, improving mobile and accessibility features, and providing contact information for better compliance and trust. The site serves well as a personal portfolio but lacks professional security and compliance maturity.

F

Fancade

fancade.com

0

Fancade is a technology company specializing in mobile and instant games, offering a platform where users can play thousands of games or create their own using a visual scripting system. Founded in 2018 by Martin Magni and based in Sweden, the company has established itself as a notable player in the gaming industry with a strong user base and partnerships with major platforms like Google Play, Apple App Store, and Poki. The website is professionally designed, content-rich, and targets gamers and creators alike. Technically, the site is built on WordPress with the Divi theme, leveraging jQuery and MediaElement.js for multimedia. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. WHOIS data is missing, which raises some concerns about domain registration transparency but does not detract from the apparent legitimacy of the business. Overall, the site is trustworthy, user-friendly, and well-positioned in its market niche.

G

Garuda Linux

garudalinux.org

0

Garuda Linux is a technology company focused on providing an opinionated Arch Linux-based distribution that emphasizes ease of use and powerful features. The website presents a professional and modern design, targeting Linux users who want a user-friendly yet powerful operating system. The company operates primarily in Germany and has been active since 2020, with a small but dedicated community and ecosystem including forums and donation support. Technically, the website uses modern Angular framework and PrimeNG components, hosted via Cloudflare, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is minimal as no privacy or cookie policies are found. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

C

CAT

catpowertools.co.za

0

CAT Power Tools South Africa operates as a regional distributor and service provider for the CAT brand of power tools, targeting professionals in construction and industrial sectors. The website serves as a brand presence and gateway to retail partners and the international CAT Power Tools site. The business is positioned as a medium-sized entity with a focus on quality and durability in power tools. Technically, the website is built on WordPress using a modern theme and SEO plugin, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and privacy compliance documentation. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security policies to improve compliance and user trust.

3

32-Bit Cafe

32bit.cafe

0

32-Bit Cafe is a small, community-driven platform focused on revitalizing the personal web through self-expression and creativity. It serves a niche audience of website hobbyists and professionals who seek alternatives to mainstream social media, offering various free services such as email, collaborative documents, RSS aggregation, and community forums. The website is well-structured with good navigation and content relevance, supporting a positive user experience for its target audience. Technically, the site uses standard web technologies (HTML, CSS, JavaScript) without reliance on major CMS or frameworks, indicating a lightweight and straightforward infrastructure. Security posture is moderate; while HTTPS is implied, no security headers or DNSSEC are enabled, and no cookie consent mechanism is present. The domain is privacy protected, which aligns with the community's ethos and non-commercial nature. Overall, the site is safe, trustworthy, and professionally maintained but could improve in security and privacy compliance aspects.

lojban.io is a specialized educational platform dedicated to the study and promotion of the constructed language Lojban. It offers free and open-source resources including courses, learning decks, and community engagement via a Discord server. The website targets language enthusiasts and learners interested in logical and constructed languages, positioning itself as a niche educational resource with a small but active user base. The platform is relatively young, established in 2020, and maintains a consistent brand and content quality with regular updates and community involvement. Technically, the website employs modern web technologies such as Bootstrap for styling, Font Awesome for icons, and integrates Google Analytics and Tag Manager for user tracking. It also supports Progressive Web App features, enhancing user experience across devices. Hosting and DNS services are managed via Cloudflare, providing performance and security benefits. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. From a security perspective, the site uses HTTPS with a good SSL configuration and has domain transfer protections in place. However, it lacks DNSSEC and important security headers like Content-Security-Policy and X-Frame-Options, which are recommended to enhance security posture. Privacy compliance is limited due to the absence of privacy and cookie policies, which is a notable gap given the use of tracking technologies. No incident response or vulnerability disclosure mechanisms are present. Overall, lojban.io presents a trustworthy and professional educational resource with a solid technical foundation but would benefit from improved privacy compliance and enhanced security headers. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing a vulnerability disclosure process to strengthen trust and compliance.

P

Privacy service provided by Withheld for Privacy ehf

wikipesija.org

0

Wikipesija is a niche community-driven wiki platform focused on the toki pona language, providing an open content knowledge base for speakers and learners. The website operates on the MediaWiki platform and hosts over 3,000 pages, emphasizing educational and cultural content. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is minimal, lacking advanced security headers and published policies, and the domain uses privacy protection services typical for small community projects. Overall, the site is safe, trustworthy, and serves a specialized audience with no commercial intent or advertising.

P

Private Registry Authority

ranaseme.org

0

The website 'ranaseme.org' serves as a cultural and linguistic resource focused on the choral libretto 'suno sama', supporting multiple constructed and minority languages such as Esperanto, Tokipona, and Guosa. It targets linguistic communities and enthusiasts, offering free downloadable content and promoting international language collaboration. The site is small-scale, non-commercial, and community-oriented. Technically, it uses modern frontend technologies like Bootstrap and Google Fonts, hosted by Dreamscape Networks. However, the domain WHOIS data shows an anomalous future creation date and uses privacy protection, which slightly reduces trustworthiness. Security posture is minimal with no visible security headers or policies, and privacy compliance is lacking due to absence of privacy or cookie policies. Overall, the site is safe, educational, and accessible but would benefit from improved transparency and security practices.

P

Private Registry Authority

sunosama.org

0

The website sunosama.org represents a niche cultural and linguistic community project focused on international choirbooks supporting languages such as Esperanto, Guosa, and Tokipona. It provides free downloadable choirbook PDFs and promotes collaboration among language communities. The site is small-scale and non-commercial, targeting enthusiasts and speakers of these constructed and minority languages. Technically, the site uses modern frontend technologies like Bootstrap and Google Fonts, hosted on Vodien infrastructure. However, it lacks advanced SEO, accessibility features, and comprehensive privacy or security policies. Security posture is minimal with no DNSSEC and no visible security headers. The WHOIS data shows privacy protection but contains a suspicious domain creation date in the future, which reduces trust. Overall, the site is safe, with no adult or malicious content detected, but lacks business transparency and compliance documentation.

F

Pharmacy online store

farmacy-houses.com

0

Farmacy-houses.com is an online pharmacy store established in 2019, offering a wide range of medications and health supplements with worldwide delivery. The website targets general consumers seeking convenient access to pharmaceutical products without the need for prescriptions. The business operates primarily as an e-commerce platform with features such as user accounts, shopping cart, and live chat support. Technically, the site is built on OpenCart CMS and utilizes common web technologies including jQuery, Bootstrap, and third-party services like Google Analytics and JivoSite chat. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and moderately trustworthy but would benefit from enhanced security and compliance measures.

J

Japan Health Center

bio-japan.net

0

Japan Health Center operates an e-commerce platform specializing in authentic Japanese medicines, vitamins, and dietary supplements. The website targets health-conscious consumers globally, offering a wide range of original Japanese health products with detailed descriptions, customer reviews, and guarantees. The business has been active since 2013 and emphasizes product authenticity and customer trust. Technically, the site is built on OpenCart with common JavaScript libraries and tracking tools, providing a moderate performance and good mobile experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC, representing areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data supports the legitimacy of the business, and no WAF or blocking mechanisms interfere with content access.

O

Otokonoko Pharmaceuticals

otkph.am

0

Otokonoko Pharmaceuticals operates as a niche e-commerce platform specializing in hormone-related pharmaceutical products, targeting consenting adults. The business model focuses on online retail with cryptocurrency payment acceptance, positioning itself in a specialized healthcare market segment. The website is built on WordPress with WooCommerce, leveraging standard e-commerce technologies and plugins such as Easy Age Verify and BTCPay Server for crypto payments. The site includes age verification overlays and adult content disclaimers to comply with legal requirements for adult products. However, the absence of privacy and cookie policies indicates compliance gaps that should be addressed. Security posture is moderate with HTTPS and reCAPTCHA implemented, but lacks HTTP security headers and formal security policies. Overall, the website is functional and professionally presented but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

The website duanin2.top currently presents no accessible content beyond an empty HTML skeleton. There is no metadata, no visible text, no forms, no contact information, and no business-related content. The domain is registered with HOSTINGER operations, UAB, with privacy protection enabled, and uses Cloudflare DNS servers. The domain age is approximately one year, consistent with a newly created or placeholder site. Due to the lack of content and contact details, the website does not provide any meaningful business information or user engagement opportunities. From a technical perspective, the site lacks any detectable technologies, scripts, or frameworks. There is no evidence of HTTPS or security headers, which are critical for secure web operations. The absence of privacy, cookie, or terms of service policies indicates non-compliance with common data protection regulations such as GDPR. No analytics or tracking mechanisms are present, suggesting minimal or no user data collection. Security posture is weak due to the absence of HTTPS and security headers, and no incident response or vulnerability disclosure information is available. The domain registration is privacy protected, which is common for small or new sites but reduces transparency. No suspicious patterns were detected, but the overall trustworthiness is low given the lack of content and business information. Overall, the website appears to be inactive or a placeholder with no substantive content or business presence. Strategic recommendations include implementing HTTPS, adding essential security headers, publishing privacy and cookie policies, providing clear contact information, and developing meaningful website content to improve trust, compliance, and user engagement.

I

InvitedToHell

pompomsoft.de

0

The website pompomsoft.de represents a personal or small-scale developer presence primarily focused on social and gaming community engagement. The site features links to social media platforms such as Telegram, GitHub, and Mastodon, and includes a 3D interactive element powered by Spline. There is no formal business description or corporate information provided, indicating an individual or hobbyist operation rather than a commercial enterprise. The technical infrastructure leverages modern frontend technologies including Svelte and Cloudflare DNS services, suggesting a moderate level of digital maturity. However, the site lacks comprehensive metadata, privacy policies, and security headers, which limits its compliance and security posture. The absence of forms or data collection mechanisms reduces privacy risks but also limits business functionality. Overall, the site is accessible and functional but basic in content and security features.

The website zacharykai.net currently serves a bot verification page employing Google reCAPTCHA invisible to prevent automated access. This indicates a security mechanism or WAF challenge blocking direct content access, limiting visibility into the actual business or service offered. The domain is newly registered in early 2024 via NameCheap without privacy protection, suggesting transparency but also a nascent online presence. No business, contact, or policy information is publicly accessible on the landing page, and no SEO or analytics technologies are detected beyond the reCAPTCHA scripts. The security posture shows basic use of CAPTCHA but lacks DNSSEC and security headers, and HTTPS status is unknown from the provided data. Overall, the site is in an early stage with minimal content and limited trust signals, resulting in a low AI score primarily due to access restrictions and lack of business information.

S

Saahil

saahild.com

0

Saahild.com is a personal website owned by an individual named Saahil, currently under redevelopment. The site primarily serves as a personal portfolio or presence with minimal content and a link to a retro version of the site. The domain is relatively new, created in 2022, and hosted via Cloudflare with modern frontend technologies such as React and Animate.css. The site lacks comprehensive business information, privacy policies, or contact details, indicating it is not a commercial enterprise but rather a personal project. Technically, the site is moderately optimized with good mobile responsiveness but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers. No analytics or tracking scripts are present, reflecting a privacy-conscious or minimalistic approach. Overall, the site is safe, with no adult or explicit content detected.

The website garnix.dev is a personal blog and content sharing platform maintained by an individual named Emilia. It primarily offers blog posts, music recommendations, and personal content, targeting a general audience interested in technology and related community topics. The site is small in scale and operates as a niche personal blog without commercial business infrastructure or formal corporate presence. Technically, the site is built with standard HTML, CSS, and JavaScript, featuring a simple but consistent design and basic mobile optimization. It uses a fetch API call to an external HTTPS endpoint for form submissions, indicating some level of modern web technology usage. However, there is no evidence of advanced frameworks, CMS, or hosting provider details. SEO and accessibility features are basic, and no structured metadata or Open Graph tags are present. From a security perspective, the site uses HTTPS for external requests but lacks visible security headers and formal security policies. The contact form is minimal and lacks CSRF protection or input validation beyond a non-empty check. No privacy, cookie, or terms of service policies are published, which limits compliance with GDPR and other privacy regulations. The domain uses WHOIS privacy protection, which is common for personal sites and justified here. No suspicious or malicious indicators were found. Overall, the site is safe and trustworthy for general audiences but would benefit from improved security practices, privacy disclosures, and business contact information to enhance credibility and compliance. The AI score reflects a functional but basic personal website with room for improvement in security and privacy compliance.

ProjNULL is a small team of IT students focused on learning programming and experimenting with projects, primarily participating in hackathons. The website serves as a hub for their activities, showcasing their projects and blog content. The business model is educational and experimental, targeting fellow students and programming enthusiasts. The site is hosted by WEDOS Internet, a reputable registrar and hosting provider. Technically, the site uses standard web technologies such as HTML5, CSS3, and JavaScript, with moderate performance and good mobile optimization. However, it lacks advanced frameworks or CMS platforms and has basic SEO and accessibility features. Security posture is minimal, with no detected security headers or published security policies, and no contact information for incident response. Privacy and cookie policies are absent, indicating low privacy compliance. Overall, the site is safe for general audiences and does not contain adult or questionable content.

N

Nu-Pure Beverages

nu-pure.com.au

0

Nu-Pure Beverages is a medium-sized Australian family-owned company specializing in manufacturing 100% Australian-made spring water and related beverages. Established in 2005, the company positions itself as an expert in natural hydration with a strong commitment to quality, sustainability, and innovation. Their product portfolio includes spring water, private label beverages, lightly sparkling water, ultra purified drinking water, and alkaline water. The company maintains partnerships with prominent Australian sporting organizations, enhancing its market presence and brand trust. Technically, the website is built on a modern WordPress platform using WooCommerce for e-commerce capabilities and Elementor for design. It employs popular plugins such as Slider Revolution and integrates tracking and marketing tools like Google Analytics, Google Tag Manager, and Facebook Pixel. Hosting appears to be via Microsoft Azure DNS services. The site demonstrates good mobile optimization and SEO practices but lacks some accessibility features. From a security perspective, the site uses HTTPS and includes reCAPTCHA on forms, indicating basic security hygiene. However, it lacks visible security headers and published security or incident response policies, representing areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable compliance gap. Overall, Nu-Pure Beverages presents a professional and trustworthy online presence with solid business credibility. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance their security posture and regulatory adherence.

X

Xgenesis Management Pty Ltd

crowneplazasurfersparadise.com.au

0

Crowne Plaza Surfers Paradise is a well-established hospitality business offering premium accommodation, dining, event, and wedding services on the Gold Coast, Australia. The website reflects a professional brand presence under the InterContinental Hotels Group umbrella, targeting leisure and business travelers. The site provides comprehensive information about rooms, offers, and facilities, supported by clear contact details and social media integration. Technically, the website is built on WordPress with modern plugins and tracking tools, hosted behind Cloudflare DNS services. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers and privacy compliance mechanisms are lacking. Overall, the site demonstrates a solid business and technical foundation with room for improvement in security and privacy transparency.

K

KitsuDev

kitsunes.dev

0

KitsuDev is a small-scale technology service provider specializing in hosting Forgejo instances and offering free static page hosting through its KitsuPage service. The website targets developers and small project owners who seek free and safe hosting solutions. The business model is primarily donation-supported, emphasizing community and small-scale operations. The site branding is consistent and content quality is good, focusing on clear messaging and developer-centric services. Technically, the website is built on Forgejo, a modern Git forge platform, with standard web technologies including JavaScript, HTML5, and CSS3. The site performs well with fast loading times and good mobile optimization. Accessibility is basic but functional. SEO practices are present but could be enhanced. The infrastructure appears modern and well-maintained, though hosting provider details are not explicitly disclosed. From a security perspective, the site enforces HTTPS and implements CSRF tokens, indicating a baseline security posture. However, it lacks explicit security headers such as Content Security Policy and HSTS, and does not provide privacy or cookie policies, which are important for compliance and user trust. No contact information or incident response channels are provided, limiting transparency. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a moderate risk profile with good technical foundations but gaps in privacy compliance and security best practices. Strategic improvements in policy publication, security headers, and contact transparency would enhance trust and compliance. The domain uses privacy protection, which is justified given the small-scale nature of the business. No suspicious patterns were found in WHOIS data or website content.

MindnBody is a newly established e-commerce website specializing in the sale of pharmaceutical and health-related products targeted at adult customers. The business operates an online retail model offering products such as Casodex and Estradiol tablets, with a clear age restriction policy to ensure compliance with legal purchase age requirements. The website is designed with modern web technologies including jQuery, Bootstrap, and Cleave.js, providing a basic but functional user experience with mobile optimization and a simple navigation structure. From a security perspective, the site uses HTTPS and includes an age disclaimer modal, but lacks critical security headers and DNSSEC, which reduces its overall security posture. There are no visible privacy or cookie policies, nor contact information or incident response details, which are significant compliance and trust gaps. The domain is very new and uses privacy protection for WHOIS data, which is reasonable for this business type but limits transparency. Overall, the website demonstrates a basic level of technical implementation and business credibility but requires improvements in privacy compliance, security best practices, and transparency to enhance trustworthiness and regulatory adherence. The risk level is moderate due to the absence of key policies and security features, and strategic enhancements are recommended to mitigate these gaps.

The website at fedi.gay is a minimal, non-commercial site containing only a literary poem themed on Elven lore from Tolkien's universe. There is no business description, contact information, or commercial content. The domain is registered to Private by Design, LLC, a US-based entity, but the website content does not reflect any business operations or services. The domain WHOIS data is suspicious due to a future creation date, which raises concerns about legitimacy. Technically, the site uses basic HTML and CSS with no advanced frameworks or scripts detected. There are no privacy, cookie, or terms of service policies, and no contact or incident response information is provided. Security posture is weak with no DNSSEC, no security headers, and unknown SSL status. Overall, the site appears to be a placeholder or personal page rather than a professional business site.