Security Directory

F

Fancade

fancade.com

0

Fancade is a technology company specializing in mobile and instant games, offering a platform where users can play thousands of games or create their own using a visual scripting system. Founded in 2018 by Martin Magni and based in Sweden, the company has established itself as a notable player in the gaming industry with a strong user base and partnerships with major platforms like Google Play, Apple App Store, and Poki. The website is professionally designed, content-rich, and targets gamers and creators alike. Technically, the site is built on WordPress with the Divi theme, leveraging jQuery and MediaElement.js for multimedia. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. WHOIS data is missing, which raises some concerns about domain registration transparency but does not detract from the apparent legitimacy of the business. Overall, the site is trustworthy, user-friendly, and well-positioned in its market niche.

G

Garuda Linux

garudalinux.org

0

Garuda Linux is a technology company focused on providing an opinionated Arch Linux-based distribution that emphasizes ease of use and powerful features. The website presents a professional and modern design, targeting Linux users who want a user-friendly yet powerful operating system. The company operates primarily in Germany and has been active since 2020, with a small but dedicated community and ecosystem including forums and donation support. Technically, the website uses modern Angular framework and PrimeNG components, hosted via Cloudflare, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is minimal as no privacy or cookie policies are found. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

C

CAT

catpowertools.co.za

0

CAT Power Tools South Africa operates as a regional distributor and service provider for the CAT brand of power tools, targeting professionals in construction and industrial sectors. The website serves as a brand presence and gateway to retail partners and the international CAT Power Tools site. The business is positioned as a medium-sized entity with a focus on quality and durability in power tools. Technically, the website is built on WordPress using a modern theme and SEO plugin, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and privacy compliance documentation. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security policies to improve compliance and user trust.

3

32-Bit Cafe

32bit.cafe

0

32-Bit Cafe is a small, community-driven platform focused on revitalizing the personal web through self-expression and creativity. It serves a niche audience of website hobbyists and professionals who seek alternatives to mainstream social media, offering various free services such as email, collaborative documents, RSS aggregation, and community forums. The website is well-structured with good navigation and content relevance, supporting a positive user experience for its target audience. Technically, the site uses standard web technologies (HTML, CSS, JavaScript) without reliance on major CMS or frameworks, indicating a lightweight and straightforward infrastructure. Security posture is moderate; while HTTPS is implied, no security headers or DNSSEC are enabled, and no cookie consent mechanism is present. The domain is privacy protected, which aligns with the community's ethos and non-commercial nature. Overall, the site is safe, trustworthy, and professionally maintained but could improve in security and privacy compliance aspects.

lojban.io is a specialized educational platform dedicated to the study and promotion of the constructed language Lojban. It offers free and open-source resources including courses, learning decks, and community engagement via a Discord server. The website targets language enthusiasts and learners interested in logical and constructed languages, positioning itself as a niche educational resource with a small but active user base. The platform is relatively young, established in 2020, and maintains a consistent brand and content quality with regular updates and community involvement. Technically, the website employs modern web technologies such as Bootstrap for styling, Font Awesome for icons, and integrates Google Analytics and Tag Manager for user tracking. It also supports Progressive Web App features, enhancing user experience across devices. Hosting and DNS services are managed via Cloudflare, providing performance and security benefits. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. From a security perspective, the site uses HTTPS with a good SSL configuration and has domain transfer protections in place. However, it lacks DNSSEC and important security headers like Content-Security-Policy and X-Frame-Options, which are recommended to enhance security posture. Privacy compliance is limited due to the absence of privacy and cookie policies, which is a notable gap given the use of tracking technologies. No incident response or vulnerability disclosure mechanisms are present. Overall, lojban.io presents a trustworthy and professional educational resource with a solid technical foundation but would benefit from improved privacy compliance and enhanced security headers. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing a vulnerability disclosure process to strengthen trust and compliance.

P

Privacy service provided by Withheld for Privacy ehf

wikipesija.org

0

Wikipesija is a niche community-driven wiki platform focused on the toki pona language, providing an open content knowledge base for speakers and learners. The website operates on the MediaWiki platform and hosts over 3,000 pages, emphasizing educational and cultural content. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is minimal, lacking advanced security headers and published policies, and the domain uses privacy protection services typical for small community projects. Overall, the site is safe, trustworthy, and serves a specialized audience with no commercial intent or advertising.

P

Private Registry Authority

ranaseme.org

0

The website 'ranaseme.org' serves as a cultural and linguistic resource focused on the choral libretto 'suno sama', supporting multiple constructed and minority languages such as Esperanto, Tokipona, and Guosa. It targets linguistic communities and enthusiasts, offering free downloadable content and promoting international language collaboration. The site is small-scale, non-commercial, and community-oriented. Technically, it uses modern frontend technologies like Bootstrap and Google Fonts, hosted by Dreamscape Networks. However, the domain WHOIS data shows an anomalous future creation date and uses privacy protection, which slightly reduces trustworthiness. Security posture is minimal with no visible security headers or policies, and privacy compliance is lacking due to absence of privacy or cookie policies. Overall, the site is safe, educational, and accessible but would benefit from improved transparency and security practices.

P

Private Registry Authority

sunosama.org

0

The website sunosama.org represents a niche cultural and linguistic community project focused on international choirbooks supporting languages such as Esperanto, Guosa, and Tokipona. It provides free downloadable choirbook PDFs and promotes collaboration among language communities. The site is small-scale and non-commercial, targeting enthusiasts and speakers of these constructed and minority languages. Technically, the site uses modern frontend technologies like Bootstrap and Google Fonts, hosted on Vodien infrastructure. However, it lacks advanced SEO, accessibility features, and comprehensive privacy or security policies. Security posture is minimal with no DNSSEC and no visible security headers. The WHOIS data shows privacy protection but contains a suspicious domain creation date in the future, which reduces trust. Overall, the site is safe, with no adult or malicious content detected, but lacks business transparency and compliance documentation.

F

Pharmacy online store

farmacy-houses.com

0

Farmacy-houses.com is an online pharmacy store established in 2019, offering a wide range of medications and health supplements with worldwide delivery. The website targets general consumers seeking convenient access to pharmaceutical products without the need for prescriptions. The business operates primarily as an e-commerce platform with features such as user accounts, shopping cart, and live chat support. Technically, the site is built on OpenCart CMS and utilizes common web technologies including jQuery, Bootstrap, and third-party services like Google Analytics and JivoSite chat. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and moderately trustworthy but would benefit from enhanced security and compliance measures.

J

Japan Health Center

bio-japan.net

0

Japan Health Center operates an e-commerce platform specializing in authentic Japanese medicines, vitamins, and dietary supplements. The website targets health-conscious consumers globally, offering a wide range of original Japanese health products with detailed descriptions, customer reviews, and guarantees. The business has been active since 2013 and emphasizes product authenticity and customer trust. Technically, the site is built on OpenCart with common JavaScript libraries and tracking tools, providing a moderate performance and good mobile experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC, representing areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data supports the legitimacy of the business, and no WAF or blocking mechanisms interfere with content access.

O

Otokonoko Pharmaceuticals

otkph.am

0

Otokonoko Pharmaceuticals operates as a niche e-commerce platform specializing in hormone-related pharmaceutical products, targeting consenting adults. The business model focuses on online retail with cryptocurrency payment acceptance, positioning itself in a specialized healthcare market segment. The website is built on WordPress with WooCommerce, leveraging standard e-commerce technologies and plugins such as Easy Age Verify and BTCPay Server for crypto payments. The site includes age verification overlays and adult content disclaimers to comply with legal requirements for adult products. However, the absence of privacy and cookie policies indicates compliance gaps that should be addressed. Security posture is moderate with HTTPS and reCAPTCHA implemented, but lacks HTTP security headers and formal security policies. Overall, the website is functional and professionally presented but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

The website duanin2.top currently presents no accessible content beyond an empty HTML skeleton. There is no metadata, no visible text, no forms, no contact information, and no business-related content. The domain is registered with HOSTINGER operations, UAB, with privacy protection enabled, and uses Cloudflare DNS servers. The domain age is approximately one year, consistent with a newly created or placeholder site. Due to the lack of content and contact details, the website does not provide any meaningful business information or user engagement opportunities. From a technical perspective, the site lacks any detectable technologies, scripts, or frameworks. There is no evidence of HTTPS or security headers, which are critical for secure web operations. The absence of privacy, cookie, or terms of service policies indicates non-compliance with common data protection regulations such as GDPR. No analytics or tracking mechanisms are present, suggesting minimal or no user data collection. Security posture is weak due to the absence of HTTPS and security headers, and no incident response or vulnerability disclosure information is available. The domain registration is privacy protected, which is common for small or new sites but reduces transparency. No suspicious patterns were detected, but the overall trustworthiness is low given the lack of content and business information. Overall, the website appears to be inactive or a placeholder with no substantive content or business presence. Strategic recommendations include implementing HTTPS, adding essential security headers, publishing privacy and cookie policies, providing clear contact information, and developing meaningful website content to improve trust, compliance, and user engagement.

I

InvitedToHell

pompomsoft.de

0

The website pompomsoft.de represents a personal or small-scale developer presence primarily focused on social and gaming community engagement. The site features links to social media platforms such as Telegram, GitHub, and Mastodon, and includes a 3D interactive element powered by Spline. There is no formal business description or corporate information provided, indicating an individual or hobbyist operation rather than a commercial enterprise. The technical infrastructure leverages modern frontend technologies including Svelte and Cloudflare DNS services, suggesting a moderate level of digital maturity. However, the site lacks comprehensive metadata, privacy policies, and security headers, which limits its compliance and security posture. The absence of forms or data collection mechanisms reduces privacy risks but also limits business functionality. Overall, the site is accessible and functional but basic in content and security features.

The website zacharykai.net currently serves a bot verification page employing Google reCAPTCHA invisible to prevent automated access. This indicates a security mechanism or WAF challenge blocking direct content access, limiting visibility into the actual business or service offered. The domain is newly registered in early 2024 via NameCheap without privacy protection, suggesting transparency but also a nascent online presence. No business, contact, or policy information is publicly accessible on the landing page, and no SEO or analytics technologies are detected beyond the reCAPTCHA scripts. The security posture shows basic use of CAPTCHA but lacks DNSSEC and security headers, and HTTPS status is unknown from the provided data. Overall, the site is in an early stage with minimal content and limited trust signals, resulting in a low AI score primarily due to access restrictions and lack of business information.

S

Saahil

saahild.com

0

Saahild.com is a personal website owned by an individual named Saahil, currently under redevelopment. The site primarily serves as a personal portfolio or presence with minimal content and a link to a retro version of the site. The domain is relatively new, created in 2022, and hosted via Cloudflare with modern frontend technologies such as React and Animate.css. The site lacks comprehensive business information, privacy policies, or contact details, indicating it is not a commercial enterprise but rather a personal project. Technically, the site is moderately optimized with good mobile responsiveness but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers. No analytics or tracking scripts are present, reflecting a privacy-conscious or minimalistic approach. Overall, the site is safe, with no adult or explicit content detected.

The website garnix.dev is a personal blog and content sharing platform maintained by an individual named Emilia. It primarily offers blog posts, music recommendations, and personal content, targeting a general audience interested in technology and related community topics. The site is small in scale and operates as a niche personal blog without commercial business infrastructure or formal corporate presence. Technically, the site is built with standard HTML, CSS, and JavaScript, featuring a simple but consistent design and basic mobile optimization. It uses a fetch API call to an external HTTPS endpoint for form submissions, indicating some level of modern web technology usage. However, there is no evidence of advanced frameworks, CMS, or hosting provider details. SEO and accessibility features are basic, and no structured metadata or Open Graph tags are present. From a security perspective, the site uses HTTPS for external requests but lacks visible security headers and formal security policies. The contact form is minimal and lacks CSRF protection or input validation beyond a non-empty check. No privacy, cookie, or terms of service policies are published, which limits compliance with GDPR and other privacy regulations. The domain uses WHOIS privacy protection, which is common for personal sites and justified here. No suspicious or malicious indicators were found. Overall, the site is safe and trustworthy for general audiences but would benefit from improved security practices, privacy disclosures, and business contact information to enhance credibility and compliance. The AI score reflects a functional but basic personal website with room for improvement in security and privacy compliance.

ProjNULL is a small team of IT students focused on learning programming and experimenting with projects, primarily participating in hackathons. The website serves as a hub for their activities, showcasing their projects and blog content. The business model is educational and experimental, targeting fellow students and programming enthusiasts. The site is hosted by WEDOS Internet, a reputable registrar and hosting provider. Technically, the site uses standard web technologies such as HTML5, CSS3, and JavaScript, with moderate performance and good mobile optimization. However, it lacks advanced frameworks or CMS platforms and has basic SEO and accessibility features. Security posture is minimal, with no detected security headers or published security policies, and no contact information for incident response. Privacy and cookie policies are absent, indicating low privacy compliance. Overall, the site is safe for general audiences and does not contain adult or questionable content.

N

Nu-Pure Beverages

nu-pure.com.au

0

Nu-Pure Beverages is a medium-sized Australian family-owned company specializing in manufacturing 100% Australian-made spring water and related beverages. Established in 2005, the company positions itself as an expert in natural hydration with a strong commitment to quality, sustainability, and innovation. Their product portfolio includes spring water, private label beverages, lightly sparkling water, ultra purified drinking water, and alkaline water. The company maintains partnerships with prominent Australian sporting organizations, enhancing its market presence and brand trust. Technically, the website is built on a modern WordPress platform using WooCommerce for e-commerce capabilities and Elementor for design. It employs popular plugins such as Slider Revolution and integrates tracking and marketing tools like Google Analytics, Google Tag Manager, and Facebook Pixel. Hosting appears to be via Microsoft Azure DNS services. The site demonstrates good mobile optimization and SEO practices but lacks some accessibility features. From a security perspective, the site uses HTTPS and includes reCAPTCHA on forms, indicating basic security hygiene. However, it lacks visible security headers and published security or incident response policies, representing areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable compliance gap. Overall, Nu-Pure Beverages presents a professional and trustworthy online presence with solid business credibility. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance their security posture and regulatory adherence.

X

Xgenesis Management Pty Ltd

crowneplazasurfersparadise.com.au

0

Crowne Plaza Surfers Paradise is a well-established hospitality business offering premium accommodation, dining, event, and wedding services on the Gold Coast, Australia. The website reflects a professional brand presence under the InterContinental Hotels Group umbrella, targeting leisure and business travelers. The site provides comprehensive information about rooms, offers, and facilities, supported by clear contact details and social media integration. Technically, the website is built on WordPress with modern plugins and tracking tools, hosted behind Cloudflare DNS services. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers and privacy compliance mechanisms are lacking. Overall, the site demonstrates a solid business and technical foundation with room for improvement in security and privacy transparency.

K

KitsuDev

kitsunes.dev

0

KitsuDev is a small-scale technology service provider specializing in hosting Forgejo instances and offering free static page hosting through its KitsuPage service. The website targets developers and small project owners who seek free and safe hosting solutions. The business model is primarily donation-supported, emphasizing community and small-scale operations. The site branding is consistent and content quality is good, focusing on clear messaging and developer-centric services. Technically, the website is built on Forgejo, a modern Git forge platform, with standard web technologies including JavaScript, HTML5, and CSS3. The site performs well with fast loading times and good mobile optimization. Accessibility is basic but functional. SEO practices are present but could be enhanced. The infrastructure appears modern and well-maintained, though hosting provider details are not explicitly disclosed. From a security perspective, the site enforces HTTPS and implements CSRF tokens, indicating a baseline security posture. However, it lacks explicit security headers such as Content Security Policy and HSTS, and does not provide privacy or cookie policies, which are important for compliance and user trust. No contact information or incident response channels are provided, limiting transparency. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a moderate risk profile with good technical foundations but gaps in privacy compliance and security best practices. Strategic improvements in policy publication, security headers, and contact transparency would enhance trust and compliance. The domain uses privacy protection, which is justified given the small-scale nature of the business. No suspicious patterns were found in WHOIS data or website content.

MindnBody is a newly established e-commerce website specializing in the sale of pharmaceutical and health-related products targeted at adult customers. The business operates an online retail model offering products such as Casodex and Estradiol tablets, with a clear age restriction policy to ensure compliance with legal purchase age requirements. The website is designed with modern web technologies including jQuery, Bootstrap, and Cleave.js, providing a basic but functional user experience with mobile optimization and a simple navigation structure. From a security perspective, the site uses HTTPS and includes an age disclaimer modal, but lacks critical security headers and DNSSEC, which reduces its overall security posture. There are no visible privacy or cookie policies, nor contact information or incident response details, which are significant compliance and trust gaps. The domain is very new and uses privacy protection for WHOIS data, which is reasonable for this business type but limits transparency. Overall, the website demonstrates a basic level of technical implementation and business credibility but requires improvements in privacy compliance, security best practices, and transparency to enhance trustworthiness and regulatory adherence. The risk level is moderate due to the absence of key policies and security features, and strategic enhancements are recommended to mitigate these gaps.

The website at fedi.gay is a minimal, non-commercial site containing only a literary poem themed on Elven lore from Tolkien's universe. There is no business description, contact information, or commercial content. The domain is registered to Private by Design, LLC, a US-based entity, but the website content does not reflect any business operations or services. The domain WHOIS data is suspicious due to a future creation date, which raises concerns about legitimacy. Technically, the site uses basic HTML and CSS with no advanced frameworks or scripts detected. There are no privacy, cookie, or terms of service policies, and no contact or incident response information is provided. Security posture is weak with no DNSSEC, no security headers, and unknown SSL status. Overall, the site appears to be a placeholder or personal page rather than a professional business site.

S

Stalwart Management

chpu.eu

0

The website 'Stalwart Management' appears to be a minimalistic login portal with no publicly available business description or contact information. The site uses modern web technologies such as WebAssembly and JavaScript ES modules, indicating a contemporary technical infrastructure. However, the lack of visible content beyond the login form limits the ability to fully assess the business model or market position. Security posture is moderate with HTTPS assumed but no explicit security headers or policies detected. Privacy compliance is lacking due to absence of privacy and cookie policies. Overall, the site presents a basic professional appearance but requires enhancements in transparency, security, and compliance to improve trustworthiness and user confidence.

P

Private by Design, LLC

symtrkl.gay

0

The website symtrkl.gay is a personal portfolio and creative hub for Jennifer (SymTrkl), a transfeminine artist and writer based in the United States. The site showcases her work in illustration, web design, FPV drone piloting, and writing, with links to various social media and creative platforms. The business model centers on personal branding, commissions, and community support through platforms like Ko-Fi and Patreon. The site targets a general audience with a mature content segment including erotica and adult social media links. Technically, the site is built with standard HTML, CSS, and JavaScript, hosted via Porkbun with domain privacy protection. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. No CMS or major frameworks are detected, indicating a custom or static site approach. From a security perspective, the domain uses registrar locks to prevent unauthorized changes but lacks DNSSEC and security headers. There is no visible HTTPS enforcement information, no privacy or cookie policies, and no incident response contacts. The site does not use analytics or tracking scripts, minimizing privacy risks but also limiting business intelligence. Overall, the site is legitimate and consistent with a personal creative portfolio but would benefit from improved security practices, privacy compliance, and clearer contact information to enhance trust and professionalism.

S

🌸 Lily's Moon Garden 🌸

sapphicyearn.ing

0

The website 'Lily's Moon Garden' is a personal hobby site currently under construction, primarily serving as a stable host for a small 88x31 button image. The site is minimalistic with basic HTML and CSS, no dynamic content or forms, and no evident business operations. The owner appears to be an individual named Lily, with a personal Mastodon social link provided. The site content is safe, non-commercial, and targeted at a general audience. Technically, the site uses simple static web technologies with no detected CMS or advanced frameworks. There is no evidence of HTTPS or security headers, and no privacy or cookie policies are present, indicating a low level of privacy compliance and security posture. The domain WHOIS is privacy protected, which is reasonable for a personal site. Overall, the site has a basic design and limited content, with room for improvement in security and compliance.

The website floof.gay is a personal site belonging to an individual named Olivia, serving as a small corner of the internet to share personal interests, social media presence, and blog content. The site is positioned as a personal brand rather than a commercial business, targeting a general audience interested in the author's activities and social links. The site leverages modern web technologies such as Dev.css and web fonts to provide a clean and responsive user experience. The technical infrastructure is straightforward, hosted likely via NameCheap with privacy-protected WHOIS registration, reflecting a typical personal website setup. From a security perspective, the site uses HTTPS and has domain transfer protections enabled, but lacks DNSSEC and security headers, which are recommended for improved security posture. There are no privacy or cookie policies present, and no contact information or forms for data collection, indicating minimal compliance with privacy regulations. No analytics or advertising scripts were detected, suggesting limited tracking and data collection. Overall, the site is safe and appropriate for general audiences, with no adult or questionable content detected. The domain is recently registered and privacy protected, consistent with a personal site. The security posture is moderate but could be improved with additional headers and policies. The site’s business credibility is limited due to its personal nature and lack of formal business information. Strategic recommendations include adding privacy and cookie policies, implementing security headers, enabling DNSSEC, and considering a security.txt file for vulnerability disclosure to enhance trust and compliance.

KitsuPage is a small technology service offering free static hosting for user repositories, leveraging Git branches to serve content automatically. The service targets developers and users seeking simple, no-cost static site hosting with optional custom domain support. The website is minimalistic, providing essential information about usage and configuration but lacks comprehensive business or legal documentation. Technically, the site uses basic HTML and CSS without advanced frameworks or CMS, and no analytics or advertising scripts are present, indicating a lightweight and privacy-conscious approach. Security posture is limited with no visible security headers or privacy policies, and no contact information is provided except for an abuse report link. The domain uses privacy protection, which is typical for small tech projects, and no suspicious WHOIS patterns were detected. Overall, the site is functional but basic, with room for improvement in security, compliance, and user engagement.

T

Toki Pona (official site)

tokipona.org

0

The website tokipona.org serves as the official hub for the Toki Pona constructed language, created by Sonja Lang in 2001. It offers comprehensive educational resources including books, dictionaries, community links, and multimedia content. The site targets language learners, conlang enthusiasts, and educators globally, positioning itself as the authoritative source for Toki Pona with recognition from ISO 639-3 and university usage. The business model is primarily informational with commercial elements through book and merchandise sales. Technically, the site employs modern frontend technologies such as Bootstrap 5, jQuery, Chart.js, and Google Fonts, hosted by Vodien Internet Solutions. Performance and mobile optimization are good, though accessibility and SEO are basic. The site uses HTTPS and Google Analytics for tracking but lacks advanced security headers and privacy/cookie policies, indicating room for compliance improvement. Security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the absence of security headers and vulnerability disclosure policies are notable gaps. The domain is well-established since 2001, registered with a reputable registrar, and shows no suspicious patterns, supporting legitimacy. Overall, the site is professional, content-rich, and trustworthy but should enhance privacy compliance and security best practices to improve user trust and regulatory adherence.

The National Redress Scheme website is an official Australian government platform dedicated to providing support and redress to survivors of institutional child sexual abuse. It serves as a comprehensive resource offering application guidance, institutional information, and emergency support contacts. The site is well-positioned as a trusted government service with clear branding and authoritative content tailored to its target audience. Technically, the website is built on Drupal 10 and hosted on the GovCMS platform, reflecting a modern and government-compliant infrastructure. It integrates Google Analytics and Tag Manager for user insights and employs accessibility features such as ReadSpeaker. The site is mobile-optimized and demonstrates good SEO and navigation clarity. From a security perspective, the site uses HTTPS and anonymizes IP addresses in analytics, but lacks visible security headers and explicit cookie consent mechanisms. WHOIS data is unavailable due to privacy policies, but the .gov.au domain and consistent government branding strongly support legitimacy. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in privacy compliance and security headers would enhance its security posture and user trust.

meow.company appears to be a small technology-focused website or personal project branded as "pancakes' corner of the internet." The site provides links to related services such as AodeRelay, Forgejo, and Iceshrimp.NET, indicating a community or developer-oriented ecosystem. The website is hosted on Debian GNU/Linux 12 in Melbourne, Australia, consistent with the domain registration data. The content is minimal but functional, with some ASCII art and basic system information displayed. There is no evidence of commercial activity or extensive business operations. The domain is newly registered in 2024, matching the apparent small scale and recent launch of the site.

The Starlight Network is a small, privacy-focused technology and community project operated by two individuals, Alexia and Nelson. The website serves as a platform for their blog posts, community engagement, and hosting of services that emphasize privacy, decentralization, and usability. The business model is community-supported, relying on donations via Liberapay, and targets technology enthusiasts interested in privacy and social interaction. The domain is newly registered in 2025 with protections to prevent unauthorized transfers or deletions, aligning with the privacy-centric ethos of the project. Technically, the website is built with basic HTML and CSS, with no detected CMS or advanced frameworks. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. No analytics or tracking scripts are present, indicating a minimal data collection approach. The hosting provider is not explicitly identified, but the domain registrar is Porkbun, known for privacy-friendly services. From a security perspective, the site lacks DNSSEC, security headers, and visible HTTPS enforcement details, which lowers its security posture. There is no published security policy or incident response information, and no cookie or privacy consent mechanisms are implemented. However, domain registration protections and the absence of suspicious content or vulnerabilities suggest a moderate security maturity level. Overall, the website is safe for general audiences, with no adult or questionable content detected. The site is professionally presented but could benefit from enhanced security measures, privacy compliance improvements, and clearer contact information to increase trust and credibility.

C

CATRAXX

catraxx.de

0

The website catraxx.de is a personal portfolio and hobbyist site belonging to an individual frontend developer and musician known as catraxx. The site showcases personal projects, music mixes, and shares insights into the author's development journey and interests. It targets frontend developers, musicians, and members of the Fediverse community, positioning itself as a niche personal brand with a focus on technology and electronic music. The business model is non-commercial, primarily serving as a creative outlet and community engagement platform. Technically, the site is built using modern static site generation technology (11ty), with a clean HTML5 and CSS3 codebase. Hosting appears to be with a German provider (kasserver.com), and the site is optimized for fast performance and good mobile experience. SEO and accessibility are basic but adequate. No CMS or analytics tools are detected, indicating a lightweight and privacy-conscious setup. From a security perspective, the site uses HTTPS as inferred from the Open Graph URL, but no explicit security headers are detected. There are no forms or data collection points, reducing attack surface. However, the absence of privacy and cookie policies, as well as lack of verified contact information, represents compliance and trust gaps. No vulnerabilities or suspicious patterns are found, but security best practices could be improved. Overall, the site is safe, professional, and trustworthy for its intended personal and community use. The main risks relate to privacy compliance and security hardening. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and providing verified contact details to enhance credibility and compliance.

The website 'mira's site' hosted on twoneis.site is a minimal personal presence site with a friendly and informal tone. It primarily serves as a placeholder with links to social platforms such as the Fediverse and Matrix, and provides a contact email. The site lacks substantive business content, policies, or commercial services, indicating a small-scale personal or community-oriented project. The domain WHOIS data is inconsistent, showing a future creation date and a registrant organization unrelated to the website content, which raises legitimacy concerns. Technically, the site is built with basic HTML and CSS, hosted via Porkbun, LLC. There is no evidence of advanced frameworks, CMS, or analytics tools. The site appears accessible without WAF or blocking mechanisms but lacks HTTPS confirmation and security headers, which weakens its security posture. Privacy and cookie policies are absent, and no forms or data collection mechanisms are present, limiting privacy compliance. Security-wise, the absence of HTTPS and security headers, combined with suspicious WHOIS data, lowers the trustworthiness and security score. No vulnerabilities or malware indicators were detected, but the site would benefit from implementing standard security best practices and compliance policies. Overall, the site is low risk but also low maturity in business and security terms. Strategic improvements in security, privacy compliance, and domain legitimacy verification are recommended to enhance trust and professionalism.

Chloe's Website is a personal and community-focused site that provides links to a blog, gallery, donation page, and visitor information. The site also features numerous external links to related personal and community websites, many of which reflect LGBTQ+ and transgender/non-binary themes. The website appears to serve as a hub for personal expression and community engagement rather than a commercial business. Technically, the site is built with straightforward HTML and CSS, validated by W3C badges, and hosted under a domain registered with Porkbun, LLC. However, the WHOIS data shows a suspicious future creation date, which raises concerns about the accuracy or legitimacy of the domain registration information. Security posture is minimal, with no detected security headers or privacy policies, and no analytics or tracking services are present, indicating a privacy-conscious but basic security setup. Overall, the site is safe for general audiences and provides a good user experience with clear navigation and consistent branding, but lacks formal business and compliance information.

A

Amy

amy.rip

0

Amy.rip is a personal website representing an individual named Amy, who identifies as a programmer and content creator sharing humorous and personal content. The site includes a link tree to a Git repository and integrates Discord OAuth2 for user reviews, indicating some community engagement. The website is small-scale, with a niche audience primarily composed of friends or followers interested in Amy's personal projects and content. Technically, the site uses modern JavaScript modules and React framework, suggesting a contemporary development approach, though performance and accessibility are basic. Security posture is minimal with no detected security headers or privacy policies, and no contact information is provided, limiting trust and compliance. The domain is privacy protected, which aligns with the personal nature of the site. Overall, the site is functional but lacks professional business features and security best practices.

S

Sun Run

sunrun.com.au

0

Sun Run is a community-focused event website promoting the annual Sun Run race presented by Bioglan in Northern Beaches, Australia. The site serves as an information hub for participants and supporters, providing event details, fundraising opportunities, race results, and partner acknowledgments. The business model centers on event organization and charity fundraising, targeting runners and local community members. The website demonstrates a good level of digital maturity with modern web technologies such as Webflow CMS, Google Tag Manager, and Facebook Pixel integrated for analytics and marketing purposes. From a security perspective, the website benefits from HTTPS encryption and does not expose sensitive data in its HTML content. However, it lacks several security headers and visible privacy or cookie policies, which are important for compliance and user trust. The WHOIS data is minimal and privacy-protected, which is common for community event sites but limits transparency. No security incidents or vulnerabilities were detected in the content or scripts. Overall, the website is well-designed, user-friendly, and safe for general audiences. It effectively supports its business goals but should improve privacy compliance and security best practices to enhance trust and regulatory adherence.

M

Minimalissimo

minimalissimo.com

0

Minimalissimo is an independent digital magazine and creative studio dedicated to minimal design, covering architecture, art, interiors, furniture, lighting, and product design. Established in 2009, it has a niche market position with a loyal audience of design enthusiasts and professionals. The website offers curated editorial content, a newsletter, and an online shop, supported by active social media channels. Technically, the site uses modern web technologies including Google Tag Manager and infinite scroll, hosted on Hover's infrastructure. The site is mobile optimized with good SEO and accessibility basics. Security posture is solid with HTTPS and domain transfer protections, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. No direct company emails or phone numbers are published, relying on contact forms and social media for communication. Overall, the site is professional, trustworthy, and content-rich, but could improve in privacy and security transparency.

099 Supply is a small Canadian e-commerce business specializing in digital tools for creatives, offering Photoshop mockups and Framer components to enhance design workflows. The website is professionally designed with a clear focus on creative professionals and digital designers, providing both free and premium digital assets. The platform leverages modern technologies including React, Next.js, and Ecwid for e-commerce functionality, hosted on DigitalOcean with CDN support for performance optimization. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and domain transfer locks, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is basic with a privacy policy present but lacking explicit GDPR adherence and no cookie consent mechanism. Contact information is minimal with no direct emails or phone numbers published, which may impact user trust. Overall, the site is legitimate and functional but could improve in privacy and security transparency.

Geekring.net is a niche, noncommercial hobby project launched in 2020 that hosts a curated webring of geeky, retro, and offbeat websites. It targets enthusiasts of old-school internet culture and geeks who appreciate quirky and personal websites. The site offers navigation widgets, redirect services, and an admin panel for member site management. The business model is purely community-driven without any monetization or commercial intent. Technically, the website uses simple HTML, CSS, and minimal JavaScript, with hosting and DNS services provided by CSL Computer Service Langenbach GmbH and one.com respectively. The site supports both HTTP and HTTPS, with HTTP as default to accommodate older devices. Performance and mobile optimization are basic, reflecting the retro ethos. No CMS or advanced frameworks are detected, and accessibility and SEO optimizations are minimal. From a security perspective, the site lacks DNSSEC and important security headers, and defaults to HTTP which may expose users to downgrade risks. However, it claims no logging, no cookies, and no client-side tracking, which aligns with its privacy-conscious stance. The absence of privacy and cookie policies beyond a basic statement and no incident response or security policies indicate room for improvement in compliance and security maturity. Overall, geekring.net is a trustworthy, small-scale community project with a clear noncommercial focus and minimal security risks. Strategic improvements in security headers, HTTPS enforcement, and formal privacy documentation would enhance its security posture and user trust.

The website dinhe.net serves as a personal and consulting project showcase for Aria Stewart. It is a minimalistic site with basic content primarily describing the nature of the site and a simple privacy policy related to payment processing via Stripe. The business model appears to be personal consulting and project presentation, targeting a general audience. The domain is well-established, created in 2007, and registered with Tucows Domains Inc., indicating a stable and legitimate presence. From a technical perspective, the site lacks advanced technologies, frameworks, or CMS platforms. There is no evidence of analytics, advertising, or tracking scripts, which aligns with the stated privacy approach. The site is basic in design and functionality, with moderate performance and limited mobile optimization. Security configurations such as DNSSEC and security headers are absent, and HTTPS status is unknown but recommended. Security posture is minimal with no explicit security policies, incident response contacts, or certifications. The privacy policy is basic and does not explicitly address GDPR compliance. No forms or contact information are provided, limiting user engagement and support options. No vulnerabilities or suspicious elements were detected, but improvements in security headers and HTTPS enforcement are advised. Overall, the site is low risk with safe content and a straightforward purpose. Strategic recommendations include enhancing security configurations, publishing comprehensive privacy and cookie policies, and providing clear contact information to improve trust and compliance.

P

Rose Garden

pinkro.se

0

The website pinkro.se is a personal portfolio site for Rose, an 18-year-old programmer specializing in operating system development and systems programming. The site highlights Rose's personal projects, open source contributions, and provides multiple contact methods including email, XMPP, and IRC. The content is well structured and targeted towards the programming and open source community. The site is hosted with Cloudflare DNS and uses standard web technologies such as HTML, CSS, and JavaScript without any detected CMS or heavy frameworks. From a technical perspective, the website is well implemented with good design quality, mobile optimization, and interactive UI elements. However, it lacks advanced security headers and DNSSEC, and no privacy or cookie policies are present, which impacts compliance. The WHOIS data shows an anomalous future domain creation date, which reduces trust in the domain registration data but does not reflect on the website content quality. Security posture is moderate with no visible vulnerabilities or exposed sensitive data, but improvements are recommended in DNS security, security headers, and privacy compliance. There is no evidence of tracking, advertising, or analytics services, indicating a privacy-conscious approach. Overall, the site is safe, professional, and credible as a personal portfolio, but domain registration inconsistencies and lack of compliance documentation reduce the overall trust score.

D

...that moves the sun and stars.

detondev.com

0

The website detondev.com is a minimalistic landing page with very limited content, primarily consisting of a single clickable area linking to an internal page. The site lacks any explicit business description, contact information, or policy documents, which limits its utility for visitors and reduces trustworthiness. The domain is registered with Porkbun LLC since March 2022, indicating a relatively new but legitimate registration. The technical infrastructure is basic, with no detected CMS, frameworks, or analytics tools, and no visible security headers or HTTPS status provided. The site does not employ any privacy or cookie policies, nor does it provide terms of service or incident response information. Overall, the digital maturity of the site is low, with minimal SEO and accessibility features.

P

Privacy service provided by Withheld for Privacy ehf

eepy.zone

0

eepy.zone is a recently registered domain (October 2023) currently serving as a parked domain with advertising content primarily from Google Adsense and Bodis. The website lacks any clear business description, contact information, or services, indicating it is not an active commercial or organizational site. The technical infrastructure relies on basic HTML, CSS, and JavaScript with external ad scripts and DNS hosting by ParkLogic. No CMS or advanced frameworks are detected. Security posture is minimal with no DNSSEC, no visible HTTPS enforcement, and absence of security headers. Privacy compliance is limited to a basic privacy policy page without cookie consent mechanisms. Overall, the site presents low business credibility and trustworthiness due to its placeholder nature and privacy-protected WHOIS registration.

The website represents the Republic of China (Taiwan) with patriotic content including the national flag and national anthem audio. It does not provide commercial business descriptions or services and appears to be a minimalistic governmental or cultural site. The technical infrastructure is very basic, using legacy encoding (big5) and minimal JavaScript. There is no evidence of modern CMS, frameworks, or hosting details. Security posture is weak with no HTTPS enforcement, no security headers, and external scripts loaded insecurely. Privacy and compliance policies are absent. Overall, the site is low complexity and low risk but lacks modern security and privacy best practices.

The website immagnify.com is currently inaccessible beyond a bot verification challenge page that uses Google reCAPTCHA invisible widget to verify visitors. This indicates a security mechanism is in place to prevent automated access, but it also blocks content analysis. The WHOIS data shows the domain was registered in 2019 via GoDaddy and uses Microsoft Azure DNS hosting, which is consistent with a legitimate business setup. However, no business or marketing content, contact information, or compliance policies are visible on the landing page. The technical infrastructure includes modern bot mitigation but lacks DNSSEC and visible security headers. Overall, the site’s security posture shows some best practices but is limited by lack of visible content and policies.

The website p3medialinkdev.com currently hosts an extremely minimal web presence, displaying only a subdomain text with no additional content, metadata, or interactive elements. The domain is registered with GoDaddy.com, LLC since 2017, indicating a stable registration history but the site itself lacks substantive business or branding information. There are no privacy, cookie, or terms of service policies present, nor any contact or security-related disclosures. Technically, the site does not reveal any technologies, frameworks, or CMS usage, and no security headers or HTTPS status is provided, suggesting a lack of modern web security practices. Overall, the site is not optimized for SEO, accessibility, or user engagement.

Exact Audio Copy is a specialized software provider focused on accurate audio CD extraction using standard CD/DVD-ROM drives. The website targets audio enthusiasts and users requiring precise audio ripping solutions. It operates on a freeware business model for non-commercial use and maintains a niche market position. The site is built on WordPress 4.3.1 with integrated Google AdSense advertising and basic GDPR-compliant privacy and cookie policies. Technical infrastructure is moderate with room for modernization and security improvements. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response policies. Overall, the website is safe, professional, and trustworthy with no adult or questionable content detected.

P

Private by Design, LLC

osp.gay

0

osp.gay is a personal website representing Woodrow Caldera, featuring personal content such as a blog, webring participation, and a guestbook. The site targets a general audience interested in community and personal expression rather than commercial services. The domain is recently registered in 2023 with privacy protection, consistent with a personal site. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript, with hosting DNS managed by Hurricane Electric. External references to Neocities and community webrings indicate a niche community focus. Security posture is limited, with no visible HTTPS or security headers in the provided data, and no privacy or cookie policies published. No contact information or incident response details are available, limiting trust and compliance. Overall, the site is safe and suitable for general audiences but lacks professional security and privacy practices.

P

Private by Design, LLC

proot.party

0

The website proot.party is a personal site belonging to an individual known as strongsand, a high school student interested in cybersecurity, furry art, and gaming. The site is currently incomplete and serves primarily as a personal expression platform with links to related community sites. The domain is newly registered in late 2024, consistent with the site's early development stage. The technical infrastructure is basic, relying on static HTML and CSS, hosted likely via Porkbun's DNS services. There is no evidence of advanced CMS or frameworks, and no analytics or tracking technologies are present. From a security perspective, the site lacks HTTPS confirmation in the provided data, security headers, privacy policies, and contact information for incident response. The domain registration is consistent and legitimate, with no privacy protection that would obscure ownership, which is appropriate for a personal site. No WAF or blocking mechanisms were detected, and the content is accessible without restrictions. The site does not contain adult or explicit content and is safe for general audiences. Overall, the site scores moderately on content and business credibility but scores low on privacy compliance and security posture due to missing policies and security controls. The site would benefit from implementing HTTPS, security headers, privacy and cookie policies, and providing contact information to improve trust and compliance.

C

Alexia's Webplace

cyrneko.eu

0

The website 'Alexia's Webplace' serves as a personal online presence for an individual named Alexia, who is active in various online communities such as the Fediverse, Bluesky, and open source projects. The site provides contact information primarily through modern decentralized communication platforms like Signal, XMPP, and Matrix, and offers links to code repositories and a blog. The business model is personal and community-focused, relying on donations via Ko-Fi, GitHub Sponsors, and Monero wallet contributions. The website targets a general audience interested in social and open-source communities. Technically, the site is built with standard HTML5, CSS3, and JavaScript, using modern web fonts and CSS variables for styling. The site appears to be hosted under a domain registered with Porkbun LLC, a reputable registrar. The site is moderately optimized for mobile and accessibility, though no advanced frameworks or CMS are detected. Performance is moderate with no evident analytics or tracking scripts, indicating a privacy-conscious approach. From a security perspective, the site lacks explicit security headers and does not provide privacy or cookie policies, which limits compliance with GDPR and other privacy regulations. No forms collect sensitive data, reducing risk exposure. There is no vulnerability disclosure or incident response information, which could be improved to enhance transparency and trust. The domain registration data is consistent with the website content, and no suspicious patterns are detected. Overall, the website is safe, well-structured, and serves its purpose as a personal web presence. However, it would benefit from adding privacy and cookie policies, security headers, and incident response information to improve compliance and security posture.