Security Directory

The website annwfn.net serves as a personal placeholder domain primarily used by the individual Bastian Rieck for private email communication and hosting personal and friends' websites. The site content is minimal and non-commercial, focusing on providing information about the domain's purpose and links to related personal projects. The domain is well aged, registered since 2004, and the registrant information aligns with the website content, indicating a legitimate personal use case. From a technical perspective, the site uses basic HTML and CSS without advanced frameworks or CMS. Hosting and DNS are managed through Dynadot and messagingengine.com respectively, suggesting a stable but simple infrastructure. The site lacks modern security headers and does not implement DNSSEC, which could be improved. No analytics or advertising tools are detected, reflecting a privacy-conscious approach but also limiting insights into user engagement. Security posture is basic with no evident vulnerabilities or exposed sensitive data, but the absence of security headers and policies reduces the overall security maturity. Privacy compliance is minimal, with no privacy or cookie policies present, which is typical for a personal site but would be insufficient for commercial operations. Overall, the site is safe, with no adult or questionable content, and accessible without WAF or blocking mechanisms. The overall risk is low given the personal nature and limited scope of the site, but improvements in security headers, DNSSEC, and privacy disclosures would enhance trust and compliance. Strategic recommendations include enabling DNSSEC, publishing privacy and cookie policies, and implementing basic security headers to improve the security posture and user trust.

The website selic.re is a personal portfolio and project showcase for an individual developer and artist known as Selicre. The site highlights the owner's skills in software development, particularly in Rust, as well as graphic design and generative art. The target audience includes developers, learners, and art enthusiasts. The business model is primarily personal branding and sharing of projects and contact via social media. The domain is registered since 2019 and hosted on Hetzner infrastructure, indicating a stable and consistent technical setup. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and SVG for visual effects. There is no evidence of a CMS or third-party frameworks. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. No analytics or advertising scripts are present, indicating minimal user tracking. From a security perspective, the site lacks published privacy, cookie, or security policies, and no security headers were detected. There are no forms or data collection points, reducing attack surface but also limiting user interaction. The WHOIS data is consistent and transparent, with no privacy protection or suspicious patterns. Overall, the security posture is basic but without critical vulnerabilities detected. The overall risk is low given the personal nature of the site and lack of sensitive data handling. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and providing direct contact information for security or business inquiries to enhance trust and compliance.

P

Privacy service provided by Withheld for Privacy ehf

deerz.one

0

The website deerz.one is a personal site operated by an individual known as ida deerz, focusing on creative outputs such as music, blog posts, and technical resources. The site serves a niche audience interested in music production, web development, and personal insights. The business model is primarily content sharing and community engagement without commercial sales directly on the site. The domain is relatively new, registered in April 2024, and uses privacy protection services, which aligns with the personal nature of the site. Technically, the site is built on a custom content management system called Deer Text Format, utilizing standard web technologies including HTML, CSS, JavaScript, and PHP. Hosting is provided by DreamHost, and the site is served over HTTPS with a moderate performance profile. Mobile optimization and accessibility are basic but functional. SEO practices are minimal but present. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers such as Content-Security-Policy. There are no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies, as well as incident response information, indicates room for improvement in compliance and security posture. Overall, the site is safe, trustworthy, and well-maintained for a personal project, but it lacks formal privacy and security documentation. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing incident response contacts to enhance trust and compliance.

S

stage7

stage7.net

0

Stage7.net is a personal website operated by an individual known as stage7, a Spain-based web developer and part-time demoscener. The site serves as a portfolio and blog sharing personal interests including demoscene productions, music, downloads, and zines. The website targets a niche audience interested in demoscene culture and related hobbies. The business model is primarily personal content sharing without commercial transactions or services. Technically, the site is lightweight, JavaScript-free, and hosted by DreamHost, LLC. It uses basic HTML5 and CSS3 technologies with no detected CMS or advanced frameworks. The site is mobile-optimized at a basic level and features good SEO practices through meta tags and Open Graph data. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. No cookie or tracking mechanisms are present, aligning with the site's privacy-conscious design. No formal privacy compliance beyond a basic privacy policy is evident. Overall, the site is trustworthy and professional for a personal project but could improve security and compliance documentation. Recommendations include enabling DNSSEC, adding security headers, and implementing cookie consent if cookies are introduced.

The website karx.xyz is a personal portfolio site belonging to a computer science student at the University of Texas at Austin. It highlights the individual's skills in programming languages such as Rust, Python, Java, and C, as well as interests in Linux server administration and Docker. The site serves primarily as a showcase for personal projects and professional profiles, targeting technology enthusiasts, potential collaborators, and recruiters. The business model is personal branding and project demonstration, with no commercial transactions or services offered directly on the site. Technically, the site uses modern web technologies including ES modules and the flamethrower-router JavaScript framework to enable smooth page transitions. The hosting is inferred to be via Namecheap, consistent with the domain registrar information. The site is mobile optimized and has a clean, simple design with good navigation clarity. However, SEO and accessibility features are basic, and no CMS or analytics tools are detected. From a security perspective, the site uses HTTPS but lacks advanced security headers and policies such as Content-Security-Policy or X-Frame-Options. There are no privacy or cookie policies, and no incident response or vulnerability disclosure information is provided. The domain is privacy protected, which is reasonable for a personal site, and no suspicious WHOIS patterns are found. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk assessment is low given the non-commercial nature and limited data collection. Strategic recommendations include implementing privacy and cookie policies, adding security headers, enabling DNSSEC, and providing vulnerability disclosure information to enhance trust and compliance.

C4TG1RL5 is a small, community-driven network project operated by two students, focused on providing various network tools and services for the dn42 network. Their offerings include web-based looking glasses, wikis, IP information services, and WHOIS daemons, primarily developed in Rust and hosted with some Cloudflare DNS infrastructure. The website content is technical and targeted at a niche audience of network enthusiasts and dn42 participants. The domain registration is recent but consistent with the stated founding year and project scope, with transparent WHOIS data and no privacy protection. Technically, the site uses modern technologies such as Rust and Zola, with Forgejo for git hosting. Performance and mobile optimization are moderate to basic, with room for improvement in accessibility and SEO. Security posture is average; while HTTPS is presumably enabled (not explicitly stated), no security headers are detected and DNSSEC is not enabled, representing minor security gaps. Privacy compliance is low, with no privacy or cookie policies present. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy within its niche but lacks formal security and privacy policies. Recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and improving accessibility and SEO to enhance user experience and compliance.

N

alex's site

nim.cx

0

The website nim.cx is a personal site operated by an individual named Alex, focusing on programming-related blog posts and project documentation. It serves as a personal portfolio and content hub rather than a commercial business. The site is built using custom Node.js CGI scripts and a self-developed Markdown-like parser, indicating a technically proficient but small-scale operation. The domain is newly registered in early 2024, consistent with the site's content and stated timeline. From a technical perspective, the site uses a minimalistic and custom-built infrastructure without reliance on common CMS platforms. The hosting and DNS are managed through reputable providers, but the lack of DNSSEC and security headers suggests room for improvement in security hardening. Performance is moderate, with some technical debt due to synchronous CGI scripts. Security posture is basic with HTTPS enabled but missing important security headers and no formal privacy or cookie policies. No contact or incident response information is provided, limiting trust and compliance maturity. The site does not employ analytics or advertising, reducing privacy risks but also limiting business insights. Overall, the site is safe and suitable for general audiences, with no adult or questionable content. The domain registration and website content are consistent and legitimate, but the site would benefit from enhanced security practices, privacy compliance, and contact transparency to improve trustworthiness and professional posture.

B

Besties

besties.house

0

Besties is a small, community-driven collective focused on providing safe and inclusive spaces for queer individuals to engage in software development and online socialization. Their key offerings include open source projects such as git.gay, a Git forge, and pages.gay, a static website hosting platform, alongside a Mastodon social server. The organization emphasizes openness, inclusivity, and community support, targeting queer developers and newcomers to development. Technically, the website is built using modern frameworks like SvelteKit and is hosted via Cloudflare, ensuring good performance and security basics such as HTTPS. The site is mobile-optimized and presents a consistent, professional design. However, some technical improvements are possible, including enabling DNSSEC and adding security headers. From a security perspective, the site enforces HTTPS and uses domain transfer protection but lacks published privacy policies, cookie consent mechanisms, and incident response or vulnerability disclosure information. No security headers were detected, and DNSSEC is not enabled, representing areas for improvement. No critical vulnerabilities or suspicious patterns were found, and the domain registration is transparent and consistent with the business. Overall, Besties presents a trustworthy and well-maintained community platform with room to enhance privacy compliance and security posture. Strategic improvements in policy publication and security headers would strengthen user trust and regulatory compliance.

The website cqql.site is a personal technical blog operated by an individual or small entity registered as Njalla Okta LLC in Saint Kitts and Nevis. The site focuses on technology-related content including hacking tutorials, generative art, CTF writeups, and queer/trans community resources. It serves a niche audience of technology enthusiasts and members of the queer/trans community interested in technical topics. The business model is content publishing and community engagement without evident commercial transactions. The domain is newly registered in May 2024 with privacy protection, consistent with the website's privacy-conscious theme. Technically, the site is a static HTML/CSS site hosted via Njalla, a privacy-focused hosting provider. The site is basic but functional with good content relevance and navigation clarity. Mobile optimization and accessibility are basic but adequate. No CMS or advanced frameworks are detected. Performance is likely fast due to static content delivery. SEO and metadata are minimal but present. From a security perspective, the site lacks HTTPS enforcement information and security headers in the provided data, which lowers its security posture. No privacy or cookie policies are present, indicating limited compliance with privacy regulations. No forms or data collection mechanisms are detected, reducing exposure to input-based vulnerabilities. The domain registration is legitimate and consistent with the website content and operator profile. No WAF or blocking mechanisms are detected. Overall, the site is a safe, niche personal blog with moderate trustworthiness but could improve security and privacy compliance. Strategic recommendations include implementing HTTPS with HSTS, adding security headers, publishing privacy and cookie policies, and establishing vulnerability disclosure and incident response information to enhance trust and security posture.

Neovim is an open source, hyperextensible Vim-based text editor designed for developers seeking a modern and extensible editing experience. It offers advanced features such as a first-class API, remote plugins, Lua scripting support, and built-in language server protocol integration. The project is well-positioned in the developer tools market as a popular alternative to Vim, supported by an active community and sponsors. Technically, the website is built with modern web technologies including Bootstrap and Algolia DocSearch, hosted via Cloudflare, and optimized for performance and accessibility. Security posture is solid with HTTPS enforced and domain transfer protections, though it lacks some security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional, trustworthy, and content-rich, but could improve transparency and compliance documentation.

The website transgendersurgeri.es serves as a personal archive platform titled "Lexi's Archive" that hosts various directories and files intended for private use. It employs a password-protected mechanism to restrict downloads, indicating a focus on controlled access rather than public business operations. The site lacks any business branding, contact information, or commercial content, positioning it as a personal or small group resource rather than a commercial entity. Technically, the site is built with basic HTML, CSS, and JavaScript, utilizing the Fira Mono font and a third-party analytics script from lea.pet. The design is minimalistic with basic mobile responsiveness and limited SEO optimization. No CMS or advanced frameworks are detected. The site does not display any privacy or cookie policies, nor does it provide contact or legal information, which limits its compliance posture. From a security perspective, the site uses a numeric key-based password protection for downloads and sets cookies with SameSite=Strict attributes, which is a positive practice. However, there is no visible enforcement of HTTPS or security headers, and no privacy or cookie consent mechanisms are present. The WHOIS data is inaccessible due to Red.es restrictions, preventing verification of domain registration details and reducing trustworthiness. No WAF or blocking mechanisms are detected, and the content is accessible without challenge. Overall, the site scores low on business credibility and privacy compliance, with moderate technical implementation and security posture. It is safe in terms of content, containing no adult or explicit material. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, adding contact information, and enhancing security headers to improve trust and compliance.

I

InfinityFree

000.pe

0

000.pe is a domain hosted by InfinityFree, a free web hosting provider offering PHP and MySQL support for users to create websites on subdomains such as yourname.000.pe. The website serves as an informational landing page promoting InfinityFree's free hosting services and providing an abuse reporting contact. The technical infrastructure is basic, relying on standard HTML5 and CSS3 with Google Fonts, hosted on InfinityFree's platform. The site is mobile optimized with moderate performance but lacks advanced SEO and accessibility features. Security posture is minimal with no detected security headers, but HTTPS is implied. There is no privacy or cookie policy, which impacts compliance. Overall, the site is legitimate and consistent with its purpose but would benefit from enhanced security and compliance documentation.

The website brodokk.space serves as a personal homepage for an individual known as Brodokk, who identifies as a Fennec fox persona. The site highlights personal and professional programming activities, server management, and participation in various online communities and projects. The content is straightforward, primarily textual with some images, and links to multiple social media and community platforms. The website is small-scale and targeted at a general audience interested in technology and creative online communities. From a technical perspective, the site is built with basic HTML and CSS, hosted by Gandi SAS, and does not use any advanced frameworks or CMS. The site is moderately optimized for mobile devices and accessibility but lacks advanced SEO and performance optimizations. No analytics or advertising technologies are detected, indicating a privacy-conscious or minimalistic approach. Security posture is basic; the domain uses HTTPS (implied by the URL), but no DNSSEC is enabled, and no security headers are present. There are no forms or data collection points, reducing attack surface but also limiting user interaction. The WHOIS data is transparent and consistent with the website's personal nature, with no privacy protection used. No privacy or cookie policies are present, which is a compliance gap. Overall, the website is low risk, safe for general audiences, and serves as a personal portfolio and community hub. Strategic recommendations include improving security headers, adding privacy and cookie policies, enabling DNSSEC, and enhancing mobile and accessibility features to improve user experience and compliance.

Aquamarine.gay is a personal website serving as a digital aquarium for the owner, aquamarine, who identifies with unique personal and gender identities and has interests in mathematics, programming, music, art, and meteorology. The site functions primarily as a personal blog and contact point, with links to source code repositories and social media. The website is small-scale, niche, and non-commercial, targeting a general audience interested in the owner's content and persona. Technically, the site is hosted on a dedicated server running Arch Linux with the Caddy HTTP server, indicating a modern and stable infrastructure. The site is well-designed with good accessibility and mobile optimization, though it lacks advanced frameworks or CMS. Performance is moderate, and SEO is adequately addressed through meta tags and Open Graph data. From a security perspective, the site uses HTTPS and has domain transfer protection but lacks DNSSEC and explicit security headers. No privacy or cookie policies are published, and no vulnerability disclosure or incident response information is provided. The domain registration uses privacy protection, which aligns with the personal nature of the site. No WAF or blocking mechanisms are detected, and no analytics or tracking scripts are present, indicating a privacy-conscious approach. Overall, the site is trustworthy and professionally maintained for a personal project but would benefit from enhanced security headers, published privacy and cookie policies, and vulnerability disclosure mechanisms to improve compliance and security posture.

A

The personal garden of a broken doll. - Aphrodite.dev

aphrodite.dev

0

Aphrodite.dev is a personal creative website operated by an individual named Artémis, serving as a blog and portfolio for writings, projects, and photo galleries. The site targets a mature audience with explicit NSFW content warnings and offers financial support options via BuyMeACoffee. The website is a niche personal project rather than a commercial business, emphasizing creative expression and community links. Technically, the site is built with simple HTML and CSS, uses Atom feeds for content syndication, and references AGE encryption for secure communication. The site is lightweight, fast, and mobile-optimized but lacks advanced frameworks or CMS. Security posture is moderate with HTTPS implied but missing explicit security headers and policies. Privacy compliance is low due to absence of privacy and cookie policies. No forms or user data collection mechanisms are present, reducing attack surface. Overall, the site is trustworthy for its purpose but could improve security and compliance documentation.

A

Akseli Lahtinen

akselmo.dev

0

The website akselmo.dev is a personal blog authored by Akseli Lahtinen, focusing on topics such as gaming, game development, free and open source software (FOSS), and programming. It serves a niche audience of gamers, developers, and open source enthusiasts. The blog has a consistent and professional presentation with a rich archive of posts dating back to 2016, indicating a well-established presence in its domain. The business model is primarily content sharing without commercial transactions or services. Technically, the site is built with standard web technologies (HTML, CSS, JavaScript) and uses Goat Counter for privacy-respecting analytics. The site appears to be hosted on Hetzner, inferred from blog content, and is likely a static or custom-built blog without a CMS. The site is performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and does not expose sensitive data or forms. However, no explicit security headers were detected, and no privacy or cookie policies are present, which are areas for improvement. The domain registration data is consistent with the website content and author identity, supporting high legitimacy and trustworthiness. Overall, the site is low risk with good content quality and technical implementation but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

The website 1a-insec.net presents minimal content, primarily serving as a placeholder with references to a related domain and an AT Protocol identity. There is no clear business description or detailed service information, indicating an early-stage or low-activity web presence. The domain is relatively new, registered in late 2022, with no privacy protection and standard domain status flags, suggesting legitimate registration but limited business maturity. Technically, the site lacks modern SEO, accessibility, and security features such as DNSSEC, security headers, and published policies. No contact or incident response information is provided, limiting user trust and compliance posture. Security posture is basic with no detected vulnerabilities but also no advanced protections. Overall, the site scores low on content quality, privacy compliance, and business credibility, reflecting a need for significant improvements to establish trust and professionalism.

The website doubledouble.top serves as a simple region selection landing page directing users to USA or Europe subdomains. It lacks substantive business information, contact details, or policy documents, indicating a minimal online presence likely for a small or new business. The domain is privacy protected and registered in Saint Kitts and Nevis, which is common for privacy but reduces transparency. Technically, the site uses modern web standards with a clean, mobile-optimized design and is hosted behind Cloudflare, providing basic performance and security benefits. However, the absence of DNSSEC, security headers, and privacy or cookie policies indicates room for improvement in security and compliance. No analytics or advertising scripts were detected, suggesting minimal tracking or marketing activity. Overall, the site is safe with no adult or questionable content but lacks trust signals and business credibility.

H

Hochschule Neubrandenburg – University of Applied Sciences

dabamos.de

0

DABAMOS is an academic research project hosted by Hochschule Neubrandenburg – University of Applied Sciences, focusing on developing advanced deformation monitoring systems integrated with the Internet of Things. The project produces open source software such as DMPACK and OpenADMS to support sensor networks and automated geodetic data processing. The website serves as an information hub for research, software, and monitoring applications, targeting professionals and researchers in geodesy and geotechnics. Technically, the website is built with standard HTML and CSS, with a clean and professional design, good navigation, and mobile optimization. The presence of GitHub links and open source licensing enhances transparency and community engagement. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and safe, with no signs of malicious or adult content.

F

Foxscotch

foxscot.ch

0

Foxscotch is a personal website representing an individual web developer who also enjoys programming, 3D modeling, and animals. The site serves primarily as a personal portfolio and social media hub, linking to various social platforms. The business model is personal branding with a focus on web development services. The website is simple, clean, and consistent in branding but lacks formal business information or policies. Technically, the site uses standard HTML and CSS with FontAwesome icons, but no advanced frameworks or CMS are detected. Performance and mobile optimization are moderate to good, though accessibility and SEO are basic. Security posture is weak due to absence of HTTPS confirmation, security headers, and privacy policies. No forms or data collection mechanisms are present, reducing attack surface but also limiting business functionality. Overall, the site is safe and suitable for general audiences with no adult content or tracking technologies detected.

F

fawnover.fun

fawnover.fun

0

fawnover.fun is a personal website operated by an individual named June, focusing on sharing media reviews, personal art, and social engagement across various platforms including Fediverse, Twitter, YouTube, Bluesky, Twitch, and Git.gay. The site features artistic SVG graphics and interactive elements such as theme switching and audio playback, reflecting a creative and personal brand. The domain is newly registered in December 2024 and uses privacy protection services, consistent with a personal blog rather than a commercial enterprise. Technically, the site is hosted behind Cloudflare DNS with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies. No analytics or tracking scripts are detected, indicating a privacy-conscious approach.

F

Welcome to my website.

famfo.xyz

0

The website famfo.xyz is a personal technology-focused site operated by an individual named famfo. It serves as a portfolio and social hub featuring a blog, project links, and social media presence primarily in the open-source and federated social network space. The site is small scale, targeting a general audience interested in technology and personal projects. The domain is registered in Germany with a registrar known for domain services, and the domain age is consistent with a recently established personal site. Technically, the site uses basic HTML and CSS without advanced frameworks or CMS, and it shows moderate performance and basic mobile optimization. Security posture is minimal with no DNSSEC, no security headers detected, and no privacy or cookie policies present. No forms or analytics scripts are used, indicating minimal data collection and tracking. The site content is safe for general audiences with no adult or questionable content. Overall, the site is legitimate but lacks advanced security and privacy compliance features.

B

besties

pages.gay

0

pages.gay is a small technology startup offering a niche service for hosting static websites quickly and easily, tightly integrated with the git.gay source code repository platform. The service targets developers and users who want to deploy static sites with minimal setup, leveraging open source software and git repositories. The website is modern, built with SvelteKit, and uses Cloudflare for DNS hosting, providing fast performance and good mobile optimization. However, the site lacks formal privacy, cookie, and terms of service policies, and does not provide contact information, which limits trust and compliance. Security posture is decent with HTTPS and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. No analytics or advertising tools are present, indicating minimal user tracking.

The analyzed URL corresponds to a Chrome internal error page (chrome-error://chromewebdata/) which serves as a local offline or error display within the Chrome browser, including embedded code for the Chrome Dino game. There is no accessible external website content, business information, or user-facing services. The page is not a public website but an internal browser resource. Consequently, no business description, market position, or services can be identified. The technical infrastructure is limited to embedded JavaScript and canvas-based game code typical of the Chrome Dino offline game. Security posture cannot be fully assessed due to lack of external hosting or HTTPS context. Privacy and compliance policies are absent, as expected for an internal error page. Overall, this is not a commercial or public-facing website, and risk assessment is minimal but limited by lack of external content.

G

Grat10berg

grat.gay

0

The website grat.gay is a personal Vtuber content hub created by an individual known as Grat10berg. It serves as a portfolio and social gateway featuring original characters, art galleries, social media links, and commission information. The site is hosted on Neocities and uses Cloudflare DNS, indicating a small-scale personal project rather than a commercial enterprise. The technical infrastructure is basic but functional, leveraging standard web technologies such as HTML5, CSS3, JavaScript, and SVG graphics. The site includes interactive elements like a guestbook and a chat feature, although the chat is noted as unfinished. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, and no contact emails or phone numbers are provided, limiting compliance and trust signals. Overall, the site is safe for general audiences and does not contain adult or explicit content.

Sophari.org is a personal website operated by an individual or small entity registered as Private by Design, LLC in the US. The site serves as a platform for sharing personal projects, blogs, social links, and various interests with an informal and experimental design approach. It targets a general internet audience interested in niche internet culture and personal content. The business model is non-commercial and hobbyist in nature, with no clear market positioning beyond personal expression. Technically, the website is built with basic HTML and CSS, referencing a custom 'infernal-engine' technology. Hosting is provided by Porkbun LLC, with no CMS or advanced frameworks detected. The site shows moderate performance and basic mobile optimization but lacks SEO and accessibility best practices. No analytics or tracking services are employed, reflecting minimal data collection. From a security perspective, the site lacks HTTPS information, security headers, DNSSEC, and any formal security or privacy policies. No contact information or incident response channels are provided, limiting trust and compliance posture. The domain registration is transparent and consistent with the site's personal nature, with no suspicious WHOIS patterns. Overall, the security posture is weak, and privacy compliance is absent. The overall risk is low given the non-commercial, personal nature of the site, but improvements in security, privacy policies, and contact transparency are recommended to enhance trust and compliance.

The website girlthi.ng currently presents minimal content consisting solely of ASCII art with no descriptive or business-related information. The domain is newly registered in September 2024 with privacy redaction on the registrant address, and DNS is hosted on AWS Route 53. There are no privacy policies, cookie banners, contact information, or terms of service available, indicating a very early or placeholder stage of the website. Technically, the site lacks detectable scripts, analytics, or modern web technologies, and no security headers or HTTPS status were identified from the provided data. The security posture is weak due to the absence of HTTPS and security best practices. Overall, the site has low trustworthiness and business credibility due to the lack of verifiable information and minimal content.

P

Private by Design, LLC

zvava.org

0

zvava.org is a personal website and wiki maintained by an individual named Sophia (Sophie). The site serves as a digital brain-out-on-a-table, hosting a variety of personal projects, thoughts, and curated content spanning software, hardware, music, internet culture, and art. It targets a niche audience interested in open source, privacy, and internet subcultures. The business model is primarily personal/hobbyist with donation support. The domain is registered with a privacy-focused entity in the US, consistent with the site's privacy-conscious ethos. Technically, the site uses standard HTML5, CSS3, and JavaScript without major frameworks or CMS. The design is good with clear navigation and mobile optimization. Performance is moderate, and accessibility is basic. No analytics or advertising scripts are present, indicating minimal user tracking. However, the site lacks privacy and cookie policies, security headers, and DNSSEC, which are areas for improvement. From a security perspective, the domain is protected against unauthorized deletion and transfer, but DNSSEC is not enabled. No security headers were detected, and no forms collect user data, reducing attack surface. The site does not provide a security policy or incident response contacts, limiting transparency. Overall, the security posture is moderate but could be enhanced with standard best practices. The overall risk is low given the personal nature and limited data collection, but compliance gaps exist. Strategic recommendations include adding privacy and cookie policies, enabling DNSSEC, implementing security headers, and publishing a security.txt file. These steps would improve trust, compliance, and security posture.

T

Home - techrush

techrush.de

0

Techrush.de is a German-language media website focused on technology, gaming, consoles, and entertainment news. It provides product tests, previews, and trends related to cinema, TV, and lifestyle. The website uses WordPress CMS with a variety of plugins to enhance SEO, embed YouTube content, manage polls, and display advertisements. The technical infrastructure includes Cloudflare DNS services, Google Fonts, and several WordPress plugins, indicating a modern but standard web technology stack. The site is mobile-optimized and has good SEO practices but lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with no detected security headers or incident response information, suggesting room for improvement in security best practices. Overall, the website is accessible without WAF blocking, safe for general audiences, and presents itself as a professional media outlet in the German market.

F

Faustball Deutschland e.V.

faustball-liga.de

0

Faustball Deutschland e.V. operates as the official governing body for the sport of Faustball in Germany, providing comprehensive information on leagues, national and international competitions, training, and community engagement. The website serves players, coaches, fans, and the broader Faustball community with news, event details, and resources. It maintains a strong market position as the authoritative source for Faustball in Germany. Technically, the website is built on WordPress with a modern tech stack including jQuery, WooCommerce, NextGEN Gallery, and Jetpack. Hosting is provided by IONOS, and the site demonstrates good mobile optimization and moderate performance. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies, including a consent mechanism. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent. However, it lacks explicit security headers and published security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. The site integrates analytics tools such as Google Analytics and Jetpack Stats with moderate user tracking. Overall, the website is professional, trustworthy, and well-maintained, with good content quality and user experience. Strategic improvements could focus on enhancing security headers, publishing security policies, and expanding contact information transparency.

The website www3.lobi-teamsport.de is a parked domain with minimal content primarily consisting of advertising scripts and placeholders. There is no clear business description, contact information, or services offered. The site uses multiple third-party ad and tracking scripts, including Google Adsense and Youseasky, but lacks privacy or cookie consent mechanisms. Technically, the site uses standard HTML and JavaScript with Cloudfront CDN hosting but does not enforce HTTPS or implement security headers. The overall security posture is weak, with no visible compliance to GDPR or other privacy regulations. Business credibility is low due to lack of verifiable information and registrant transparency. The domain WHOIS data indicates use of generic redirect name servers typical for parked domains, further reducing trust. The site is accessible without WAF or security challenges but offers limited value or trustworthiness to users.

U

Union Tigers Vöcklabruck

faustball-tigers.at

0

Union Tigers Vöcklabruck is a regional Faustball sports club based in Austria, providing team information, news, events, and community engagement through their website. The site targets sports enthusiasts and local supporters with a focus on club activities, event calendars, and social media integration. The business model is that of a non-profit sports organization with a small size and a founding date around 2016. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, Revolution Slider, and Contact Form 7, hosted by easyname GmbH. The site demonstrates moderate performance and good mobile optimization with a consistent branding approach.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) which serves as a placeholder when a website cannot be loaded. It includes embedded JavaScript and CSS for the Chrome offline dinosaur game but contains no actual business or website content. There is no metadata, privacy policy, cookie policy, terms of service, or contact information present. The page is not a public website and thus lacks any business-related information or security policies. The technical infrastructure is limited to client-side scripts for the offline game, with no server-side or hosting details available. Security posture is minimal due to the nature of the content being an internal error page, with no SSL or security headers applicable. Overall, this is not a website but a browser error page, and no meaningful business or security analysis can be performed.

T

TeamForge.net

teamforge.net

0

TeamForge.net is a niche open source hosting platform established in 2005, providing free hosting services primarily for selected open source projects such as WinSCP and SiteBar. The website serves a specialized audience of open source developers and users seeking alternatives to larger platforms like SourceForge. The business model relies on donations and community support, with a small but consistent presence in the open source ecosystem. Technically, the site uses basic HTML, CSS, and JavaScript with Google Analytics for visitor tracking, hosted behind Cloudflare. The site performance and mobile optimization are basic but functional, with no advanced frameworks or CMS detected. Security posture is moderate; HTTPS is enabled but lacks DNSSEC and security headers, and no privacy or cookie policies are present, indicating gaps in compliance and best practices. Overall, the domain is long-established and trustworthy, with no suspicious WHOIS data or blocking mechanisms detected.

C

🌩

cloudwithlightning.net

0

The website cloudwithlightning.net appears to be a small, personal or creative project focused on interactive web content such as simple games and physics simulations. The site has minimal business information and does not disclose a company name or legal entity. The domain is registered with NameCheap since 2018 and is consistent with a small-scale personal site. Technically, the site uses modern web standards including HTML5, CSS3, JavaScript, and SVG graphics, but lacks advanced frameworks or CMS platforms. Performance is moderate with basic mobile optimization and poor accessibility features. Security posture is basic with HTTPS enabled but no DNSSEC or security headers detected. There are no privacy or cookie policies, and contact information is limited to a contact page link without direct emails or phone numbers. No analytics or tracking scripts are present, indicating minimal user tracking. Overall, the site is safe with no adult or explicit content detected, but it lacks professional business and security practices.

The website roxie.nyc serves as a personal portfolio and creative showcase for an individual named Roxie Mika. It features links to social media profiles, galleries for original characters and photography, and a minimalistic design focused on personal branding. The site is hosted on DigitalOcean and uses HTTPS, indicating a basic but secure technical infrastructure. However, it lacks common compliance and security features such as privacy policies, cookie consent mechanisms, and security headers. No contact information or business details are provided, which limits its business credibility and user trust. The content is safe for general audiences and does not contain any adult or explicit material.

I

InvisibleUp

invisibleup.com

0

InvisibleUp is a small-scale personal or creative website established in 2019, offering articles, doodles, projects, and curated links. The site brands itself as 'your friendly internet ghost,' indicating a focus on privacy or anonymity themes, though no explicit privacy policies are present. The website is hosted on DigitalOcean and uses modern web technologies including SVG graphics and responsive design for mobile users. The technical infrastructure is basic but functional, with no detected CMS or advanced frameworks. Security posture is moderate; the domain is registered with a reputable registrar and protected against unauthorized transfers, but lacks DNSSEC and security headers. No privacy or cookie policies are found, and contact information is limited to a generic Outlook email address. Overall, the site is trustworthy but could improve compliance and security practices.

Computer Tyme is a small, niche web hosting provider specializing in free speech hosting and advanced spam and virus filtering services. The company targets politically sensitive and consumer rights websites, emphasizing legal expertise and a commitment to free expression. Their business model includes various email hosting options and front-end spam filtering solutions. Technically, the website and services rely on a traditional Linux-based stack with Apache, MySQL, PHP4, and open-source spam and virus filtering tools. However, the website lacks modern security features such as HTTPS and security headers, and it does not provide privacy or cookie policies, which impacts compliance and trust. The WHOIS data for the domain is missing, raising concerns about domain registration status despite the website's claims of long operational history. Overall, the security posture is weak, and the site would benefit from modernization and improved compliance documentation.

pkgsrc.pub is a small technology-focused website operated by SkyLime, providing services related to the pkgsrc open source package management system. The site offers mirrors of binary packages for multiple operating systems, a searchable index of all pkgsrc packages, and a work-in-progress search over distfiles. The business targets developers and system administrators who rely on pkgsrc for software distribution. The domain has been registered since 2014, indicating a mature presence in its niche. Technically, the website is minimalistic, built with basic HTML and CSS, and hosted with DNS services provided by core.io domains. There is no evidence of a CMS or advanced frameworks. The site lacks modern security features such as DNSSEC and security headers, and no SSL/TLS configuration details were provided. The website is moderately optimized for mobile and accessibility but lacks advanced SEO and analytics tools. From a security perspective, the site does not present any immediate red flags such as malware or phishing indicators. However, the absence of privacy policies, cookie consent mechanisms, and incident response information indicates a low maturity in compliance and security posture. The domain registration is consistent and legitimate, but improvements in DNS security and published policies are recommended. Overall, pkgsrc.pub is a niche technical service with moderate trustworthiness and basic web presence. Strategic improvements in security, privacy compliance, and transparency would enhance its credibility and user trust.

E

Ecole Supérieure Multinationale des Télécommunications

esmt.sn

0

ESMT (Ecole Supérieure Multinationale des Télécommunications) is a regional educational institution based in Senegal, specializing in telecommunications and related fields. It offers a variety of educational programs including initial training cycles, continuing education, certifications such as AWS Cloud Foundations, and masters programs both online and in evening formats. The institution is recognized by regional bodies such as CAMES and maintains partnerships with several organizations, enhancing its market position in education and telecommunications sectors. Technically, the website is built on Drupal CMS with Bootstrap and jQuery frameworks, integrating Google Maps and Google Analytics for user tracking and location services. While the site is mobile responsive and well-structured, it uses an outdated jQuery version and lacks advanced security headers, which could pose risks. Performance is moderate with good content quality and navigation. Security posture is basic with HTTPS enabled and IP anonymization in analytics, but missing DNSSEC and security headers reduce the overall security score. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly provided, supporting business credibility. Overall, the website is professional and trustworthy but would benefit from enhanced security measures and privacy compliance to improve user trust and regulatory adherence.

U

USSEIN - Université du Sine Saloum El-Hâdj Ibrahima NIASS

ussein.sn

0

The website www.ussein.sn represents the Union des Syndicats des Enseignants du Sénégal (USSEIN), a teachers' union in Senegal focused on labor rights and education advocacy. The site targets education professionals within Senegal and serves as a platform for union-related information and activities. The market position is that of an important national union, though the website content and design are basic and primarily in French. Technically, the website is built on WordPress with common plugins such as LayerSlider and uses Google Fonts and Google Maps API. It employs Google Analytics for user tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. From a security perspective, the site uses HTTPS but does not implement advanced security headers or provide security policies or incident response information. No vulnerability disclosure or data protection officer details are found. The security posture is moderate but could be improved with better headers and formal policies. Overall, the website is safe for general audiences, with no adult or explicit content detected. However, the absence of privacy and cookie policies and limited contact information reduce privacy compliance and business credibility scores. Strategic improvements in security and compliance documentation are recommended.

The domain sc07.group is registered to Private by Design, LLC, a US-based entity established in 2021. The website currently returns a 502 Bad Gateway error, indicating server-side issues preventing access to any content. Due to the lack of accessible website content, no business description, services, or market positioning can be determined. The technical infrastructure appears to use nginx as the web server and is hosted on Highway Host as indicated by the nameservers. No metadata, scripts, or security headers are available for analysis. The security posture cannot be fully assessed but the absence of DNSSEC and security headers suggests room for improvement. The domain registration is consistent and not privacy protected, which supports legitimacy, but the lack of website content severely limits trust and credibility. Overall, the site is currently non-functional and requires immediate technical remediation to restore service and enable further analysis.

N

NCSFest

ncsfest.com

0

NCSFest is an online festival celebrating comics and cartoon art worldwide, with a focus on the 2020 virtual event. The website presents basic event information but lacks detailed business or organizational data. The technical infrastructure includes common web technologies such as WordPress CMS, Google Analytics, Google Tag Manager, and Font Awesome for icons. The site is accessible without WAF or security challenges, but it lacks comprehensive privacy, cookie, and security policies. No contact information or incident response details are provided, which limits trust and compliance assurances. The security posture is minimal with no detected security headers or advanced protections. Overall, the site serves as an informational event page with moderate technical implementation but requires improvements in privacy, security, and business transparency to enhance credibility and compliance.

N

National Cartoonists Society Foundation

cartoonistfoundation.org

0

The National Cartoonists Society Foundation is a small US-based non-profit organization dedicated to supporting cartoonists through charitable programs and scholarships. Established in 2005, it operates as the charitable arm of the National Cartoonists Society, providing educational opportunities and financial aid to students in the cartooning arts. The website reflects this mission with clear scholarship information, donation options, and educational content targeted at cartoonists and supporters. Technically, the website is built on WordPress and uses modern front-end technologies such as the Foundation CSS framework, jQuery, and Google reCAPTCHA v3 for form security. Hosting is provided by SiteGround, a reputable provider. The site is mobile-optimized with good navigation and design quality, although accessibility features are basic. SEO is implemented at a basic level with meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms from spam. However, it lacks DNSSEC and important security headers, which are recommended to enhance security posture. No privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. No incident response or vulnerability disclosure information is published. Overall, the website is trustworthy and professional, with a strong business credibility score. The main risks relate to privacy compliance and security best practices. Strategic improvements in these areas would enhance user trust and regulatory adherence.

C

Cascadia Poetics LAB

cascadiapoeticslab.org

0

Cascadia Poetics LAB is a small non-profit organization based in Seattle focused on poetry and place-based cultural activities in the Cascadia region. Their offerings include community events such as the Poetry Postcard Fest, a podcast series, online workshops, a poetry festival, and related publications. The organization targets poetry enthusiasts and regional community members, operating primarily as a cultural and educational non-profit entity. Technically, the website is built on WordPress using the Divi theme, hosted by InMotion Hosting. It integrates modern web technologies including Google Fonts, reCAPTCHA for form security, and Google Tag Manager for analytics. The site demonstrates good mobile optimization and SEO practices but lacks some advanced accessibility features. From a security perspective, the site uses HTTPS with a good SSL configuration and employs reCAPTCHA to protect forms. However, it lacks DNSSEC, security headers like Content-Security-Policy, and a published security or vulnerability disclosure policy. The domain registration is privacy-protected but consistent with the organization's profile and age. Overall, the website is professionally presented and trustworthy for its niche audience but would benefit from enhanced privacy compliance and security practices to improve user trust and regulatory adherence.

B

Branchable

branchable.com

0

Branchable is a niche hosting service specializing in providing easy-to-use wiki and blog hosting powered by Git and IkiWiki technologies. The platform targets individuals and small teams who want version-controlled websites with web-based editing capabilities. The business operates on a subscription model with tiered plans and emphasizes freedom and open-source software principles. Technically, the site uses older but stable technologies such as jQuery and IkiWiki, with a focus on simplicity and static site generation for performance. Security posture is moderate; HTTPS is implied but no advanced security headers or explicit policies are present. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content is professional and safe. Overall, the site is functional but would benefit from improved security practices and clearer business contact information.

Robby Workman's website is a personal homepage primarily focused on Slackware Linux and related technical content, maintained by a high school physics teacher with a passion for Linux. The site serves as a resource hub for Slackware users, offering packages, HOWTOs, configuration files, and links to community resources. The business model is that of a personal hobbyist and community contributor, with no commercial intent evident. The website targets Linux enthusiasts, particularly Slackware users, and personal visitors interested in the author's activities. Technically, the site is built with simple HTML and CSS, with no modern frameworks or CMS detected. Hosting is provided via colocation by TekLinks. The site has basic performance and accessibility, with limited mobile optimization and SEO features. There is no evidence of analytics or tracking technologies, and no advertising is present. From a security perspective, the domain is well-established with a consistent WHOIS record dating back to 2005. However, DNSSEC is not enabled, and no security headers or HTTPS enforcement details are visible. The site lacks privacy and cookie policies, which impacts compliance posture. No forms or data collection mechanisms are present, reducing attack surface but also limiting user engagement features. Overall, the website is low risk, with a moderate security posture and limited privacy compliance. Strategic improvements include enabling HTTPS with security headers, adding privacy and cookie policies, and implementing vulnerability disclosure mechanisms to enhance trust and security culture.

F

Faustball Deutschland e.V.

faustball.de

0

Faustball Deutschland e.V. operates as the official governing body for the sport of Faustball in Germany, providing comprehensive information on leagues, national and international competitions, events, and organizational resources. The website serves a dedicated community of players, clubs, fans, and stakeholders with up-to-date news, event highlights, and educational content. It holds a strong market position as the authoritative source for Faustball in Germany. Technically, the website is built on a modern WordPress platform with a robust tech stack including WooCommerce, NextGEN Gallery, and Cookiebot for privacy compliance. Hosting is provided by IONOS, and the site demonstrates good mobile optimization, accessibility, and SEO practices. Analytics and marketing tools such as Google Analytics, Google Tag Manager, and Mailchimp are integrated with user privacy respected through consent mechanisms. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers and a public security policy or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms domain legitimacy and consistency with the business identity. Overall, the website presents a professional, trustworthy, and user-friendly platform with strong content quality and privacy compliance. Strategic improvements in security headers and formal security policies could further enhance its security posture and trustworthiness.

The website sfghost.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. Due to this restriction, no business information, contact details, or policy documents are available for analysis. The domain was registered in early 2022 and is managed by NICNAMES, INC., with no privacy protection enabled. The lack of accessible content and metadata severely limits the ability to assess the company's market position, services, or technical infrastructure. From a security perspective, the absence of HTTPS confirmation, security headers, and policies indicates a low security posture. Overall, the site appears inactive or restricted, resulting in a low trust and credibility score.