Security Directory

Confedere.ch is a French-language Swiss media website providing news and journal content, including print editions. The site is built on WordPress using a professional Newspaper theme and includes GDPR-compliant cookie consent mechanisms. The technical infrastructure is modern with standard plugins and Google Analytics integration. Security posture is adequate with HTTPS enforced but could be improved by adding explicit security headers and hardening login forms. The website is trustworthy with consistent domain registration data and no suspicious content detected. Privacy compliance is good with clear cookie policies and consent mechanisms, though terms of service and security policies are not explicitly found.

The website frequenzwechsel.org is currently inaccessible, returning a 403 Forbidden error page served by nginx on Ubuntu. Due to the lack of accessible content, no business description, services, or user engagement features can be analyzed. The domain is registered since 2007 with a German registrar and hosting provider, indicating a potentially established entity, but no further business details are available from the site itself. Technically, the site uses a standard nginx web server but lacks visible security headers or HTTPS confirmation in the provided data. The security posture cannot be fully assessed due to blocked access, but the absence of DNSSEC and security policies suggests room for improvement. Overall, the site presents a low trust and content quality profile due to inaccessibility and lack of transparency.

B

Bys Hosting

byshosting.nl

0

Bys Hosting is a Dutch hosting provider established in 2004, specializing in business hosting solutions with a focus on personal support and reliability. Their services include various hosting packages, VPS, and security offerings, with servers hosted in an ISO 27001 certified data center in the EU. The website is built on WordPress and uses modern frontend technologies, providing a professional and user-friendly experience targeted at business customers in the Netherlands. Security posture is solid with HTTPS and SSL certificates, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic with a privacy policy and terms of service present but lacking cookie consent mechanisms. Overall, the website and business appear legitimate and trustworthy.

Salland Zorgkantoor is a regional healthcare organization in the Netherlands responsible for executing the Long-term Care Act (Wet langdurige zorg - Wlz) for residents in the Salland region, including municipalities such as Deventer, Olst-Wijhe, Raalte, and Voorst. The organization facilitates access to appropriate long-term care services, including care in kind and personal budgets, and provides support through client advisors and informational resources. Their market position is that of a trusted regional care office, supported by clear contact information and a professional web presence. The website is designed to serve individuals needing long-term care and professionals in the healthcare sector.

Putter & de Boer B.V. is a Dutch company providing tailored administrative, fiscal, and payroll services primarily targeting small and medium-sized enterprises (MKB) and private individuals. With over 45 years of experience, the company positions itself as a reliable and comprehensive service provider offering a 'one stop shopping' approach. Their website is built on the concrete5 CMS and integrates common web technologies such as jQuery, Google Analytics, and Facebook SDK for tracking and social media integration. The hosting provider is Easyhosting BV, a reputable Dutch hosting company, consistent with the company's geographic focus. From a security perspective, the website uses HTTPS but lacks important security headers, privacy and cookie policies, and explicit contact information, which are areas for improvement to enhance compliance and trust. No vulnerabilities or suspicious content were detected in the HTML content. The website is accessible without WAF or security challenges, indicating no blocking or filtering mechanisms are interfering with access. Overall, the website demonstrates a moderate level of technical maturity and business credibility but falls short in privacy compliance and security best practices. Strategic improvements in these areas would strengthen the company's digital trustworthiness and regulatory adherence.

The website www.sitearchief.nl serves as the official platform for web archiving of Dutch government websites, operated under the Rijksoverheid brand. It provides access to archived versions of various government-related web projects and initiatives, enabling users to browse historical web content. The platform is developed and managed by GW Crossmedia using the Archiefweb.eu product tailored for the Dutch government. The target audience includes government agencies, researchers, and the general public interested in government web archives. The site demonstrates consistent branding aligned with government standards and offers a comprehensive archive listing.

The analyzed content corresponds to a browser internal error page (chrome-error://chromewebdata/) displaying the Chromium offline dinosaur game. No actual website content is accessible or served. Consequently, there is no business information, contact details, or privacy and security policies available for analysis. The technical content is limited to embedded JavaScript and CSS related to the offline game. The absence of accessible content and metadata prevents meaningful assessment of business operations or compliance. Security posture is minimal due to lack of HTTPS and security headers. Overall, the site appears to be a placeholder or error page rather than an active business website.

K

Koocook

koocook.com

0

Koocook is a French meal planning platform established in 2006, offering users personalized recipes, shopping lists, and meal plans focused on healthy eating and reducing food waste. The business operates a freemium model with a premium subscription unlocking advanced features such as personalized meal plans, nutrition and allergen information, and online grocery ordering. The website is well-designed, mobile responsive, and uses modern web technologies including Bootstrap, jQuery, and integrates Google Analytics and Stripe for payments. Hosting appears to be via SwissCenter based on nameservers. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are present and GDPR compliant, though no explicit security or incident response policies are published. Contact is available via a web form, with no direct emails or phone numbers found. Overall, the site is professional, trustworthy, and safe for general audiences.

C

Cafés Cuendet Torréfaction SA

cafes-cuendet.ch

0

Cafés Cuendet Torréfaction SA is a well-established Swiss coffee roasting company founded in 1907, specializing in supplying high-quality coffee products primarily to hospitality professionals in the Swiss Romande region. The company emphasizes artisanal roasting methods and freshness, supporting a strong market position as a trusted supplier with a professional e-commerce presence. Technically, the website is built on WordPress with WooCommerce, leveraging modern libraries and privacy-conscious analytics tools such as Matomo Cloud alongside Google Analytics. The site is well-optimized for SEO and mobile devices, providing a positive user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and formal policies are absent. Overall, the domain registration data aligns well with the business claims, reinforcing legitimacy and trustworthiness.

D

Domaine Croix-Duplex

croix-duplex.ch

0

Domaine Croix-Duplex is a small family-owned vineyard and wine producer located in Lavaux, Switzerland, offering a diverse range of wines and hosting various events including tastings and private functions. The website is professionally designed, multilingual, and supports e-commerce through WooCommerce, targeting wine enthusiasts and local visitors. The technical infrastructure leverages WordPress with modern plugins for performance and multilingual support, alongside Google Analytics and Mailchimp for marketing and analytics. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site presents a trustworthy and professional online presence for a regional wine business.

L

Ligue Romande de Football

lrf.ch

0

The Ligue Romande de Football (LRF) is a well-established non-profit sports association founded in 1899 and based in Lausanne, Switzerland. It focuses on promoting and organizing amateur football activities within the canton of Vaud. The website serves as an information hub for match schedules, results, official communications, and club support services. The target audience primarily consists of amateur football clubs and players in the region. The organization maintains a consistent brand presence and is supported by local sponsors, reinforcing its regional importance. Technically, the website employs modern frontend technologies such as Bootstrap and jQuery, with Google Fonts for typography. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and SEO optimization. No CMS or hosting provider details were identified. Performance is moderate, with no evident critical technical issues. From a security perspective, the site uses HTTPS (assumed from the URL), but no security headers were detected in the provided data. There is no visible privacy policy, cookie consent mechanism, or terms of service, which are important for GDPR compliance given the European location. No incident response or vulnerability disclosure information is present. No analytics or tracking scripts were found, indicating minimal user tracking. Overall, the security posture is average with recommendations to enhance headers, policies, and incident response readiness. The overall risk assessment is moderate with a legitimacy score of 90 based on consistent WHOIS data and alignment with the organization's claims. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, establishing vulnerability disclosure and incident response processes, and improving accessibility and SEO. These steps will enhance trust, compliance, and security maturity for the LRF website.

Swisscommunes.ch is a specialized digital solutions provider targeting Swiss communes and local government entities. Their offerings include document management, parking permits, and room rental management, emphasizing simplicity, autonomy, and affordability. The company behind the site is Gilston Digital SA, a small-sized entity with a clear niche in government-related technology services. The website is built on WordPress with modern front-end frameworks like Bootstrap and integrates privacy-conscious analytics via Matomo. The site includes a cookie consent mechanism and a contact form but lacks explicit privacy and terms of service pages. Security posture is generally good with HTTPS and some best practices but could be enhanced with additional security headers and published policies. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

G

Gilston Digital SA

gilston.consulting

0

Gilston Consulting, a department of Gilston Digital SA, specializes in delivering pilot projects that combine software and hardware development. Their market position is that of a niche Swiss consulting firm focusing on innovative proofs of concept and embedded systems. The company leverages a modern WordPress-based website with responsive design and standard web technologies, providing a professional digital presence. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is partial due to the absence of a privacy policy page. Overall, the website reflects a credible small business with clear contact channels and partner affiliations.

M

Merck & Co., Inc.

msdindia.in

0

MSD India is the regional presence of Merck & Co., Inc., a leading global pharmaceutical company. The website serves as a corporate portal providing information about the leadership team, contact details, and resources for healthcare professionals. The company operates in the healthcare sector with a focus on pharmaceuticals, oncology, clinical research, and regulatory affairs. The site reflects a strong market position as part of a large multinational enterprise with consistent branding and professional content. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and uses Google Analytics and Tag Manager for tracking. It employs a cookie consent mechanism compliant with GDPR and other privacy regulations. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and a public security policy or vulnerability disclosure page. No vulnerabilities or exposed sensitive data were detected. The WHOIS data for the domain www.msd.com was not available in the raw output, but the website's legitimacy is supported by consistent branding and official contact information. Overall, the website presents a low risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

M

Merck Sharp & Dohme d.o.o

msd.hr

0

Merck Sharp & Dohme d.o.o (MSD Croatia) is a subsidiary of the global pharmaceutical leader Merck & Co., Inc., focused on delivering prescription medicines, vaccines, and clinical research services. The website serves patients, healthcare professionals, and job seekers with comprehensive corporate information, product details, and responsibility initiatives. The site is well-branded, professionally designed, and consistent with the global MSD identity. Technically, the website is built on WordPress VIP with modern plugins such as Yoast SEO and Tiny Slider, ensuring good SEO, accessibility, and mobile responsiveness. It uses Google Tag Manager for analytics and OneTrust for cookie consent, reflecting a mature digital infrastructure. Performance is moderate with good mobile optimization. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Privacy compliance is robust with clear privacy and cookie policies, and GDPR adherence is evident. Overall, the website is trustworthy, professional, and secure, supporting MSD's market position as a leading pharmaceutical company. Strategic recommendations include publishing detailed security policies, incident response contacts, and enhancing security headers to further strengthen the security posture.

The website corporativo.msdonline.com.br is currently inaccessible, returning a 403 Forbidden error page with no visible content. This prevents any meaningful analysis of the business, technical infrastructure, or security posture. The domain is hosted on Amazon AWS DNS infrastructure, which suggests a professional hosting environment. However, the lack of accessible content and absence of metadata, scripts, or contact information limits the ability to assess the company's market position, services, or compliance status. Security posture cannot be evaluated due to the blocked content, and no privacy or cookie policies are found. Overall, the site appears to be restricted or protected, which may be intentional for internal or corporate use.

The website merchorders.com is currently inaccessible due to a Web Application Firewall (WAF) protection by Incapsula, which blocks direct content access. As a result, no business content, metadata, or contact information is available for analysis. The domain is registered with GoDaddy.com, LLC since 2018 and uses AWS DNS servers, indicating a legitimate commercial intent. However, the lack of accessible content and absence of privacy or security policies limit the ability to assess the business model or market position. Technically, the site shows no evidence of modern SEO, security headers, or compliance mechanisms. Security posture is weak due to lack of visible HTTPS or security best practices. Overall, the site appears to be a small business or e-commerce platform but cannot be fully evaluated due to content blocking.

S

Stichting VieAmi

vieami.nl

0

VieAmi is a Dutch non-profit foundation dedicated to supporting projects within VieCuri hospital that are not covered by standard healthcare budgets. The organization focuses on enhancing patient experience and regional healthcare quality through fundraising and community engagement. The website serves as a platform for donations, project information, and news updates, targeting patients, local community members, and healthcare supporters. Technically, the site is built on WordPress using the Enfold theme and integrates the GiveWP plugin for donations with Mollie as the payment gateway. The infrastructure demonstrates moderate digital maturity with responsive design and modern JavaScript libraries such as React. Security posture is adequate with HTTPS enabled and nonce tokens protecting forms, but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from improved security and privacy transparency.

K

KS/CS Kommunikation Schweiz

ks-cs.ch

0

The website ks-cs.ch appears to be a small Swiss business site with minimal visible content and no explicit business description or contact information in the provided HTML. The technical infrastructure is based on WordPress using the Uncode theme, indicating a standard CMS platform but with limited optimization and no advanced SEO or accessibility features detected. Security posture is weak due to lack of HTTPS and security headers, and no privacy or cookie policies are present, which raises compliance concerns. WHOIS data is consistent and transparent, supporting the legitimacy of the domain registration. Overall, the site requires significant improvements in security, privacy compliance, and content richness to enhance trust and user experience.

S

subsignal.org

subsignal.org

0

subsignal.org is a small non-profit organization focused on free media and FLOSS activism, originally founded as a hackerspace in Weimar, Germany. The website serves as a digital presence hosting infrastructure for open source projects, including mailing lists and email forwarding services. The organization targets the FLOSS community and open source activists, providing essential community infrastructure and resources. The business model is non-profit and community-driven, with a niche market position in the open source activism space. Technically, the website is basic, built with simple HTML and CSS without modern frameworks or CMS. Hosting is provided by Vautron Rechenzentrum AG, with no DNSSEC enabled and no visible security headers. The site lacks mobile optimization and accessibility features, and no analytics or tracking scripts are present, indicating a privacy-conscious approach. The website content is minimal but relevant to its audience. From a security perspective, the site lacks several best practices such as DNSSEC, security headers, and explicit HTTPS enforcement information. No privacy or cookie policies are present, which is a compliance gap under GDPR. Contact information is limited to a single obfuscated email address. No WAF or blocking mechanisms are detected, and the domain registration data is consistent and legitimate, with a long domain age supporting trustworthiness. Overall, the website scores moderately on content quality and business credibility but scores lower on technical implementation, security posture, and privacy compliance. Strategic improvements in security headers, privacy policies, and mobile optimization would enhance the site's security and user experience.

The website publi24.ro is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents any meaningful content or business information from being retrieved or analyzed. The domain is registered since 2009 with a reputable registrar and uses Cloudflare for DNS and security services. Due to the block, no privacy policies, contact information, or business details are available. The technical infrastructure relies on Cloudflare, but no further technology stack details can be determined. Security posture cannot be fully evaluated given the lack of accessible content, but the presence of Cloudflare indicates some level of protection. Overall, the site’s risk assessment is limited by the block, and strategic recommendations focus on resolving access issues and improving transparency.

A

ADRIENNE FELLER COSMETICS ZRT.

panarom.hu

0

Panarom.hu is the official website of ADRIENNE FELLER COSMETICS ZRT., a Hungarian company specializing in natural aromatherapy and wellness products. The site offers a comprehensive e-commerce platform featuring essential oils, natural oils, skincare products, and educational workshops. It targets general consumers interested in natural health and wellness, with a strong market presence in Hungary and expanding EU distribution. The website demonstrates a professional and consistent brand image with detailed product information and multiple trust signals including certifications and retail partnerships. Technically, the site employs modern JavaScript frameworks and analytics tools with good mobile optimization and SEO practices. Security posture is solid with HTTPS and consent management, though explicit security headers and incident response information are absent. Overall, the domain registration aligns well with the business identity, supporting legitimacy and trustworthiness.

J

Jobinfo.hu Kft.

cvdb.hu

0

CVDB.hu is a Hungarian job search platform operated by Jobinfo.hu Kft., offering job seekers a streamlined way to create profiles, upload CVs, and access a wide range of job listings. The platform integrates a prize draw incentive to encourage detailed profile completion, targeting primarily Hungarian job seekers. The website is professionally designed with consistent branding and features partnerships with reputable companies, enhancing its market credibility. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a responsive and interactive user experience. However, there is room for improvement in security headers and privacy transparency. Security posture is moderate with HTTPS enforced and anti-bot measures in place, but lacks explicit security policies and incident response contacts. Overall, the site is safe, compliant with GDPR, and trustworthy for its intended audience.

У

Университет по Архитектура Строителство и Геодезия

uacg.bg

0

The website represents the University of Architecture, Civil Engineering and Geodesy (UACG) in Bulgaria, a well-established public higher education institution specializing in architecture, construction, and geodesy. The site provides comprehensive academic information, news, events, and virtual campus access targeting prospective and current students, researchers, and academic staff. The university maintains a consistent brand presence and offers multiple academic programs and research activities, positioning itself as a key player in Bulgarian higher education in its sector. Technically, the website uses modern frameworks such as Bootstrap and jQuery, integrates Google Analytics and Tag Manager for tracking, and implements cookie consent mechanisms, reflecting a moderate to good digital maturity. Security posture is adequate with HTTPS and reCAPTCHA usage, though it lacks explicit security headers and incident response disclosures. The domain WHOIS data is privacy protected in compliance with GDPR, which is typical for EU entities, and the domain status is active and consistent with the institution's legitimacy. Overall, the site is professional, secure, and compliant with privacy regulations, serving its educational mission effectively.

The website convertiser.pl is currently inaccessible, returning a 400 Bad Request error with minimal HTML content. Due to the lack of accessible content, no meaningful business description, contact information, or security policies can be extracted. The domain is registered with OVH SAS since 2012 and is valid until 2026, indicating a legitimate registration history. However, the absence of website content and metadata severely limits the ability to assess the company's market position, services, or technical infrastructure. The security posture cannot be evaluated due to missing data, but the lack of HTTPS and security headers is a concern. Overall, the site appears non-functional or misconfigured, resulting in a low trust and quality score.

C

Cludo Sp. z o.o.

cludo.pl

0

Cludo Sp. z o.o. is a Polish technology company specializing in cloud-based Contact Center solutions delivered as SaaS. Established in 2011, Cludo offers integrated multi-channel customer service platforms, including AI-powered automation and CRM integrations, targeting businesses seeking to enhance customer communication efficiency. The company holds a strong market position with over 1500 clients and multiple reputable partners. Technically, the website is built on WordPress with modern technologies such as Google Tag Manager, Google Analytics, and CookieYes for compliance. Hosting is provided by a Polish registrar and hosting provider, ensuring regional consistency. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though improvements in DNSSEC and security headers are recommended. Overall, the website is professional, well-branded, and trustworthy, with comprehensive contact details and social media presence. No critical vulnerabilities or suspicious activities were detected.

M

Magyar Reklámszövetség

mrsz.hu

0

The Magyar Reklámszövetség website represents a national marketing communication association in Hungary, providing industry research, regulatory guidance, events, and education to marketing professionals and businesses. The site is professionally designed with clear branding and relevant content targeting Hungarian marketing stakeholders. Technically, the site uses a Yii PHP framework-based CMS with common web technologies such as jQuery, Bootstrap, and Google Analytics for tracking. Performance and mobile optimization are moderate but could be improved. Security posture is basic with HTTPS implied but no visible security headers or published security policies. Privacy compliance is limited with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the site is functional and credible but would benefit from enhanced security and privacy practices.

M

Magyar Marketing Szövetség

marketing.hu

0

The website marketing.hu represents the Magyar Marketing Szövetség, a well-established Hungarian marketing association with over 20 years of history. The site serves as a professional hub offering marketing news, events, educational content, and community engagement for marketing professionals and businesses in Hungary. The business model is non-profit and community-focused, positioning itself as a key player in the Hungarian marketing sector. Technically, the site uses modern JavaScript libraries, tracking tools such as Google Analytics and Facebook Pixel, and implements HTTPS with CSRF protection, indicating a moderate level of digital maturity. However, some security best practices like security headers and explicit cookie consent mechanisms are missing. The security posture is solid but could be improved with additional policies and headers. Overall, the site is professional, trustworthy, and content-rich, with no signs of adult or questionable content. The domain age and WHOIS data support the legitimacy of the organization. Strategic recommendations include enhancing security headers, improving privacy compliance with on-site policies and consent mechanisms, and providing clearer contact and incident response information.

The website web.metrics.hu serves as a login portal for the Open Web Analytics platform, a technology solution focused on web analytics data collection and reporting. The site targets users such as website administrators and analysts who utilize the Open Web Analytics software. The business model revolves around providing analytics services through a software platform, with a focus on technology industry users. The website content is minimal, primarily facilitating user authentication to access analytics data. From a technical perspective, the site uses PHP and JavaScript technologies and is built on the Open Web Analytics framework. The site is served over HTTPS, ensuring encrypted communications. However, the technical implementation is basic with limited SEO optimization, accessibility, and mobile responsiveness. The login form collects username and password data but lacks visible advanced security measures such as CSRF tokens or security headers. Security posture is moderate with HTTPS enforced and password fields properly masked. However, the absence of security headers and lack of visible incident response or security policies reduce the overall security maturity. No privacy or cookie policies are present on the login page, indicating limited privacy compliance. WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the website is functional for its purpose but lacks comprehensive privacy, security, and business information disclosures. Strategic recommendations include implementing security headers, adding privacy and cookie policies, enhancing form security, and providing clear contact and incident response information to improve trust and compliance.