Security Directory

D

DANREN BOGDOL A/S

danrenbogdol.dk

0

Danren Bogdol A/S is a professional cleaning company based in Denmark, with over 40 years of experience in providing commercial and private cleaning services. The company operates from multiple locations including Odense, Århus, and Glostrup, serving a nationwide customer base. Their service portfolio includes commercial cleaning, window cleaning, facility services such as stairwell cleaning, facade cleaning, graffiti removal, ventilation cleaning, and specialized cleaning for various sectors including offices, clinics, restaurants, and institutions. The company emphasizes quality, professionalism, and customer satisfaction, supported by the Servicenormen certification and positive customer testimonials. Technically, the website is built on WordPress using the Elementor page builder, incorporating modern web technologies such as jQuery, Font Awesome, and Google Tag Manager for analytics and marketing. Cookie consent is managed via Cookiebot, ensuring compliance with cookie regulations. The site is mobile optimized and demonstrates good SEO practices with structured data and meta tags. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers such as CSP or HSTS. No explicit security policies or incident response contacts are published, and no vulnerability disclosure or security.txt files are present. The site does not appear to be behind a WAF or security challenge, and no critical vulnerabilities were detected in the analysis. Overall, the website presents a credible and professional business presence with room for improvement in privacy policy publication, security header implementation, and explicit security governance disclosures. These enhancements would strengthen trust and compliance posture.

S

SBOBET88

pointvoucher.com

0

The website www.pariwisatawonosalam.com operates as an online gambling affiliate platform branded as SBOBET88, targeting Indonesian sports betting enthusiasts. It offers official SBOBET registration links and mobile login access, claiming a longstanding presence since 2009. The site is built on the Squarespace platform with basic technical infrastructure and moderate mobile optimization. However, the absence of verifiable WHOIS domain registration data raises concerns about legitimacy and domain ownership consistency. Security posture is moderate with HTTPS and HSTS enabled but lacks essential security headers and privacy policies. No contact or incident response information is provided, limiting trust and compliance. Overall, the site presents basic content quality and branding but suffers from significant gaps in security and privacy compliance.

CarDirect ApS operates the Danish e-commerce website cardirect.dk, specializing in the sale of high-quality tires and alloy wheels for a variety of car brands, with a focus on electric and plug-in hybrid vehicles. The company positions itself as a niche player offering competitive pricing, expert advice, and fast delivery to the Danish market. The website is professionally designed, mobile-optimized, and uses modern WordPress technologies and SEO best practices to enhance user experience and search visibility. Privacy compliance is well addressed with a comprehensive cookie policy and consent mechanism, reflecting adherence to GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the business presents a trustworthy and professional online presence with clear contact information and transparent business details.

The website communicant.dk represents a small communication consultancy business named COMMUNICANT, offering services such as strategic leadership communication, brand strategy, and various communication process management. The site content is limited but clearly describes the business focus and key services. The target audience appears to be businesses or individuals seeking expert communication consultancy in Denmark. The website is built using iWeb 3.0.4, an older web design platform, and lacks modern mobile responsiveness and accessibility features. Technically, the site uses basic JavaScript and CSS with no detected advanced frameworks or CMS beyond iWeb. Security posture is weak due to the absence of HTTPS, security headers, and privacy or cookie policies. No forms or data collection mechanisms are present, reducing attack surface but also limiting user engagement. Contact information is minimal, limited to a single email address and a LinkedIn profile link. Overall, the site is functional but lacks modern security, privacy compliance, and technical sophistication.

The website co2hero.com currently serves as a placeholder 'coming soon' page with minimal content and no business information. The domain is registered through a dropcatch registrar, indicating it is likely parked or awaiting future development. There is no indication of the company's business model, services, or target audience from the website content. Technically, the site is very basic, using simple HTML and CSS without modern frameworks or CMS. It lacks HTTPS, security headers, and any form of privacy or cookie policies, which significantly impacts its security posture and compliance. No contact information or forms are present, limiting user engagement and trust. Overall, the site is not yet operational as a business platform and presents a low trust and security profile.

The domain onebv.com is registered since 2009 with Tucows Domains Inc. and is currently pointed to WP Engine hosting. However, the website is not configured on the WP Engine platform, resulting in a 404 error page with no active content. There are no privacy, cookie, or terms of service policies present, nor any contact information or business details. The site uses Google Fonts and is hosted by WP Engine, implying a WordPress CMS environment, but no actual site content or technical metadata is available. Security posture is minimal with no HTTPS or security headers visible, and DNSSEC is not enabled on the domain. The domain registration data is consistent and legitimate, but the lack of active content and security best practices reduces trustworthiness.

Limo Labels is a Danish label manufacturing company that has recently become part of the All4Labels Global Packaging Group. The website currently serves as a maintenance and redirect notice, guiding users to the parent company's new website. The business operates in the manufacturing sector, focusing on label and packaging solutions for B2B clients. The domain is well-established since 2006, consistent with the company's history, and shows no signs of privacy protection or suspicious registration patterns. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, and it integrates Google Tag Manager for analytics and marketing purposes. However, the current page content is minimal, lacking privacy, cookie, or terms of service policies, and no contact information is provided on this maintenance page. Security posture is moderate with HTTPS enabled but missing important security headers and DNSSEC. Overall, the site reflects a basic but consistent brand presence aligned with its parent company.

The website roskildebank.dk currently serves as a placeholder page hosted by Dandomain A/S, a Danish web hosting and e-commerce service provider established in 1996. The site does not contain any content related to Roskilde Bank itself, but rather displays branding and contact information for Dandomain A/S. The business focus of the hosting provider includes web hosting, domain registration, webshop solutions, and related IT services targeted primarily at Danish businesses and individuals. From a technical perspective, the website is minimalistic, built with basic HTML and CSS, and lacks modern web technologies or CMS platforms. The site shows basic mobile responsiveness but lacks advanced SEO, accessibility features, and performance optimizations. No analytics or tracking technologies are detected, indicating minimal data collection. Security posture is weak due to absence of HTTPS enforcement and security headers, and no privacy or cookie policies are present to indicate GDPR compliance. The WHOIS data confirms the domain is registered to Dandomain A/S with a long history, supporting legitimacy. However, the lack of business-specific content and security best practices suggests the domain is not actively used for business operations currently. Overall, the site is low risk but also low value from a security and compliance perspective. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, improving security headers, and developing actual business content to enhance trust and compliance.

N

NEQ

neq.dk

0

NEQ is a Danish company founded in 2023, specializing in IoT-based diagnostics and optimization solutions for HVAC systems in the transportation sector, with a focus on electric vehicles. Leveraging over 60 years of automotive industry experience from its parent company Christonik, NEQ aims to improve customer experience, reduce carbon footprint, and enable predictive maintenance through innovative technology. The website is professionally designed using WordPress and common plugins, providing clear service descriptions and a contact form for inquiries. However, it lacks direct contact emails or phone numbers and does not publish privacy or cookie policies, which are important for GDPR compliance. Technically, the site uses HTTPS with good SSL configuration but lacks DNSSEC and security headers, representing areas for security improvement. The domain registration is consistent with the business claims and is publicly available, enhancing trustworthiness. Overall, NEQ presents a credible and professional digital presence but should address privacy compliance and security best practices to strengthen its security posture and regulatory adherence.

V

VSI Group Denmark ApS

vsi-group.dk

0

VSI Group Denmark ApS is a medium-sized full-service digital agency based in Denmark, offering a broad range of services including web design, web development, SEO, Google Ads, Facebook Ads, animation, hosting, and outsourcing. The company has over 10 years of experience and a team of approximately 60 employees, serving more than 1,000 clients. Their market position is that of an established and professional digital marketing and web development provider targeting businesses seeking comprehensive digital solutions. Technically, the website is built on WordPress using the Divi theme, incorporating modern analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and reCAPTCHA for security. The site is mobile-optimized and demonstrates good SEO practices. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though additional security headers could enhance protection. Privacy compliance is moderate, with a cookie consent mechanism present but no explicit privacy policy page detected. Overall, the website is professional and trustworthy, though the absence of WHOIS data for the domain reduces domain registration trustworthiness. Strategic recommendations include improving privacy disclosures, enhancing security headers, and verifying domain registration details.

The website at tweakker.com is currently inaccessible due to a security challenge page implementing a client-side proof-of-work captcha. This indicates the presence of a Web Application Firewall (WAF) or anti-bot mechanism that blocks direct access to the site's content. Consequently, no business-related content, contact information, or policies are available for analysis. The domain is registered since 2009 with GoDaddy.com, LLC and uses AWS Cloudfront CDN for content delivery. The technical infrastructure includes modern JavaScript cryptographic functions but lacks DNSSEC and visible security headers. The absence of privacy, cookie, and terms of service policies, combined with no contact or business information, results in a low trust and compliance posture. Overall, the site appears to be protected by security mechanisms but lacks transparency and user-facing content.

P

ProCon Danmark ApS

procondanmark.dk

0

ProCon Danmark ApS is a Danish consulting engineering firm specializing in building advisory services with over 25 years of experience. The company primarily serves private, public, and commercial clients in Denmark, focusing on the Copenhagen and Aarhus regions. Their services include project management, technical calculations, fire safety consulting, structural engineering, and construction supervision. The website reflects a professional and well-structured digital presence, supporting their market position as a trusted local engineering consultancy. Technically, the website is built on WordPress with modern tools such as Google Tag Manager, Microsoft Clarity, and Gravity Forms, ensuring good performance, SEO, and user experience. The site is mobile-optimized and accessible, with a clear navigation structure and comprehensive content. Privacy compliance is well addressed with a detailed cookie policy and consent mechanism. From a security perspective, the site enforces HTTPS and uses CAPTCHA on contact forms to mitigate spam. However, explicit security headers are not visibly configured, and there is no public security or incident response policy. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business profile, supporting legitimacy. Overall, ProCon Danmark ApS presents a credible, professional, and secure online presence suitable for their consulting engineering business. Strategic improvements in security headers and transparency policies could further enhance trust and compliance.

ScanBelt is a Denmark-based manufacturer specializing in modular plastic conveyor belts, positioning itself as a leading global player in this niche manufacturing sector. The company offers a broad and flexible product range targeting industrial clients and distributors worldwide. The website reflects a medium-sized enterprise with a professional online presence, including detailed product information, distributor contacts, and case studies. Technically, the site is built on Dynamicweb 8 CMS and uses Google Tag Manager for analytics, but it lacks HTTPS encryption and modern security headers, which are critical for protecting user data and maintaining trust. The presence of a cookie consent mechanism indicates some level of privacy compliance, although no privacy policy or terms of service pages were found. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and trustworthiness. Overall, the site is functional and informative but requires significant improvements in security and compliance to enhance its credibility and protect its users.

The website logimatic.com currently serves as a minimal redirect page informing visitors that Logimatic has transitioned to initgroup.io. The page contains no detailed business information, contact details, or policies, limiting the ability to assess the company's full scope or market position. The domain is well-established, registered since 1999, indicating a mature presence, but the current site content is basic and primarily functional as a redirect. Technically, the site uses simple HTML and CSS with Google Fonts, hosted by One.com A/S. There are no detected scripts, analytics, or advanced frameworks, reflecting a low digital maturity level. The site is mobile responsive and loads moderately fast but lacks SEO optimization and accessibility features. From a security perspective, the site uses HTTPS (implied by domain and modern standards), but no security headers or DNSSEC are enabled. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy, cookie, and incident response policies indicates compliance gaps. No contact or incident response channels are provided, which reduces trust and user assurance. Overall, the website poses a low risk but also offers limited business and security transparency. Strategic improvements in policy publication, contact availability, and security hardening are recommended to enhance trust and compliance.

The website jexen.dk represents a small Danish web design and hosting service provider, Skandiaweb A/S, established in 2007. The site is built on an outdated Joomla 1.5 CMS platform with basic content and navigation primarily targeting local businesses or individuals seeking web services. The company appears to have a modest market position with a focus on web design and hosting. Technically, the site uses legacy JavaScript libraries and lacks modern security features such as HTTPS and security headers, which exposes it to potential vulnerabilities. The presence of a cookie consent banner indicates some awareness of privacy regulations, but the absence of a privacy policy and terms of service pages highlights compliance gaps. Analytics are handled via a self-hosted Piwik (Matomo) instance, suggesting some control over user data collection. Overall, the website's security posture is weak due to outdated software and missing HTTPS, and privacy compliance is minimal. Strategic improvements in security, privacy documentation, and technology modernization are recommended to enhance trust and compliance.

The domain solutia.com represents a longstanding business entity likely involved in specialty chemicals and manufacturing, as suggested by the domain name and WHOIS registration dating back to 1997. However, the current website is inaccessible, returning a 503 Service Temporarily Unavailable error with minimal HTML content, preventing any meaningful content or security analysis. The lack of accessible content means no privacy, cookie, or terms of service policies are available, nor any contact or social media information. Technically, no information about the technology stack, hosting, or security headers could be determined. The WHOIS data indicates a legitimate domain with proper registration and no privacy protection, consistent with a reputable business. Overall, the website's digital presence is currently non-functional, limiting the ability to assess its security posture or compliance status.

The domain pingit.dk is registered since 2012 and currently active, hosted by JCD A/S. The website content is extremely minimal, serving as a placeholder page with only a logo and a single external link to jcd.dk. There is no business description, contact information, or any user-facing content that would indicate active business operations on this domain. The hosting provider appears to be JCD A/S, a Danish hosting company, which aligns with the domain's country of registration. The lack of content and policies suggests the domain may be parked or reserved for future use. From a technical perspective, the website lacks modern web features such as HTTPS, security headers, SEO metadata, and accessibility optimizations. No scripts, forms, or analytics tools are present, indicating a very basic technical infrastructure. The absence of HTTPS is a critical security concern, exposing visitors to potential risks. Security posture is weak due to missing HTTPS and security best practices. No privacy or cookie policies are present, and no contact or incident response information is provided. The WHOIS data is consistent and legitimate, with no privacy protection or suspicious patterns. Overall, the website does not currently support any business or compliance functions. Given these findings, the overall risk is moderate due to lack of security controls and transparency. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, providing contact information, and improving website content and technical implementation to support trust and compliance.

The website nisportal.com currently serves a robot challenge screen implementing a proof-of-work captcha mechanism to verify visitor legitimacy before granting access. This indicates the presence of a Web Application Firewall (WAF) or similar security control blocking direct content access. Due to this, no substantive business content, contact information, or policy documents are accessible for analysis. The domain is registered since 2008 with a reputable registrar and uses Microsoft Azure DNS hosting, suggesting a stable technical foundation. However, the lack of DNSSEC and security headers, combined with no visible HTTPS enforcement in the provided data, indicates room for security improvements. The site lacks privacy and cookie policies, contact details, and business transparency, which negatively impacts trust and compliance assessments.