Security Directory

A

agru Kunststofftechnik GmbH

agru.at

0

AGRU Kunststofftechnik GmbH is a well-established Austrian manufacturer specializing in high-quality plastic piping systems and related products for industrial sectors such as energy, construction, and infrastructure. The company has a strong market position as a single-source supplier with a focus on innovation, quality, and employee orientation. Their website reflects a professional business presence with comprehensive product and market information, supported by active social media channels and a GDPR-compliant privacy framework. Technically, the site is built on TYPO3 CMS with modern frontend technologies but suffers from a critical lack of HTTPS, severely impacting security and trust. The absence of SSL/TLS encryption exposes users to risks and reduces the overall security posture. Privacy compliance is well addressed through cookie consent and a detailed privacy policy. However, direct contact information like emails or phone numbers is not explicitly provided, relying mainly on forms. Overall, the site is functional and informative but requires urgent security improvements to meet modern standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

C

Coloplast Group

coloplast.com

0

Coloplast is a mature, enterprise-level healthcare company headquartered in Denmark, specializing in intimate healthcare solutions such as ostomy, continence, bowel, wound, urology, and respiratory care. The company operates globally with a presence in over 100 countries and serves more than 2 million people annually. Their website reflects a professional and comprehensive digital presence, targeting healthcare professionals, patients, investors, and job seekers. Technically, the site uses modern JavaScript frameworks, Episerver CMS, and integrates multiple third-party services including Salesforce, Stripe, and Cookiebot. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by detailed investor relations and sustainability information. Overall, the site is professionally designed and trustworthy but requires urgent security improvements.

Lenze is a large manufacturing and technology company specializing in automation solutions for industrial machinery and systems. Their website targets industrial manufacturers and automation professionals, offering a broad portfolio of products, software, and services including training and aftersales support. The company maintains a strong global presence with localized content for Austria and other regions. Technically, the website is built on TYPO3 CMS with modern frontend technologies and good SEO and accessibility practices. However, a critical security weakness is the absence of a valid SSL certificate, resulting in no HTTPS support despite HSTS headers being present. Security headers and content security policies are well implemented, but the lack of SSL significantly reduces the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. Contact information is primarily via contact forms and social media channels, with no explicit emails or phone numbers visible. Overall, the website is professional and trustworthy but requires urgent SSL implementation to improve security and user trust.

P

Palmers Textil AG

palmers.at

0

Palmers Textil AG operates a well-branded e-commerce website focused on retailing lingerie, nightwear, and fashion apparel primarily targeting German-speaking European customers. The site leverages modern web technologies including Vue Storefront 2 and Magento backend, supported by AWS CloudFront CDN and various marketing and analytics tools such as Google Analytics and Facebook Pixel. Despite a professional presentation and comprehensive privacy and cookie policies, the website suffers from a critical security deficiency: the absence of a valid SSL/TLS certificate and HTTPS support, exposing users to potential data interception risks. Security headers are implemented but cannot compensate for the lack of encryption. The domain registration data aligns well with the business claims, indicating legitimacy and consistency. Overall, the website demonstrates good digital maturity but requires urgent security improvements to protect user data and enhance trust.

Software Competence Center Hagenberg (SCCH) is a medium-sized research and development center based in Austria, specializing in software competence and computational intelligence for industrial applications. The organization maintains a strong market position with national and international partnerships, offering services in data science, software science, project collaboration, consulting, and training. The website content is professionally presented in German, targeting industry professionals, researchers, partners, and potential employees. The business model focuses on research and innovation in technology for industry advancement. Technically, the website is built on the Contao Open Source CMS platform, utilizing Apache server technology and modern JavaScript libraries such as jQuery and Slick Carousel. Hosting is managed via Azure DNS services. While the website demonstrates good mobile optimization and basic SEO practices, performance metrics indicate slow loading times. Accessibility features are basic but present. From a security perspective, the site implements several important HTTP security headers including Content Security Policy, X-Frame-Options, and X-XSS-Protection. However, a critical weakness is the invalid SSL certificate and lack of proper HTTPS support, which significantly undermines the security posture. No advanced incident response or security policy documentation is found on the site. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Overall, the website is trustworthy and professionally maintained but requires urgent remediation of SSL/TLS issues to ensure secure communications and improve the security score. Strategic recommendations include fixing the SSL certificate, enabling modern TLS protocols, and enhancing performance and accessibility to strengthen the digital presence and security posture.

F

Fraunhofer Austria Research GmbH

fraunhofer.at

0

Fraunhofer Austria Research GmbH is a well-established applied research partner for the Austrian industry, specializing in digital networking, automation, machine vision, artificial intelligence, factory planning, production management, supply chain management, and digital logistics. The company operates as part of the larger Fraunhofer-Gesellschaft, Europe's largest applied research organization, positioning itself as a key player in Industry 4.0 within Austria. Their business model focuses on applied research and development through industry collaborations and publicly funded projects. Technically, the website is built on an Apache server with Adobe Experience Manager CMS, utilizing RequireJS and standard web technologies. While the site is mobile-optimized and well-structured with good SEO practices, performance data is limited and suggests slow loading. Accessibility is basic but functional. From a security perspective, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical vulnerability. Although some security headers like HSTS, X-Content-Type-Options, and X-XSS-Protection are present, the absence of HTTPS severely undermines the security posture. No incident response or vulnerability disclosure policies are evident, and cookie consent mechanisms are missing, indicating partial privacy compliance. Overall, the website is professional and credible with clear business information and social media presence. However, the critical lack of HTTPS and incomplete privacy mechanisms present significant risks. Strategic improvements in SSL deployment, security policies, and privacy compliance are recommended to enhance trust and security.

P

ProSiebenSat.1 PULS 4

atv.at

0

ATV.at is the official website of the Austrian TV channel ATV, operated under the parent company ProSiebenSat.1 PULS 4. The site offers streaming of live TV, video on demand, and detailed program guides, targeting German-speaking audiences interested in entertainment and reality TV. The business model is primarily advertising-driven, leveraging partnerships with streaming platforms like JOYN to deliver content. The website demonstrates a high level of digital maturity with modern web technologies such as React and Next.js, providing a responsive and user-friendly experience across devices. However, the site currently lacks a valid SSL certificate, which is a critical security gap. While privacy and legal policies are comprehensive and GDPR compliant, the absence of HTTPS and security headers reduces the overall security posture. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Strategic improvements in SSL implementation and security headers are recommended to enhance user trust and compliance.

J

Josef Manner & Comp AG

manner.com

0

Josef Manner & Comp AG operates the website manner.com, a well-established Austrian confectionery brand specializing in Viennese wafer specialties since 1890. The website showcases a comprehensive product range, including wafers, baking products, gingerbread, and merchandise, targeting consumers interested in traditional confectionery. The brand maintains a consistent and professional online presence with rich content, social media integration, and e-commerce capabilities. Technically, the site uses modern technologies such as Vue.js, Algolia search, and Cookiebot for consent management, hosted likely on DigitalOcean. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that undermines user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website is professional and credible but requires urgent security improvements to meet modern standards.

M

Moody’s Analytics Austria GmbH

kompany.com

0

kompany is a specialized provider of real-time official company information and compliance solutions, operating as a Moody’s Analytics Austria GmbH subsidiary. The company offers services such as KYC, KYB, AML, and UBO compliance tools, credit and register reports, and entity verification across over 115 million companies globally. Their market position is strong due to Moody’s backing, targeting businesses requiring robust compliance and risk management data. Technically, the website uses modern JavaScript frameworks, Google Analytics 4, and Cloudflare for hosting and CDN services, but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and TLS protocols significantly reduces the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, kompany presents a professional and trustworthy business front with room for critical security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

N

Novellini S.p.A

novellini.com

0

Novellini S.p.A is a well-established Italian manufacturer specializing in bathroom products such as shower cubicles, whirlpool baths, and shower trays. The company maintains a strong international presence with localized websites for many countries, targeting consumers and businesses in the bathroom fixtures market. The website is professionally designed using Adobe Experience Manager CMS and includes modern JavaScript libraries and Google Tag Manager for analytics. However, the site lacks HTTPS, which is a critical security vulnerability, and does not provide visible privacy or cookie policies, impacting privacy compliance. Social media presence is active and official, enhancing brand trust. Overall, the website demonstrates good business credibility but requires urgent security improvements.

I

Incentage AG

incentage.com

0

Incentage AG is a Swiss-based software company specializing in innovative financial technology solutions for banking and financial institutions. Their offerings include modular platforms for payment processing, securities transactions, innovation acceleration, and risk management with cyber protection. The company positions itself as a pioneer in accelerating financial innovation with a focus on flexibility and end-to-end security. The website reflects a professional and consistent brand image targeting financial sector clients. Technically, the site uses modern web technologies including Webflow CMS, jQuery, Weglot for translations, and Google Tag Manager for analytics. Hosting is via Cloudflare, but a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a privacy policy, though no explicit security policy or incident response contacts are found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in SSL/TLS deployment and enhanced security practices are recommended to strengthen trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Z

Zeus Petruzalek

petruzalek.com

0

Zeus Petruzalek is a well-established B2B manufacturer and distributor specializing in food packaging products and packaging machines. As part of the Zeus Group, it operates across multiple countries with a strong market presence in the manufacturing sector. The website demonstrates a professional and comprehensive digital presence with multilingual support and extensive product catalogs. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and analytics tools, though performance metrics are not optimal. Security posture is weak due to the absence of a valid SSL certificate and HTTPS, exposing the site to risks and reducing trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is credible and professional but requires urgent security improvements to protect user data and enhance trust.

The website sergiotanus.com currently serves as a minimal placeholder with an immediate redirect to a 'defaultsite' page and no substantive content or metadata. The domain is registered and hosted via Ionos with DNS records properly configured, including valid SPF records for email. However, the site lacks a valid SSL/TLS certificate and does not support HTTPS, which is a critical security deficiency. There are no privacy, cookie, or terms of service policies present, nor any contact or business information available on the site. Technically, the site is very basic with no detectable frameworks, scripts, or analytics, indicating low digital maturity. Security posture is weak due to the absence of HTTPS and security headers, and the site does not implement modern security best practices. Overall, the website appears inactive or underdeveloped, which significantly limits its business credibility and trustworthiness.

D

DR YIELD software & solutions GmbH

dryield.com

0

DR YIELD software & solutions GmbH is a mature technology company specializing in smart data analysis and AI-driven yield analytics for the semiconductor industry. With over 20 years of experience, the company offers the YieldWatchDog platform and related modules to help semiconductor manufacturers improve product quality, reduce costs, and accelerate yield ramp. The website reflects a professional B2B software provider with a global customer base and strong industry trust signals. Technically, the site is built on WordPress with Elementor and leverages Cloudflare for CDN and caching, alongside Matomo for analytics. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, leaving the site without HTTPS protection. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is content-rich and professionally presented but requires urgent security improvements to protect user data and enhance trust.

M

Mundipharma International Limited

mundipharma.com

0

Mundipharma International Limited operates a global healthcare website focused on pharmaceutical and consumer health products with a strong patient-centric approach. The website targets healthcare professionals, patients, and partners, providing corporate information, career opportunities, and media resources. The digital infrastructure is built on Drupal CMS with integrations including Google Analytics, Hotjar, and various marketing and tracking tools, hosted behind Cloudflare CDN. While the website content is professionally presented with good navigation and mobile optimization, the security posture is weakened by an invalid SSL certificate and lack of TLS protocol support, which are critical issues that must be addressed to ensure secure communications and user trust. Privacy and cookie policies are comprehensive and GDPR compliant, but no explicit security policy or incident response information is publicly available. Overall, the website is credible and professionally maintained but requires urgent SSL/TLS remediation to improve security and trust.

Y

YTMP3

jobrocker.com

0

The website jobrocker.com operates as an online YouTube to MP3 and MP4 conversion service branded as YTMP3. It targets a broad audience including casual listeners, educators, and content creators by providing a free, fast, and easy-to-use tool without requiring registration or payments. The site emphasizes speed, audio quality, and simplicity, positioning itself as a reliable alternative to other converters. Technically, the site uses standard web technologies with Cloudflare CDN and Google Analytics for tracking, but lacks HTTPS encryption, which is a significant security concern. The absence of cookie consent and privacy compliance mechanisms further impacts user privacy. The domain is very new, registered in early 2025, consistent with the site's recent launch. Security posture is weak due to missing SSL and security headers, and no incident response or security policy information is provided. Overall, the site offers functional service but requires urgent security improvements to protect users and enhance trust.

D

Domain has been suspended

riseragency.com

0

The website riseragency.com is currently inaccessible for normal business operations as it displays a suspension notice due to failure to verify the registrant email address within the ICANN mandated 15-day period. No business-related content, contact information, or service descriptions are available, indicating the site is non-operational. The technical infrastructure is minimal, running on an Apache server with no SSL/TLS certificate, serving content over HTTP only. The presence of Google reCAPTCHA v2 on the suspension form suggests some basic bot protection on the verification process. Security posture is weak with no HTTPS, no modern TLS protocols, and no security headers implemented. The domain is registered and not vulnerable to subdomain takeover, but the suspension status and lack of compliance with ICANN email verification requirements significantly reduce trust and operational credibility. Overall, the site scores very low on content quality, security, privacy compliance, and business credibility, making it unsuitable for any business or customer engagement at this time.

M

Mersen

mersen.com

0

Mersen is a global industrial company specializing in electrical power and advanced materials, serving high-tech industries with customized solutions and key products. The company operates worldwide with over 50 industrial sites and 21 R&D centers across 33 countries, positioning itself as a leader in its sector. The website reflects a mature digital presence with comprehensive content, multi-language support, and active social media engagement. Technically, the site is built on Drupal 10 and leverages modern CDN and observability tools, but lacks a valid SSL certificate and modern TLS support, which is a critical security gap. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit security policy or incident response information is provided. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect users and maintain credibility.

W

WAFF

waff.com

0

WAFF is a well-established local media company serving Huntsville, Alabama, providing comprehensive news, weather, and sports coverage. The website demonstrates a strong digital presence with rich content, video integration, and community engagement features. The technical infrastructure leverages modern web technologies and Arc Publishing CMS, ensuring good performance and mobile optimization. However, the absence of a valid SSL certificate and HTTPS support significantly impacts the security posture, exposing users to potential risks. Privacy policies and terms of service are well documented, indicating compliance awareness, though cookie consent mechanisms are lacking. Overall, WAFF presents a professional and trustworthy media outlet with room for security enhancements.

T

TCG UNITECH GmbH

unitech.at

0

TCG UNITECH GmbH is a well-established manufacturing company based in Austria, specializing in lightweight metal and plastic components for the automotive industry. The company operates as part of the Gnutti Carlo Group and offers a range of services including die casting, injection molding, and engineering solutions. Their website reflects a professional corporate presence with detailed information about their products, services, and corporate values. Technically, the site is built on WordPress with modern SEO practices and multilingual support, but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS impacts the overall security posture and trustworthiness of the site. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

Binder Grösswang Rechtsanwälte GmbH is a leading Austrian law firm with over 60 years of experience providing comprehensive legal services to national and international clients. The firm holds a strong market position supported by multiple prestigious awards such as 'Law Firm of the Year - Austria' and consistent Tier 1 rankings. Their service offerings span various legal specialties and industries, targeting businesses and individuals seeking expert legal counsel. Technically, the website is built on TYPO3 CMS with modern frontend technologies and demonstrates good mobile optimization and accessibility. However, the website suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

I

iodata GmbH

iodata.de

0

iodata GmbH is a medium-sized German technology company specializing in data analytics, business intelligence, and data integration solutions primarily using Qlik and Talend technologies. Established in 2007, the company positions itself as a leading provider and certified Qlik Elite Channel Partner, offering a comprehensive range of services including consulting, managed services, BI training, and advanced data integration platforms. The website reflects a professional and consistent brand image targeting business clients seeking advanced data-driven decision-making tools. Technically, the site leverages modern web technologies and HubSpot CMS, with integrations for cookie consent and analytics. However, a critical security gap exists due to the absence of a valid SSL certificate, exposing users to risks and undermining trust. Security headers are partially implemented, but the lack of HTTPS significantly lowers the security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is content-rich and credible but requires urgent security improvements to align with best practices.

M

MM Group

mm-packaging.com

0

MM Packaging, a division of MM Group, is a leading global manufacturer of consumer packaging solutions specializing in pharmaceuticals, food, beauty, and consumer goods sectors. The company operates a network of 56 packaging sites worldwide, emphasizing innovation and sustainability in its product offerings. The website reflects a mature digital presence with comprehensive content, multilingual support, and strong branding consistent with an enterprise-level organization. Technically, the site is built on WordPress with modern marketing and analytics integrations, but suffers from a critical lack of a valid SSL certificate and modern TLS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business credibility and content quality are high, but the security deficiencies pose a risk to user trust and data protection.

T

The United Nations in Vienna

unvienna.org

0

The United Nations in Vienna website serves as the official digital presence of the UN's Vienna-based offices and agencies. It provides comprehensive information about the UN family in Vienna, their initiatives, sustainable development goals, and visitor information. The site targets a broad audience including diplomats, researchers, media, and the general public interested in UN activities. The business model is informational and public service-oriented, reflecting the UN's governmental and non-profit nature. The website is well-branded, consistent, and authoritative in its domain space. Technically, the site uses a combination of AngularJS and React frameworks, served via Apache, with integration of Google Tag Manager for analytics. The site is mobile optimized and has good navigation and content quality. However, performance metrics are unavailable, and accessibility is basic. SEO is moderately implemented with proper meta tags and Open Graph data. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. While some security headers are present, the absence of TLS protocols, cipher suites, DMARC, DNSSEC, and CAA records indicates a weak security posture. No incident response or vulnerability disclosure information is publicly available. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite tracking scripts. Overall, the website is trustworthy and credible given its UN affiliation and mature domain. However, the lack of HTTPS and modern security practices significantly lowers its security score and poses risks to users. Strategic improvements in SSL deployment, email security, and privacy compliance are recommended to enhance trust and security.

S

Semperit AG Holding

semperitgroup.com

0

Semperit AG Holding is a well-established global manufacturer specializing in industrial polymer products and solutions, with a history dating back to 1824. The company operates multiple business divisions including hoses, profiles, form, conveyor belts, and Rico products, targeting industrial clients and investors. The website reflects a mature and professional digital presence, leveraging TYPO3 CMS and modern web design principles to provide a rich user experience. However, the absence of HTTPS and valid SSL certificates represents a significant security vulnerability that undermines user trust and data protection. While privacy and cookie policies are comprehensive and GDPR compliant, the lack of explicit security and incident response information suggests room for improvement in transparency and preparedness. Overall, the domain registration and WHOIS data confirm the legitimacy and maturity of the business, supporting a high trustworthiness rating despite technical security shortcomings.

Flughafen Wien AG operates Vienna International Airport, providing a wide range of passenger services including flight information, parking, lounges, VIP services, and retail. The website targets passengers, business partners, and visitors, positioning itself as a leading airport in Austria with comprehensive service offerings. The digital infrastructure uses modern frameworks like Bootstrap and integrates privacy-conscious analytics via Matomo. However, the absence of a valid SSL certificate and HTTPS significantly undermines the security posture. Security headers are partially implemented, but critical improvements are needed to secure user data and communications. The domain is mature and legitimately registered, consistent with the airport's long-standing presence. Overall, the website is professional and content-rich but requires urgent security enhancements.

S

Skyliner Automatisering B.V.

skyliner.nl

0

Skyliner Automatisering B.V. is a mature Dutch ICT service provider established in 1999, offering a broad range of ICT solutions including system management, cloud services, VoIP, software development, and security services. The company targets businesses and organizations in the Netherlands seeking reliable and comprehensive ICT support. Their market position is supported by long domain tenure, recognized certifications, and positive customer testimonials. Technically, the website is built on WordPress with modern plugins and scripts, but suffers from a lack of proper SSL/TLS configuration, impacting security posture. The site is well structured with good SEO and mobile optimization, though performance metrics indicate slow loading. Security-wise, the absence of HTTPS and security headers are critical issues, though no active vulnerabilities or WAF blocking were detected. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the website reflects a credible and professional ICT business but requires urgent improvements in SSL security to enhance trust and compliance.

R

Reppublika Research

mindtake.com

0

Reppublika Research is a well-established full-service market research institute specializing in data-driven media and consumer research across Germany, Austria, and the CEE region. With over two decades of experience, the company offers comprehensive quantitative, qualitative, and behavioral research services, supported by proprietary panels and advanced technical capabilities. Their client portfolio includes major corporations such as Google, IKEA, and Allianz, underscoring their strong market position and credibility. Technically, the website is built on the Wix platform, leveraging a modern tech stack including React 18 and various Wix apps, ensuring a professional and content-rich online presence. However, the security posture is currently limited by the absence of a valid SSL certificate and proper HTTPS configuration, which poses a significant risk and impacts user trust. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the company demonstrates strong business credibility and digital maturity but should prioritize improving its security infrastructure to enhance trust and protect user data.

The website prinzhorn-holding.com is currently inaccessible due to a configuration issue where plain HTTP requests are sent to an SSL-enabled server port, resulting in a 400 Bad Request error. This prevents access to any meaningful content, including business information, policies, or contact details. The technical infrastructure is based on Apache running on Amazon Linux with OpenSSL, but no valid SSL certificate is installed, and no modern TLS protocols are enabled. DNS records are properly configured with valid MX and NS entries, and SPF records indicate legitimate email sending sources. However, the lack of HTTPS and security headers severely impacts the security posture. No privacy or cookie policies are present, and no contact or business information is visible on the landing page, limiting trust and credibility. Overall, the site is not currently usable for visitors and requires urgent remediation of SSL and content accessibility issues.

I

International Jet Management GmbH

ijm.at

0

International Jet Management GmbH is a specialized aviation management company based in Austria, providing aircraft management, charter services, and fleet operations primarily targeting business aviation clients. The company holds recognized certifications such as IS-BAO and has approvals from aviation authorities, positioning it as a credible player in the transportation sector. The website reflects a professional business presence with clear service offerings and contact information. Technically, the website is built on WordPress with common libraries like jQuery and Modernizr, and uses Yoast SEO for optimization. However, the site lacks HTTPS, which is a significant security concern. The absence of SSL/TLS encryption exposes users to potential data interception risks. Security headers are minimal, and no advanced security policies or incident response contacts are published. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is implemented. Overall, the site demonstrates moderate digital maturity but requires urgent improvements in security posture to protect user data and enhance trust.

D

Diesel

diesel.com

0

Diesel operates a global e-commerce platform specializing in fashion apparel and accessories, providing localized shopping experiences through country-specific domains. The website analyzed is a country selector landing page that directs users to various regional sites. The technical infrastructure leverages Salesforce Commerce Cloud (Demandware) and is hosted behind Cloudflare, with usage of Adobe Fonts and Tealium for analytics and marketing. However, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical security deficiency. Security headers are partially implemented, but the absence of HTTPS significantly undermines the security posture. Privacy and cookie policies are not present on this landing page, and no contact information is provided, limiting transparency and compliance with privacy regulations. Overall, the site demonstrates a basic level of technical and content maturity but requires urgent improvements in security and privacy compliance to meet modern standards.

P

Post & Co

post-co.com

0

Post & Co is an independent provider specializing in marine liability and logistics insurance, serving a broad range of clients in the maritime and logistics sectors including ship owners, charterers, terminal and transport operators, and port authorities. The company emphasizes quality service, innovation, and market focus, with a presence in Rotterdam, Antwerp, and Frankfurt. Their website reflects a professional business with multilingual support and clear contact channels. Technically, the site is built on WordPress using common plugins and frameworks but lacks a valid SSL certificate, which significantly impacts security posture. The site uses Google Analytics and has cookie consent mechanisms in place, indicating some privacy compliance. However, the absence of HTTPS and modern TLS protocols presents a critical security risk. Overall, the business appears legitimate and established, but the website requires urgent security improvements to protect user data and enhance trust.

M

MARTIN NEUHAUS

martinneuhaus.de

0

The website martinneuhaus.de serves as a personal portfolio and professional presentation platform for Martin Neuhaus, an actor based in Schwerin, Germany. The site primarily targets German-speaking audiences interested in theater and acting, offering access to showreels and professional contact via email and social media. The business model is focused on personal branding and professional networking within the media industry. The website is small scale and individual in nature, with consistent branding and basic content quality. Technically, the site is built on WordPress 6.8.1 using the Mesmerize Pro theme and several common plugins such as Contact Form 7 and CoBlocks. It is hosted likely on GoDaddy infrastructure, inferred from DNS and mail server data. The site suffers from slow performance with a load time exceeding 20 seconds, but it is mobile optimized and has good SEO metadata implemented. Accessibility is basic but present. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. No security headers or advanced TLS protocols are enabled, and no incident response or vulnerability disclosure policies are found. Privacy compliance is minimal with no privacy or cookie policies detected. The domain registration is consistent and legitimate, with no privacy protection or suspicious red flags, but domain protection locks are not enabled. Overall, the site presents moderate business credibility but poor security and privacy posture. Strategic improvements should focus on enabling HTTPS, implementing security headers, adding privacy and cookie policies, and improving site performance to enhance trust and compliance.

WEB Windenergie AG is a large Austrian renewable energy company specializing in wind, photovoltaic, and hydropower plants. The company emphasizes citizen participation and operates across eight countries on two continents. Their business model focuses on green energy production and investment opportunities, positioning them as a leading player in Austria's renewable energy sector. The website is professionally designed with comprehensive content targeting private customers, business clients, municipalities, and investors. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and responsive design, but lacks HTTPS, which is a critical security flaw. Security headers are partially implemented, but the absence of SSL/TLS severely impacts the security posture. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Contact information and trust signals such as certifications and social media presence enhance business credibility. Overall, the site is functional and professional but urgently requires HTTPS implementation to improve security and trust.

Digital Realty Trust operates a global platform of data centers and colocation services under the PlatformDIGITAL® brand, serving a broad range of enterprise, cloud, and network customers. The company is a market leader with a large global footprint, extensive certifications, and a strong partner ecosystem including AWS, Google Cloud, IBM, Oracle, NVIDIA, HPE, and Microsoft Azure. The website content is rich, professionally designed, and well-structured, targeting enterprises needing secure, scalable, and interconnected IT infrastructure. Technically, the site uses modern frameworks like Next.js and React, with integrations for marketing and analytics tools such as Marketo and VWO. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that impacts trust and security. Privacy and cookie policies are present with consent mechanisms, indicating good privacy compliance. Overall, the site demonstrates high business credibility but requires urgent improvements in SSL/TLS configuration to enhance security.

D

DS Smith

dssmith.com

0

DS Smith is a leading international manufacturer specializing in sustainable packaging solutions, paper products, and recycling services. The company positions itself as a global leader in sustainability within the packaging industry, targeting businesses seeking eco-friendly and innovative packaging and recycling options. The website reflects a mature digital presence with comprehensive content, multi-language support, and strong branding consistency. Technically, the site uses modern web technologies including React, Google Tag Manager, Google Analytics, and Microsoft Application Insights, hosted behind Cloudflare for performance and security. However, the SSL certificate is currently invalid or missing, which undermines the security posture. The site implements strong security headers and content security policies but has a notable subdomain takeover vulnerability on shop.dssmith.com. Privacy and cookie policies are present with consent mechanisms, indicating good GDPR compliance. Contact information is primarily via forms and physical address, with no explicit emails or phone numbers on the homepage. Social media presence is robust and consistent with corporate branding.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

T

Tranter Inc.

tranter.com

0

Tranter Inc. is a global manufacturer specializing in advanced gasketed and welded plate heat exchangers, serving diverse industrial sectors such as energy, marine, HVAC, and manufacturing. The company emphasizes innovation, quality, and sustainability, supported by a global service network and a strong digital presence powered by HubSpot CMS and marketing tools. Their website offers comprehensive product information, customer stories, and resource materials tailored to industrial clients worldwide. Technically, the website is built on a modern CMS platform with integration of analytics and marketing technologies like Google Tag Manager and Cookiebot for privacy compliance. The site is well-structured, mobile-optimized, and professionally designed, providing a good user experience and clear navigation. However, the security posture is critically weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing visitors to potential risks. While security headers are partially implemented, the lack of TLS protocols and cipher suites significantly undermines the site's security. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site presents a professional and credible business front but requires urgent remediation of its SSL/TLS configuration to ensure secure communications and protect user data. Strategic improvements in security and incident response readiness are recommended to enhance trust and compliance.

The website cofelyaxima-gdfsuez.com currently hosts a minimal placeholder page indicating it is parked, with no active business content or contact information. The domain is registered and configured with basic DNS records including mail forwarding, but lacks any SSL certificate or HTTPS support, resulting in an insecure connection. There are no privacy, cookie, or terms of service policies present, and no evidence of business operations or services offered. The technical infrastructure is minimal, with slow page load and no modern web technologies detected. Security posture is weak due to lack of HTTPS and security headers, and no incident response or data protection information is available. Overall, the site presents a low trust profile and appears inactive or unused for legitimate business purposes.

B

BWT Holding GmbH

christaqua.com

0

BWT Holding GmbH operates a professional and content-rich website focused on providing ultra-pure water solutions for the pharmaceutical, biotech, and cosmetics industries. The company positions itself as a market leader with a comprehensive product and service portfolio including purified water generation, water for injection, pure steam, and automation solutions. The website demonstrates strong branding consistency, excellent content quality, and clear navigation targeting a B2B audience in healthcare. Technically, the site uses Microsoft IIS, JavaScript libraries, Google Tag Manager, and Cookiebot for consent management, with Sitecore CMS inferred. However, the site lacks a valid SSL certificate and HTTPS support, which is a critical security vulnerability. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Contact information is primarily via a contact form, with no explicit emails or phone numbers found. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and ensure secure communications.

H

HumanWare

humanware.com

0

HumanWare is a globally recognized leader in assistive technology for people who are blind or have low vision, offering a wide range of products including electronic magnifiers, braille devices, and software solutions. The company operates under the parent company EssilorLuxottica and serves a diverse audience including students, workers, veterans, and eye care professionals. Their website is professionally designed with rich content and multilingual support, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and integrates modern marketing and analytics tools such as Google Analytics and Facebook Pixel. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS configuration, which significantly impacts the site's security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the business credibility and content quality are high, but urgent improvements in SSL/TLS security are recommended.

D

DaoPay GmbH

daopay.com

0

DaoPay GmbH is a licensed Austrian payment service provider offering a broad range of secure and simple payment solutions for online merchants globally. The company supports over 80 payment methods including major credit cards, PayPal, SEPA, and direct carrier billing, positioning itself as a comprehensive payment gateway and merchant account provider. Their target audience includes online businesses seeking to expand payment options and increase customer convenience. The website is professionally designed with clear navigation and relevant content, supporting a medium-sized enterprise profile in the finance and technology sectors. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and Visual Composer, indicating a mature digital infrastructure. However, performance is slow and accessibility is basic. The site is mobile optimized and SEO is well implemented. Security posture is weak due to the absence of a valid SSL certificate and outdated TLS protocols, which poses significant risks for a payment service provider. Privacy and cookie policies are comprehensive and GDPR compliant, with explicit consent mechanisms in place. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Social media presence and contact information are comprehensive, enhancing business credibility. Strategic recommendations include immediate remediation of SSL/TLS issues, enabling modern security protocols, and enhancing DNS security configurations to improve trust and compliance.

S

St. Anna Kinderspital

stanna.at

0

St. Anna Kinderspital is a well-established pediatric hospital located in Vienna, Austria, providing comprehensive medical care for children and adolescents. The website reflects a strong commitment to patient care and family support, offering detailed information about medical departments, services, and patient guidance. The institution operates as a non-profit entity supported by donations, with clear calls to action for donations and career opportunities. Technically, the website is built on WordPress with modern plugins for SEO, multilingual support, and cookie management, but lacks HTTPS which is a critical security shortfall. Security headers are partially implemented, but the absence of SSL/TLS and modern TLS protocols significantly weakens the security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional and trustworthy but urgently needs to implement HTTPS to protect user data and improve security.

C

CyberTrap Software GmbH

cybertrap.com

0

CyberTrap Software GmbH is a cybersecurity company specializing in deception technology to proactively detect, deceive, trap, and learn from cyber attackers. Positioned as a sophisticated provider with global accreditations, CyberTrap targets organizations seeking advanced threat detection solutions. The website is built on HubSpot CMS with integrated marketing and analytics tools, demonstrating a moderate level of digital maturity. However, the absence of HTTPS/SSL is a critical security vulnerability that undermines the security posture. While privacy policies and cookie consent mechanisms are in place and GDPR compliant, the lack of secure transport protocols poses significant risk. Overall, CyberTrap presents a professional and trustworthy business front but must urgently address SSL implementation to improve security and trust.

U

Usecon gmbh

usecon.com

0

Usecon gmbh is an established technology and consulting company based in Vienna, Austria, founded in 2001. The company specializes in digital transformation, development, and AI solutions with a strong focus on human-centered design. Their market position is solid with over 24 years of experience and more than 1000 projects completed, targeting businesses seeking digital innovation and consulting services. The website content is well-structured and professional, supporting their business credibility. Technically, the website uses modern frontend technologies such as JavaScript and Tailwind CSS, but suffers from slow load times and lacks HTTPS support due to an invalid or missing SSL certificate. This significantly impacts the security posture and user trust. No CMS or backend platform is explicitly detected. Mobile optimization is good, but accessibility and SEO optimizations are basic. From a security perspective, the absence of HTTPS and modern TLS protocols is a critical vulnerability. No security headers or incident response policies are present, and no vulnerability disclosure mechanisms are found. Privacy and cookie policies exist and appear GDPR compliant, supporting privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional but requires urgent security improvements, especially implementing a valid SSL certificate and enabling HTTPS. Performance optimization and enhanced security headers would further improve the security posture and user trust.

C

Coop Himmelb(l)au

coop-himmelblau.at

0

Coop Himmelb(l)au is a globally recognized architecture firm headquartered in Vienna, Austria, with additional offices in Tirana and Dubai. The firm specializes in innovative architectural design and urban planning, serving a diverse international clientele. Their portfolio includes a wide range of projects such as cultural institutions, residential buildings, office complexes, and mixed-use developments, highlighting their expertise and market presence in the real estate and architectural sectors. The website reflects a professional and comprehensive presentation of their work, targeting clients and stakeholders interested in cutting-edge architectural solutions. Technically, the website is built on a modern stack including Apache server, JavaScript frameworks, and analytics tools like Google Analytics and Matomo. It uses Kirby CMS inferred from URL patterns and asset paths, and is hosted on weber.cloud. The site is well-optimized for mobile devices and accessibility, with good SEO practices and clear navigation. However, performance metrics are moderate, indicating room for improvement in loading speed. From a security perspective, the site lacks HTTPS, which is a critical vulnerability. While some security headers are present, the absence of SSL/TLS encryption severely impacts the overall security posture. No incident response or security policy documents are found, and no vulnerability disclosure or security.txt files are present. Privacy compliance is good, with a comprehensive privacy policy and cookie consent mechanisms in place, including GDPR compliance indicators. Overall, the website is professionally designed and content-rich, supporting the firm's strong market position. However, the lack of HTTPS is a major security risk that must be addressed immediately to protect user data and maintain trust. Strategic recommendations include implementing SSL/TLS, enhancing security headers, and publishing security and incident response policies to improve the security maturity and compliance posture.