Skip to main content

Is ceshiyiqi.com a Scam? Security Check Results - 山东云唐智能科技有限公司 Reviews

Is ceshiyiqi.com Safe? Security Analysis for 山东云唐智能科技有限公司

https://ceshiyiqi.com

Check if ceshiyiqi.com is a scam or legitimate. Free security scan and reviews.

ManufacturingChinamedium
jQuery 1.4.2Nivo SliderFont AwesomeBaidu AnalyticsBaidu Site Verification+2 more
Analyzed 8/3/2025Completed 1:57:44 PM
37
Security Score
HIGH RISK

AI Summary

山东云唐智能科技有限公司专注于研发和生产土壤检测设备、肥料检测仪及相关农业检测仪器,面向农业生产者、检测机构及食品药品监督部门提供高性价比的快检设备和技术服务。公司具备一定的技术实力和市场影响力,产品销往全国,拥有丰富的客户案例和技术支持体系。网站技术架构基于传统的HTML5和较旧的jQuery库,集成了百度分析和跟踪工具,整体性能和移动优化处于基础水平。安全方面,网站缺少现代安全头部和最新库版本,存在一定安全风险。WHOIS信息缺失降低了域名的信任度,但网站内容专业且详实,显示出真实的业务运营。建议加强安全措施,完善隐私合规,提升技术栈现代化水平以增强整体数字成熟度和安全防护。

Detected Technologies

jQuery 1.4.2Nivo SliderFont AwesomeBaidu AnalyticsBaidu Site VerificationHTML5CSS3

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

该公司定位于农业检测设备制造与销售,采用直销和定制服务模式,目标客户涵盖农业生产者及监管检测机构。公司通过技术研发积累专利和知识产权,保持行业竞争力。网站展示了丰富的产品线和客户案例,体现出较强的市场渗透力。合作伙伴网站多为相关检测设备领域,形成一定的生态圈。缺乏公开的隐私政策和WHOIS信息可能影响部分客户信任。整体业务模式稳健,具备中型企业规模特征,未来可通过技术升级和合规完善提升市场地位。

Extracted Contact Information

Marketing Intelligence Data

Phone Numbers (1)

133*******

Security Posture Analysis

Comprehensive Security Assessment

当前安全成熟度中等,网站启用HTTPS但未显示安全头部,使用过时的jQuery版本存在潜在漏洞。表单安全措施不足,缺少CSRF防护。无公开的安全政策或事件响应信息,缺乏安全文化展示。建议升级前端库,部署安全头部,强化表单安全,制定并公开安全政策和事件响应流程,以降低潜在风险并提升客户信任。

Strategic Recommendations

Priority Actions for Security Improvement

1

升级jQuery及其他前端库至最新安全版本,消除已知漏洞。

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

山东云唐智能科技有限公司

Description:

山东云唐生产研发土壤检测设备、肥料检测仪、测土仪、土壤检测仪,源头厂家直销,品质保证,售后有保障,主营农残检测仪、兽药残留检测仪、食品安全检测仪等快检设备,提供综合解决方案,产品销往全国各地。

Key Services:
土壤检测设备研发与生产肥料养分检测仪制造技术咨询与培训售后保障服务
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
jQuery 1.4.2Nivo SliderFont AwesomeBaidu AnalyticsBaidu Site VerificationHTML5CSS3
Performance:

moderate

Mobile:

basic

Accessibility:

basic

SEO:

basic

Security Assessment

Security Score:
55/100
Best Practices:
  • Use of HTTPS assumed (URL is https)
  • No exposed sensitive data in HTML
  • Forms use GET method for search

Analytics & Tracking

Services:
Baidu Analytics
Tracking Level:moderate
Privacy Compliance:poor

Advertising & Marketing

Ad Networks:
affim.baidu.com
Tracking Pixels:
hm.baidu.com
Marketing Tools:
Baidu Analytics
Transparency Level:basic

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:moderate

Key Observations

1

Website is fully accessible with rich content in Chinese language.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

20/100
Score

Missing Strict-Transport-Security header

HIGH

Forces HTTPS connections

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

50/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: transport, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

60/100
Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

0/100
Score

Unable to retrieve SSL certificate

CRITICAL

Could not establish secure connection to retrieve certificate information

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

75/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

No DMARC Record

MEDIUM

DMARC policy not configured

DNS Records

A Records:123.56.45.118
Name Servers:
ns1.judns.comDNS only
ns2.judns.comDNS only
SOA:Serial: 1729065355, TTL: 600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:363ms

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

20/100
Score

High-Risk Service Exposed: FTP

HIGH

Port 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

网站采用传统HTML5结构,集成了较旧版本的jQuery和Nivo Slider插件,依赖百度的分析和验证服务。缺少现代前端框架和响应式设计优化,移动端体验基础。SEO基础良好,包含关键词和描述元标签。无明显托管信息,性能表现中等。技术栈存在技术债务,建议逐步迁移至现代框架和优化性能以提升用户体验和安全性。
Analyze Another Website