What is the security status of curtisswright.com?

curtisswright.com has a security score of 71/100, rated as Safe. The website demonstrates good security practices.

Is curtisswright.com safe to use?

Our security scan shows curtisswright.com is Safe. SSL security issues detected. Always practice safe browsing habits.

Does curtisswright.com have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 71/100, the website is rated as Safe. However, websites can change over time, so always use updated security software.

What is curtisswright.com's trust score?

curtisswright.com has a security score of 71/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is curtisswright.com Safe? Security Analysis for Curtiss-Wright Corporation

https://curtisswright.com

Check if curtisswright.com is a scam or legitimate. Free security scan and reviews.

EnergyUnited Stateslarge

jQueryBootstrapDrupal 10Revolution SliderFont Awesome+1 more

Analyzed 10/3/2025Completed 4:07:27 PM

Security Score

MEDIUM RISK

AI Summary

Curtiss-Wright Corporation is a well-established industrial and defense engineering company with a strong presence in the energy, commercial, and industrial sectors. The company offers specialized manufacturing and engineering solutions tailored to these markets, positioning itself as a reliable and efficient partner. The website reflects a professional and consistent brand image, targeting B2B clients in specialized sectors. Technically, the website is built on Drupal 10 with modern front-end technologies such as jQuery and Bootstrap, hosted behind Cloudflare DNS services. While the site is mobile-optimized and offers a good user experience, there is room for improvement in accessibility and performance optimization. Security posture is moderate; domain registration protections are strong, but the site lacks visible security headers and DNSSEC is not enabled. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy transparency.

Detected Technologies

jQueryBootstrapDrupal 10Revolution SliderFont AwesomeGoogle Fonts

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Curtiss-Wright operates in critical sectors including defense, energy, and industrial markets, leveraging a long operational history since 1996. The company’s business model focuses on providing engineering and manufacturing solutions to commercial and government clients. The website content and structure indicate a mature organization with a clear market position and diversified service offerings. The absence of explicit contact emails or phone numbers suggests a controlled communication channel, likely to manage inquiries through forms. The company uses reputable registrars and DNS providers, indicating a focus on domain security. The presence of analytics and bot detection scripts shows an interest in monitoring user engagement and security threats. No direct partnerships or subsidiaries were identified from the website content.

Security Posture Analysis

Comprehensive Security Assessment

The security posture of the website is moderate. The domain is protected with clientDeleteProhibited and clientTransferProhibited statuses, reducing risk of hijacking. However, DNSSEC is not enabled, which is a missed opportunity for DNS security enhancement. The website lacks visible security headers such as Content Security Policy, X-Frame-Options, or HSTS, which are recommended best practices. No security policy or incident response contact information is published, limiting transparency in security governance. The use of third-party analytics and bot detection scripts introduces some privacy considerations. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the site is secure but could improve by adopting additional security headers and publishing security policies.

Strategic Recommendations

Priority Actions for Security Improvement

Enable DNSSEC to enhance DNS security and prevent spoofing.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Curtiss-Wright Corporation

Description:

Unlocking success with reliable solutions tailored for Commercial, Industrial, Defense, and Energy markets, ensuring efficiency and excellence in every sector.

Key Services:

Engineering solutionsManufacturing for defense and energy marketsIndustrial components and systems

Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:

jQueryBootstrapDrupal 10Revolution SliderFont AwesomeGoogle Fonts

Frameworks:

Drupal

Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:

60/100

Best Practices:

Domain status includes clientDeleteProhibited, clientTransferProhibited, clientUpdateProhibited

Analytics & Tracking

Services:

imirwin

Tracking Level:moderate

Privacy Compliance:poor

Advertising & Marketing

Tracking Pixels:

Monsido heatmapsCleanTalk bot detectorimirwin analytics

Marketing Tools:

Monsidoimirwin

Transparency Level:basic

Website Quality Assessment

Design Quality:good

User Experience:good

Content Relevance:good

Navigation Clarity:good

Professionalism:good

Trustworthiness:high

Key Observations

Website uses Drupal 10 CMS with modern front-end libraries.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

55/100

Score

Missing Strict-Transport-Security header

HIGH

Forces HTTPS connections

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Weak Referrer-Policy configuration

LOW

Current value: "same-origin"

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

17/100

Score

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

SPF Details

Record:

v=spf1 include:_spf.q4press.com include:sendgrid.net include:spf-002bf101.pphosted.com include:_spf.zycus.com include:es._spf.adp.com include:spf.protection.office365.us ip4:43.228.187.151 ip4:208.185.229.0/24 ip4:208.185.235.0/24 ip4:148.59.108.0/23 ip4: 148.59.106.0/23 ip4:35.80.141.6 ip4:44.229.121.55 ip4:148.59.100.16/28 ip4:67.23.50.0/25 ~all

DNS Lookups:6/10

Policy:~all

DMARC Details

Policy:reject

Subdomain Policy:reject

Aggregate Reports:dmarc_rua@emaildefense.proofpoint.com

Forensic Reports:dmarc_ruf@emaildefense.proofpoint.com

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

75/100

Score

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 30 days

Weak SSL Key Length

HIGH

SSL certificate uses 256-bit key, which is considered weak

Partial SSL/TLS Assessment

LOW

Completed 2 of 4 security checks due to time constraints

Certificate Details

Subject:curtisswright.com

Issuer:WE1

Valid Until:11/3/2025 (30 days)

SANs:curtisswright.com, *.curtisswright.com

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

85/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Registration Details

Domain Age

29 years(mature)

Expiry Risk

low(91 days)

Protection Level

strongDNSSEC OFF

DNS Records

A Records:104.18.1.119, 104.18.0.119

AAAA Records:2606:4700::6812:77, 2606:4700::6812:177

Name Servers:

keenan.ns.cloudflare.com

lola.ns.cloudflare.com

MX Records:

10: mxa-002bf101.gslb.pphosted.com

10: mxb-002bf101.gslb.pphosted.com

DNSSEC Status

DNSSEC Not Enabled

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100

Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on Drupal 10 CMS, leveraging a modern tech stack including jQuery, Bootstrap, and Revolution Slider for UI components. Hosting is supported by Cloudflare DNS services, providing DNS-level protection and performance benefits. The site includes external scripts for analytics (imirwin) and bot detection (CleanTalk), indicating active monitoring of traffic and security threats. Performance is moderate with good mobile optimization, but accessibility features are basic and could be enhanced. SEO is supported by proper meta tags and canonical links. The site uses Google Fonts and Font Awesome for typography and icons, contributing to a professional design. No critical technical issues were detected, but improvements in security headers and privacy compliance are recommended.

Analyze Another Website

Is curtisswright.com a Scam? Security Check Results - Curtiss-Wright Corporation Reviews

Is curtisswright.com Safe? Security Analysis for Curtiss-Wright Corporation

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing Strict-Transport-Security header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Weak Referrer-Policy configuration

👤GDPR Compliance

GDPR Compliance

No Data Protection Officer mentioned

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

📧Email Security

Email Security

Complex SPF record

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

SPF Details

DMARC Details

🏆SSL/TLS Security

SSL/TLS Security

SSL Certificate Expires Within 90 Days

Weak SSL Key Length

Partial SSL/TLS Assessment

Certificate Details

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

CAA Records Not Configured

Domain Registration Details

DNS Records

DNSSEC Status

⚡Network Security

Network Security

Good Network Security Posture

🔧Technical Analysis

Technical Analysis

Additional Findings