Is gdjhdb.com Safe? Security Analysis for 广东省晋华诉讼保全担保有限公司
Check if gdjhdb.com is a scam or legitimate. Free security scan and reviews.
AI Summary
广东省晋华诉讼保全担保有限公司是一家专业的国有控股司法担保机构,成立于2016年,注册资本15亿元,专注于诉讼保全担保及相关法律担保服务,服务覆盖全国30个省市,拥有3000多家企业客户。网站内容丰富,涵盖公司简介、服务项目、团队风采及热门问答,体现出较强的业务专业性和市场定位。技术上,网站采用主流前端技术如Bootstrap和jQuery,集成了百度统计和TTKefu在线客服,具备良好的用户交互体验和移动端适配能力。安全方面,网站使用HTTPS,但缺少关键安全头部配置,且未发现隐私政策和Cookie政策,存在合规风险。WHOIS信息缺失,域名注册状态不明,影响整体信任度。建议加强安全配置和合规披露,提升域名注册透明度以增强业务可信度。
Detected Technologies
🧠AI Business Intelligence
Technology stack, business insights, and market analysis powered by AI.
Business Intelligence
Market & Strategic Analysis
该公司定位于法律诉讼相关的担保服务市场,依托国有控股背景和较大注册资本,具备较强的市场竞争力和信任基础。业务模式以司法担保为核心,服务对象为企业及法律诉讼相关方,提供多样化的担保产品。网站通过友情链接构建合作生态,利用在线客服和内容营销提升客户转化。缺乏隐私和安全政策可能影响部分客户信任,WHOIS信息缺失需重点关注。整体业务展现出中型企业特征,具备一定的市场影响力和成长潜力。
Extracted Contact Information
Marketing Intelligence Data
Email Addresses (1)
Phone Numbers (1)
Physical Addresses (1)
Security Posture Analysis
Comprehensive Security Assessment
网站启用了HTTPS,保障数据传输安全,但未检测到常见安全头部如CSP、HSTS等,存在潜在的安全风险。未发现隐私政策和Cookie政策,可能导致合规性问题。集成的第三方脚本(百度统计、TTKefu)增加了数据泄露风险,需定期审计。WHOIS信息缺失是重大信任隐患,建议核实域名注册状态。整体安全成熟度中等,需加强安全策略和合规管理以降低风险。
Strategic Recommendations
Priority Actions for Security Improvement
完善网站安全头部配置,添加Content-Security-Policy、Strict-Transport-Security等
✨Observations
AI-powered comprehensive website and business analysis.
AI-Enhanced Website Analysis
Business Insights
广东省晋华诉讼保全担保有限公司
广东省晋华诉讼保全担保有限公司是一家专业的诉讼保全担保公司,成立于2016年,总部设在深圳,注册资本15亿元。主营诉讼保全担保、解除财产保全担保、先予执行担保、暂缓执行担保、证据保全担保、工程履约担保、招投标担保等业务,服务覆盖全国30个省市,拥有3000多家企业客户。
good
consistent
Technical Stack
moderate
good
basic
good
Security Assessment
- HTTPS usage implied by canonical URL (https://www.gdjhdb.com/)
- No exposed sensitive data in HTML
Analytics & Tracking
Advertising & Marketing
Website Quality Assessment
Key Observations
Website is fully accessible with rich content in Chinese language
🛡️Security Headers
HTTP security headers analysis and recommendations.
Security Headers
HTTP security headers analysis
Missing Strict-Transport-Security header
HIGHForces HTTPS connections
Missing X-Frame-Options header
HIGHPrevents clickjacking attacks
Missing X-Content-Type-Options header
MEDIUMPrevents MIME type sniffing
Missing Content-Security-Policy header
HIGHControls resources the browser is allowed to load
Missing X-XSS-Protection header
MEDIUMLegacy XSS protection (deprecated but still recommended)
Missing Referrer-Policy header
LOWControls referrer information sent with requests
Missing Permissions-Policy header
MEDIUMControls browser features and APIs
Sensitive data may be cached
LOWCache-Control header should include "no-store" for sensitive pages
👤GDPR Compliance
Privacy and data protection assessment under GDPR regulations.
GDPR Compliance
Privacy and data protection assessment
No Privacy Policy found
HIGHGDPR requires a clear and accessible privacy policy
No Cookie Policy found
HIGHGDPR requires clear information about cookie usage
No Cookie Consent Banner found
HIGHGDPR requires explicit consent for non-essential cookies
GDPR Compliance Analysis
🛡️NIS2 Compliance
Network & Information Security Directive compliance assessment.
NIS2 Compliance
Network & Information Security Directive
No information security framework found
HIGHNIS2 requires documented cybersecurity and information security measures
No vulnerability disclosure policy
MEDIUMNIS2 encourages coordinated vulnerability disclosure
No security policy documentation found
HIGHNIS2 requires documented cybersecurity governance and risk management
No incident response procedures found
HIGHNIS2 requires documented incident response and business continuity plans
No business continuity planning found
MEDIUMNIS2 emphasizes operational resilience and business continuity
No security contact information
HIGHNIS2 requires clear incident reporting channels
No vulnerability reporting mechanism
MEDIUMClear vulnerability reporting supports coordinated disclosure
No NIS2 reference found
LOWConsider explicitly mentioning NIS2 compliance efforts
Critical sector without clear security compliance
HIGHDetected sectors: transport, digital
📧Email Security
SPF, DKIM, and DMARC validation and email security assessment.
Email Security
SPF, DKIM, and DMARC validation
Email Security Check Incomplete
MEDIUMSome email security checks timed out
🏆SSL/TLS Security
Certificate validity and encryption analysis.
SSL/TLS Security
Certificate validity and encryption analysis
SSL Certificate Expires Within 90 Days
MEDIUMSSL certificate expires in 44 days
Partial SSL/TLS Assessment
LOWCompleted 2 of 4 security checks due to time constraints
Certificate Details
OCSP Status
📊DNS Health
DNS configuration and security assessment.
DNS Health
DNS configuration and security assessment
DNSSEC Not Enabled
MEDIUMDNSSEC is not configured for this domain
CAA Records Not Configured
LOWCertificate Authority Authorization (CAA) records not found
DNS Records
DNSSEC Status
⚡Network Security
Port scanning and network exposure analysis.
Network Security
Port scanning and network exposure analysis
Critical Service Exposed: MySQL
CRITICALPort 3306 (MySQL) is publicly accessible - MySQL - Database server
🔧Technical Analysis
Detailed technical findings and analysis from AI assessment.
Technical Analysis
Comprehensive security assessment findings