Is kozlovna.cz Safe? Security Analysis for Kozlovna
Check if kozlovna.cz is a scam or legitimate. Free security scan and reviews.
AI Summary
The website kozlovna.cz is currently offline, with a clear notice stating that its operation was terminated as of December 1, 2023. The domain is long-standing, registered since 2006, and hosted on Czech hosting infrastructure, indicating a legitimate historical presence. However, the current website offers no content beyond the termination message, no contact information, no privacy or cookie policies, and no security or compliance disclosures. This severely limits the ability to assess the business or its digital maturity. The lack of metadata, scripts, or forms suggests the site is no longer maintained or operational. From a technical perspective, the site is minimal HTML with no detectable CMS, frameworks, or analytics tools. Hosting is inferred to be with VSHOSTING based on nameservers. No security headers or SSL configuration details are available, and no WAF or blocking mechanisms are detected. The site’s performance, accessibility, and SEO cannot be meaningfully evaluated due to the lack of content. Security posture is weak due to absence of security best practices, policies, or contact channels for incident response. The domain registration is consistent with a Czech business, but no registrant details are provided. No vulnerabilities or malicious indicators are found, but the site’s termination and minimal content represent a critical issue for trust and usability. Overall, the site scores very low on content quality, security, privacy compliance, and business credibility. Strategic recommendations include restoring a functional website with clear business information, implementing security and privacy policies, enabling HTTPS and security headers, and providing contact and incident response details to improve trust and compliance.
🧠AI Business Intelligence
Technology stack, business insights, and market analysis powered by AI.
Business Intelligence
Market & Strategic Analysis
Kozlovna.cz appears to have been a small Czech business, likely in hospitality or related sectors given the name, but no current business information is available on the site. The domain age suggests a long-term presence since 2006. The lack of content and contact details indicates the business has ceased online operations as of late 2023. There is no evidence of partnerships, subsidiaries, or a broader ecosystem. The business model and revenue streams cannot be determined from the available data. The site’s termination notice suggests a closure or migration. No growth indicators or competitive positioning data are available.
Security Posture Analysis
Comprehensive Security Assessment
The website currently exhibits a very low security maturity level. There are no published security policies, no privacy or cookie compliance mechanisms, and no incident response contacts. No security headers or HTTPS status are available, which may indicate missing or incomplete SSL configuration. No forms or user inputs are present, reducing attack surface but also indicating no active user engagement. The absence of analytics or tracking reduces privacy concerns but also limits business intelligence. Overall, the site is not compliant with GDPR or other common security frameworks. The termination of the site further reduces operational security relevance.
Strategic Recommendations
Priority Actions for Security Improvement
Restore a functional website with meaningful business content and contact information.
✨Observations
AI-powered comprehensive website and business analysis.
AI-Enhanced Website Analysis
Business Insights
The website announces that its operation was terminated as of December 1, 2023.
poor
moderate
Technical Stack
poor
Security Assessment
0Analytics & Tracking
Advertising & Marketing
Website Quality Assessment
Key Observations
Website content is minimal and only contains a termination notice.
🛡️Security Headers
HTTP security headers analysis and recommendations.
Security Headers
HTTP security headers analysis
Missing Strict-Transport-Security header
HIGHForces HTTPS connections
Missing X-Frame-Options header
HIGHPrevents clickjacking attacks
Missing X-Content-Type-Options header
MEDIUMPrevents MIME type sniffing
Missing Content-Security-Policy header
HIGHControls resources the browser is allowed to load
Missing X-XSS-Protection header
MEDIUMLegacy XSS protection (deprecated but still recommended)
Missing Referrer-Policy header
LOWControls referrer information sent with requests
Missing Permissions-Policy header
MEDIUMControls browser features and APIs
Sensitive data may be cached
LOWCache-Control header should include "no-store" for sensitive pages
👤GDPR Compliance
Privacy and data protection assessment under GDPR regulations.
GDPR Compliance
Privacy and data protection assessment
No Privacy Policy found
HIGHGDPR requires a clear and accessible privacy policy
No Cookie Policy found
HIGHGDPR requires clear information about cookie usage
No Cookie Consent Banner found
HIGHGDPR requires explicit consent for non-essential cookies
EU business without adequate privacy measures
CRITICALEU businesses are subject to strict GDPR requirements
GDPR Compliance Analysis
🛡️NIS2 Compliance
Network & Information Security Directive compliance assessment.
NIS2 Compliance
Network & Information Security Directive
No information security framework found
HIGHNIS2 requires documented cybersecurity and information security measures
No vulnerability disclosure policy
MEDIUMNIS2 encourages coordinated vulnerability disclosure
No security policy documentation found
HIGHNIS2 requires documented cybersecurity governance and risk management
No incident response procedures found
HIGHNIS2 requires documented incident response and business continuity plans
No business continuity planning found
MEDIUMNIS2 emphasizes operational resilience and business continuity
No security contact information
HIGHNIS2 requires clear incident reporting channels
No vulnerability reporting mechanism
MEDIUMClear vulnerability reporting supports coordinated disclosure
No NIS2 reference found
LOWConsider explicitly mentioning NIS2 compliance efforts
📧Email Security
SPF, DKIM, and DMARC validation and email security assessment.
Email Security
SPF, DKIM, and DMARC validation
No DMARC reporting
LOWDMARC aggregate reports not configured
No DKIM record found
MEDIUMDKIM adds cryptographic signatures to emails
Strict DMARC Alignment
LOWStrict alignment may cause legitimate emails to fail
No BIMI Record
LOWBIMI displays brand logos in email clients
No MTA-STS Policy
MEDIUMMTA-STS enforces TLS for email delivery
No TLS-RPT Record
LOWTLS-RPT provides reporting for email TLS issues
SPF Details
DMARC Details
🏆SSL/TLS Security
Certificate validity and encryption analysis.
SSL/TLS Security
Certificate validity and encryption analysis
Weak Protocols Supported
HIGHServer supports weak protocols: TLSv1.1
OCSP Stapling Not Enabled
LOWOCSP stapling improves performance and privacy
Certificate Transparency Not Implemented
LOWCertificate is not logged in Certificate Transparency logs
SSL Certificate Expires Within 90 Days
MEDIUMSSL certificate expires in 31 days
Weak SSL Key Length
HIGHSSL certificate uses 384-bit key, which is considered weak
Partial SSL/TLS Assessment
LOWCompleted 3 of 4 security checks due to time constraints
Protocol Support
OCSP Status
📊DNS Health
DNS configuration and security assessment.
DNS Health
DNS configuration and security assessment
DNSSEC Not Enabled
MEDIUMDNSSEC is not configured for this domain
CAA Records Not Configured
LOWCertificate Authority Authorization (CAA) records not found
Domain Registration Details
DNS Records
DNSSEC Status
DNS Performance
SPF Analysis
⚡Network Security
Port scanning and network exposure analysis.
Network Security
Port scanning and network exposure analysis
High-Risk Service Exposed: FTP
HIGHPort 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer
Service Exposed: SSH
MEDIUMPort 22 (SSH) is publicly accessible - SSH - Secure but can be brute-forced
🔧Technical Analysis
Detailed technical findings and analysis from AI assessment.
Technical Analysis
Comprehensive security assessment findings