What is the security status of lysa-hora.cz?

lysa-hora.cz has a security score of 44/100, rated as Potentially Unsafe. The website may have security concerns that should be addressed.

Is lysa-hora.cz safe to use?

Our security scan shows lysa-hora.cz is Potentially Unsafe. SSL security issues detected. Always practice safe browsing habits.

Does lysa-hora.cz have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 44/100, the website is rated as Potentially Unsafe. However, websites can change over time, so always use updated security software.

What is lysa-hora.cz's trust score?

lysa-hora.cz has a security score of 44/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is lysa-hora.cz Safe? Security Analysis for Lysá hora – Chata Emil Zátopek – Maraton

https://lysa-hora.cz

Check if lysa-hora.cz is a scam or legitimate. Free security scan and reviews.

HospitalityCzech Republicsmall

WordPress 6.8.2PHPjQueryBootstrap 4.3.0Yoast SEO plugin+7 more

Analyzed 7/30/2025Completed 4:14:20 PM

Security Score

HIGH RISK

AI Summary

Lysá hora – Chata Emil Zátopek – Maraton is a well-established hospitality business operating mountain accommodation and leisure services in the Beskydy mountains of the Czech Republic. Founded in 2002 and operated by AK 1324, s.r.o., the company offers comfortable lodging, gastronomy, social events, and recreational activities such as bowling. The website reflects a professional and consistent brand presence targeting tourists and visitors seeking mountain experiences. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security measures include HTTPS, Google reCAPTCHA, and GDPR-compliant cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates a solid security posture with no critical vulnerabilities detected. Business credibility is supported by clear contact information, social media presence, and partner affiliations. Strategic recommendations include enhancing security headers, adding explicit security policies, and maintaining regular updates to plugins and themes.

Detected Technologies

WordPress 6.8.2PHPjQueryBootstrap 4.3.0Yoast SEO pluginSlider Revolution 6.7.31Contact Form 7Complianz GDPR pluginGoogle reCAPTCHA v3Google FontsFontAwesome 5.15.4Lightbox Photoswipe 5

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

The company holds a strong regional position in mountain hospitality, leveraging its long domain age and consistent branding. Its business model focuses on accommodation and event hosting, supplemented by gastronomy and leisure activities. The partnership ecosystem includes payment processors and regional tourism organizations, enhancing service offerings and trust. The website content is relevant and professionally maintained, supporting customer engagement and bookings. Growth indicators include active event calendars and social media activity. The company targets tourists interested in Beskydy mountain experiences, with a focus on comfort and affordability.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

p*****@lysa-hora.cz

Phone Numbers (1)

+4207771*****

Physical Addresses (1)

AK 1324, s.r.o., Krásná č.p. 357, 739 04 Krásná, Czech Republic

Company Registration

Legal Name:

AK 1324, s.r.o.

Registration Number:

47902744

Security Posture Analysis

Comprehensive Security Assessment

The website employs HTTPS and integrates Google reCAPTCHA for form security, alongside a GDPR-compliant cookie consent banner. No exposed sensitive data or vulnerable libraries were detected in the HTML content. However, the absence of explicit security headers such as Content Security Policy and HSTS suggests room for improvement. Incident response and security policy information are not publicly available, which could be enhanced to improve transparency and readiness. Overall, the security posture is good but could benefit from additional hardening and documentation.

Strategic Recommendations

Priority Actions for Security Improvement

Implement security headers including Content Security Policy, HSTS, X-Frame-Options, and X-XSS-Protection.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Lysá hora – Chata Emil Zátopek – Maraton

Description:

Komfortní i cenově dostupné ubytování v horské chatě na Lysé hoře v Beskydech, gastronomie, společenské akce, bowling.

Key Services:

Accommodation at Chata Emil Zátopek – Maraton and Chata DesítkaGastronomy servicesSocial events and partiesBowling and other leisure activities

Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:

WordPress 6.8.2PHPjQueryBootstrap 4.3.0Yoast SEO pluginSlider Revolution 6.7.31Contact Form 7Complianz GDPR pluginGoogle reCAPTCHA v3Google FontsFontAwesome 5.15.4Lightbox Photoswipe 5

Frameworks:

Bootstrap

Platforms:

WordPress

Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:

80/100

Best Practices:

HTTPS enforced
Google reCAPTCHA v3 implemented on forms
Cookie consent banner with opt-in mechanism
No exposed sensitive data in HTML

Analytics & Tracking

Services:

Google Analytics

Tracking Level:moderate

Privacy Compliance:good

Advertising & Marketing

Tracking Pixels:

Google Analytics (gtag.js)

Marketing Tools:

Google reCAPTCHAComplianz GDPR Cookie Consent

Transparency Level:basic

Website Quality Assessment

Design Quality:good

User Experience:good

Content Relevance:good

Navigation Clarity:good

Professionalism:good

Trustworthiness:high

Key Observations

Website is professionally designed and well-structured.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

15/100

Score

Critical sector without clear security compliance

HIGH

Detected sectors: energy, transport, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

70/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

SPF Details

Record:

v=spf1 mx a include:_spf.we.wedos.net -all

DNS Lookups:3/10

Policy:-all

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

62/100

Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

OCSP Stapling Not Enabled

LOW

OCSP stapling improves performance and privacy

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 72 days

Mixed Content Detected

MEDIUM

2 resources loaded over insecure HTTP

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

75/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

No DMARC Record

MEDIUM

DMARC policy not configured

Domain Registration Details

Domain Age

23 years(mature)

DNS Records

A Records:89.221.213.32

Name Servers:

ns.wedos.com

ns.wedos.czDNS only

ns.wedos.eu

ns.wedos.net

MX Records:

20: mail2.alvita.cz

10: mail.alvita.cz

5: mail.tint.cz

SOA:Serial: 2025072702, TTL: 3600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:144ms

SPF Analysis

SPF Record:

v=spf1 mx a include:_spf.we.wedos.net -all

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

20/100

Score

High-Risk Service Exposed: FTP

HIGH

Port 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on WordPress 6.8.2 using Bootstrap 4.3.0 for responsive design and jQuery for interactivity. SEO is enhanced via the Yoast SEO plugin, and user engagement is supported by Slider Revolution and Ultimate Addons for Gutenberg. Performance is moderate with asynchronous loading of scripts and lazy loading of images. The site uses Google Fonts and FontAwesome for typography and icons. Cookie consent and GDPR compliance are managed by the Complianz plugin. Hosting and domain registration are managed by REG-WEDOS, a reputable Czech provider. The technical stack is modern and well-maintained, though some security headers and accessibility improvements are recommended.

Analyze Another Website

Is lysa-hora.cz a Scam? Security Check Results - Lysá hora – Chata Emil Zátopek – Maraton Reviews

Is lysa-hora.cz Safe? Security Analysis for Lysá hora – Chata Emil Zátopek – Maraton

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Extracted Contact Information

Email Addresses (1)

Phone Numbers (1)

Physical Addresses (1)

Company Registration

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing Strict-Transport-Security header

Missing X-Frame-Options header

Missing X-Content-Type-Options header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Missing Referrer-Policy header

Missing Permissions-Policy header

Sensitive data may be cached

👤GDPR Compliance

GDPR Compliance

No Privacy Policy found

No Cookie Consent Banner found

EU business without adequate privacy measures

Third-party services without privacy policy

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

Critical sector without clear security compliance

📧Email Security

Email Security

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

SPF Details

🏆SSL/TLS Security

SSL/TLS Security

Weak Protocols Supported

OCSP Stapling Not Enabled

Certificate Transparency Not Implemented

SSL Certificate Expires Within 90 Days

Mixed Content Detected

Partial SSL/TLS Assessment

Protocol Support

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

CAA Records Not Configured

No DMARC Record

Domain Registration Details

DNS Records

DNSSEC Status

DNS Performance

SPF Analysis

⚡Network Security

Network Security

High-Risk Service Exposed: FTP