Skip to main content

Is satnogs.org a Scam? Security Check Results - Libre Space Foundation Reviews

satnogs.org favicon

Is satnogs.org Safe? Security Analysis for Libre Space Foundation

https://satnogs.org

Check if satnogs.org is a scam or legitimate. Free security scan and reviews.

TechnologyFrancesmall
WordPressPHPjQueryMailchimp for WordPressJetpack+2 more
Analyzed 8/1/2025Completed 4:34:34 AM
69
Security Score
MEDIUM RISK

AI Summary

SatNOGS is an open source project operated by the Libre Space Foundation, focused on creating a global network of satellite ground stations. The website serves as a hub for community engagement, satellite data sharing, and technical documentation. It targets satellite enthusiasts, researchers, and the open source community, positioning itself as a niche but reputable player in the space technology domain. The business model is community-driven with support through donations and open collaboration. Technically, the website is built on WordPress using standard plugins such as Jetpack and Mailchimp integration, hosted via Gandi SAS. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security is adequate with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers are missing, indicating room for improvement. From a security perspective, the site shows no signs of blocking or WAF interference, and no critical vulnerabilities are evident from the content. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service were found. Contact information is limited to social media and a subscription form, with no direct emails or phone numbers published. Overall, SatNOGS presents a trustworthy and professional online presence for its community-driven satellite network project. Strategic improvements in security headers, privacy documentation, and vulnerability disclosure would enhance its security posture and compliance standing.

Detected Technologies

WordPressPHPjQueryMailchimp for WordPressJetpackCustomizr themeGoogle Fonts

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

SatNOGS operates in the specialized technology sector of satellite ground station networking. Its competitive advantage lies in its open source, participatory approach, enabling global collaboration and crowdsourced data collection. The project is supported by the Libre Space Foundation, which lends credibility and organizational structure. Revenue streams appear to be primarily donation-based, with community engagement through forums and social media. The target customers are technically savvy individuals and organizations interested in satellite data and open source space technology. Growth indicators include active community links and ongoing documentation updates. Partnerships with Libre Space Foundation and related domains strengthen its ecosystem. The business model emphasizes transparency, collaboration, and open access.

Security Posture Analysis

Comprehensive Security Assessment

The website maintains a moderate security maturity level with HTTPS enforced and domain transfer protections in place. However, the absence of DNSSEC and security headers such as Content-Security-Policy and X-Frame-Options reduces its defense-in-depth. No incident response or security policy documents are published, which may limit transparency and preparedness. The cookie consent mechanism aligns with GDPR requirements, but the lack of a privacy policy is a compliance gap. No exposed sensitive data or vulnerable libraries were detected in the provided content. Overall, the security posture is adequate for a community-driven project but would benefit from formalized policies and enhanced technical controls.

Strategic Recommendations

Priority Actions for Security Improvement

1

Enable DNSSEC on the domain to improve DNS security and prevent spoofing.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Libre Space Foundation

Description:

SatNOGS is an open source global network of satellite ground stations, designed as a participatory project. It provides a crowdsourced satellite information database and documentation for building ground stations.

Key Services:
Global satellite ground station networkCrowdsourced satellite databaseDocumentation and community support
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
WordPressPHPjQueryMailchimp for WordPressJetpackCustomizr themeGoogle Fonts
Frameworks:
WordPress CMS
Platforms:
WordPress
Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:
75/100
Best Practices:
  • HTTPS enforced
  • Client transfer prohibited domain status

Analytics & Tracking

Services:
Jetpack Stats
Tracking Level:minimal
Privacy Compliance:basic

Advertising & Marketing

Tracking Pixels:
Jetpack Stats
Marketing Tools:
Mailchimp
Transparency Level:basic

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:high

Key Observations

1

Website is fully accessible with no blocking or WAF challenges.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

70/100
Score

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

Sensitive data may be cached

LOW

Cache-Control header should include "no-store" for sensitive pages

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

50/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

Third-party services without privacy policy

HIGH

Detected services: Facebook, Twitter, Google APIs

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy85% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: energy, transport, banking, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

85/100
Score

Strict DMARC Alignment

LOW

Strict alignment may cause legitimate emails to fail

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 a:mail.libre.space a:vm1.satnogs.org include:servers.mcsv.net -all
DNS Lookups:3/10
Policy:-all
DKIM Selectors Found
Selector:k1(1296-bit rsa)
Selector:dkim(1296-bit rsa)
DMARC Details
Policy:reject
Aggregate Reports:postmaster@satnogs.org
Forensic Reports:postmaster@satnogs.org

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

85/100
Score

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 65 days

Mixed Content Detected

MEDIUM

5 resources loaded over insecure HTTP

Partial SSL/TLS Assessment

LOW

Completed 2 of 4 security checks due to time constraints

Certificate Details

Subject:libre.space
Issuer:R10
Valid Until:10/6/2025 (65 days)
SANs:ephemerista.space, hologs.space, libre.space +14 more

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

80/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Delete Lock Not Enabled

LOW

Domain can be deleted without additional verification

Domain Registration Details

Domain Age
11 years(mature)
Expiry Risk
low(236 days)
Protection Level
basicDNSSEC OFF

DNS Records

A Records:83.212.169.122
AAAA Records:2001:648:2ffc:1015:a800:ff:feda:2058
Name Servers:
ns-201-b.gandi.net
ns-46-a.gandi.net
ns-63-c.gandi.net
MX Records:
10: mail.libre.space
SOA:Serial: 1753920000, TTL: 10800s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:66ms

SPF Analysis

SPF Record:
v=spf1 a:mail.libre.space a:vm1.satnogs.org include:servers.mcsv.net -all

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on a mature and widely used CMS platform (WordPress) with a modern theme and standard plugins. The tech stack includes jQuery, Mailchimp integration, and Jetpack for analytics and sharing. Hosting is provided by Gandi SAS, a reputable registrar and hosting provider. Performance is moderate with good mobile responsiveness and SEO optimization. Accessibility is basic but present. The site uses Google Fonts and standard web technologies. Technical risks include missing DNSSEC and security headers, which could be addressed to reduce attack surface. Overall, the infrastructure is stable and suitable for the project's scope.
Analyze Another Website