Skip to main content

Is sinotechline.com a Scam? Security Check Results - 中技物流 Reviews

sinotechline.com favicon

Is sinotechline.com Safe? Security Analysis for 中技物流

https://sinotechline.com

Check if sinotechline.com is a scam or legitimate. Free security scan and reviews.

TransportationChinalarge
jQuery 1.8.2Vue.js 2.6.14Element UI
Analyzed 8/2/2025Completed 7:35:17 PM
57
Security Score
MEDIUM RISK

AI Summary

中技物流是一家拥有26年历史的中国国际物流服务企业,专注于提供包括国际空运、快递、海运、增值服务及智能仓储在内的多元化物流解决方案。公司业务覆盖全球多个国家和地区,拥有丰富的合作伙伴资源和成熟的供应链管理能力。技术上,网站采用Vue.js和Element UI框架,结合较旧版本的jQuery,整体性能表现中等,移动端优化基础。安全方面,网站缺少DNSSEC支持和安全HTTP头,且使用了过时的JavaScript库,存在一定安全隐患。缺乏隐私和Cookie政策,存在合规风险。总体来看,网站内容丰富且专业,业务可信度高,但安全和隐私合规方面需加强。

Detected Technologies

jQuery 1.8.2Vue.js 2.6.14Element UI

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

公司在国际物流行业内具有较强的市场地位,提供全面的物流服务和供应链管理,目标客户涵盖跨境电商、国际贸易企业及个人客户。通过与多家航空公司和船运公司合作,构建了广泛的合作伙伴网络。业务模式以服务提供为核心,涵盖运输、仓储及增值服务。网站内容展示了公司丰富的行业经验和专业能力,反映出稳定的客户基础和良好的市场声誉。

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

y*****@sinotechline.com

Phone Numbers (1)

400*******

Security Posture Analysis

Comprehensive Security Assessment

当前安全成熟度中等,网站启用了HTTPS但未启用DNSSEC,缺少关键安全头部配置,且使用了较旧的jQuery版本,可能存在安全漏洞。网站未公开安全政策或事件响应联系方式,缺乏隐私和Cookie政策,存在合规缺口。建议加强安全配置,更新技术栈,并完善隐私合规文档以提升整体安全水平和用户信任。

Strategic Recommendations

Priority Actions for Security Improvement

1

启用DNSSEC以增强域名系统安全性。

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

中技物流

Description:

中技物流是一家专注于国际物流服务的企业,拥有26年行业经验,提供国际空运、国际快递、国际海运、增值服务和智能仓储等多业务线产品,满足不同消费者的发货需求。公司还提供项目物流、供应链管理和私人物品运输等解决方案,服务覆盖全球多个国家和地区,拥有丰富的合作伙伴资源。

Key Services:
国际空运国际快递国际海运增值服务智能仓储项目物流供应链管理私人物品运输
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
jQuery 1.8.2Vue.js 2.6.14Element UI
Frameworks:
Vue.js
Performance:

moderate

Mobile:

basic

Accessibility:

basic

SEO:

basic

Security Assessment

Security Score:
60/100
Best Practices:
  • HTTPS usage implied by domain
  • No exposed sensitive data in HTML

Analytics & Tracking

Tracking Level:minimal
Privacy Compliance:poor

Advertising & Marketing

Transparency Level:poor

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:high

Key Observations

1

Website is fully accessible with rich content in Chinese language.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

15/100
Score

Missing Strict-Transport-Security header

HIGH

Forces HTTPS connections

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

Sensitive data may be cached

LOW

Cache-Control header should include "no-store" for sensitive pages

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

50/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
emailphone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

70/100
Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 include:spf.mail.qq.com ~all
DNS Lookups:1/10
Policy:~all
DMARC Details
Policy:reject
Aggregate Reports:mailauth-reports@qq.com

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

72/100
Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

Mixed Content Detected

MEDIUM

1 resources loaded over insecure HTTP

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Certificate Details

Subject:*.sinotechline.com
Issuer:Sectigo RSA Organization Validation Secure Server CA
Valid Until:5/22/2026 (293 days)
SANs:*.sinotechline.com, sinotechline.com

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Enabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

70/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Transfer Lock Not Enabled

MEDIUM

Domain can be transferred without authorization

Domain Delete Lock Not Enabled

LOW

Domain can be deleted without additional verification

Domain Registration Details

Domain Age
14 years(mature)
Expiry Risk
low(313 days)
Protection Level
noneDNSSEC OFF
Suspicious Indicators Detected
  • No domain protection locks enabled

DNS Records

A Records:39.108.117.163
Name Servers:
dns27.hichina.com
dns28.hichina.com
MX Records:
5: mxbiz1.qq.com
10: mxbiz2.qq.com
SOA:Serial: 2025042409, TTL: 600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:432ms

SPF Analysis

SPF Record:
v=spf1 include:spf.mail.qq.com ~all

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

网站基于Vue.js和Element UI构建,前端技术较为现代,但仍依赖过时的jQuery 1.8.2版本,存在技术债务风险。托管于阿里云,域名注册稳定且历史悠久。网站性能表现适中,移动端优化基础,SEO和无障碍支持有限。缺乏安全头和隐私合规文档,技术栈升级和安全加固是未来重点。整体技术架构适合当前业务需求,但需持续改进以支持长期发展和安全合规。
Analyze Another Website