What is the security status of thefork.es?

thefork.es has a security score of 56/100, rated as Moderate Risk. The website may have security concerns that should be addressed.

Is thefork.es safe to use?

Our security scan shows thefork.es is Moderate Risk. SSL security issues detected. Always practice safe browsing habits.

Does thefork.es have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 56/100, the website is rated as Moderate Risk. However, websites can change over time, so always use updated security software.

What is thefork.es's trust score?

thefork.es has a security score of 56/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is thefork.es Safe? Security Analysis for thefork.es

https://thefork.es

Check if thefork.es is a scam or legitimate. Free security scan and reviews.

OtherSpain

JavaScript

Analyzed 10/4/2025Completed 8:21:02 AM

Security Score

MEDIUM RISK

AI Summary

The website thefork.es is currently inaccessible due to a bot protection mechanism implemented via captcha-delivery.com services, which blocks direct access to the site's content. As a result, no business-specific information, metadata, or contact details could be extracted from the provided HTML content. The site appears to be protected by a Web Application Firewall or similar security layer that requires CAPTCHA validation before granting access. Without access to the actual content, a detailed assessment of the business, technical infrastructure, or security posture is not feasible. From the limited data, the site uses JavaScript and external CAPTCHA scripts for bot mitigation. No privacy, cookie, or terms of service policies were found in the provided content, nor were any contact details or social media links. The lack of accessible content prevents evaluation of SEO, accessibility, or performance metrics. Security-wise, the presence of a CAPTCHA challenge indicates an effort to mitigate automated attacks or abuse, which is a positive security control. However, no further security headers or SSL details were available to assess the overall security posture. The absence of visible business or compliance information limits trust and credibility evaluation. Overall, the site is currently blocked from analysis due to security controls, resulting in a low AI score and incomplete insights. For a comprehensive evaluation, access to the full website content without WAF restrictions is necessary.

Detected Technologies

JavaScript

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Due to the CAPTCHA challenge blocking access, no business intelligence data such as company name, market position, business model, or key services could be extracted. The domain thefork.es suggests a possible relation to the restaurant reservation or hospitality sector (based on the known brand 'TheFork'), but this cannot be confirmed from the provided data. No partnership or subsidiary domains were identified. Without accessible content or WHOIS data, no insights into revenue streams, customer segments, or growth indicators are available.

Security Posture Analysis

Comprehensive Security Assessment

The website employs a CAPTCHA-based bot mitigation service, indicating a baseline security measure against automated threats. However, no other security headers or configurations were visible in the provided content. The lack of accessible content prevents assessment of secure coding practices, vulnerability exposure, or incident response readiness. No privacy or security policies were found, and no contact channels for security incidents are available. Overall, the security posture cannot be fully assessed but shows minimal protection via CAPTCHA.

Strategic Recommendations

Priority Actions for Security Improvement

Provide access to the website content without CAPTCHA blocking for security and compliance analysis.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Generic Detected

Page content is a CAPTCHA challenge served via geo.captcha-delivery.com and ct.captcha-delivery.com scripts and iframe, indicating a WAF or bot protection mechanism blocking direct content access.

Analysis results may be incomplete. For accurate analysis, please contact guard@offseq.com

Business Insights

Content Quality:

poor

Technical Stack

Technologies:

JavaScript

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Design Quality:poor

User Experience:poor

Content Relevance:poor

Navigation Clarity:poor

Professionalism:poor

Trustworthiness:low

Key Observations

Website content is inaccessible due to a CAPTCHA challenge.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

20/100

Score

Missing Strict-Transport-Security header

HIGH

Forces HTTPS connections

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Critical sector without clear security compliance

HIGH

Detected sectors: transport

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

85/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

SPF Details

Record:

v=spf1 redirect=spf.lafourchette.com

DNS Lookups:0/10

DMARC Details

Policy:quarantine

Aggregate Reports:dmarc-rua@tripadvisor.com

MTA-STS Details

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

82/100

Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Enabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

85/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

DNS Records

A Records:151.101.130.132, 151.101.194.132, 151.101.2.132, 151.101.66.132

Name Servers:

ns-1461.awsdns-54.orgDNS only

ns-1640.awsdns-13.co.ukDNS only

ns-455.awsdns-56.comDNS only

ns-819.awsdns-38.netDNS only

MX Records:

10: smtp.google.com

SOA:Serial: 1, TTL: 86400s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:97ms

SPF Analysis

SPF Record:

v=spf1 redirect=spf.lafourchette.com

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100

Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The technical analysis is limited due to the CAPTCHA challenge blocking content access. The site uses JavaScript and external CAPTCHA scripts from captcha-delivery.com domains. No CMS, frameworks, or hosting provider information is discernible. Performance, SEO, accessibility, and mobile optimization cannot be evaluated. The presence of a full-page iframe for CAPTCHA suggests a security-first approach but also limits user experience and content accessibility. Modernization opportunities include improving content accessibility and exposing technical metadata for better SEO and compliance.

How did we do?

Your feedback directly shapes our roadmap. Rate the quality of this report, leave an optional comment, and let us know if you want our security specialists to follow up.

Analyze Another Website

Is thefork.es a Scam? Security Check Results - thefork.es Reviews

Is thefork.es Safe? Security Analysis for thefork.es

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Generic Detected

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing Strict-Transport-Security header

Missing X-Frame-Options header

Missing X-Content-Type-Options header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Missing Referrer-Policy header

Missing Permissions-Policy header

👤GDPR Compliance

GDPR Compliance

No Privacy Policy found

No Cookie Policy found

No Cookie Consent Banner found

EU business without adequate privacy measures

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

Critical sector without clear security compliance

📧Email Security

Email Security

No DKIM record found

SPF Details

DMARC Details

MTA-STS Details

🏆SSL/TLS Security

SSL/TLS Security

Weak Protocols Supported

Certificate Transparency Not Implemented

Partial SSL/TLS Assessment

Protocol Support

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

CAA Records Not Configured

DNS Records

DNSSEC Status

DNS Performance

SPF Analysis

⚡Network Security

Network Security

Good Network Security Posture

🔧Technical Analysis

Technical Analysis

Additional Findings

—out of 5