Security Directory

I

Integriertes Standortmarketing Zürich (joint initiative of Stadt Zürich, Kanton Zürich, and Zürich Tourismus)

zuerich.ch

62

The website zuerich.ch serves as the official web portal for the location of Zürich, Switzerland, operated by a joint initiative of the city (Stadt Zürich), canton (Kanton Zürich), and Zürich Tourismus. It provides comprehensive information and services targeting tourists, new residents, businesses, and students, covering tourism, living, economy, and education. The site positions itself as an authoritative and trusted source for location-based information in Zürich. Technically, the site uses a StandardCMS platform with jQuery, Adobe Analytics, and jwplayer for video tracking. The site is moderately optimized for mobile and SEO, with a good design and clear navigation. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy and cookie policies. User tracking is moderate via Adobe Analytics, but no cookie consent mechanism is present. Contact information is available via email and a contact form (commented out in HTML). Overall, the site is professional, trustworthy, and safe for general audiences.

K

KitaRechner – der Tarifrechner für Gemeinden.

kitarechner.ch

42

The website www.kitarechner.ch provides a specialized tariff calculator tool designed for Swiss municipalities to facilitate the calculation of subsidies for family-based childcare services. The site targets local government entities and families seeking transparent and straightforward subsidy computations. The business operates in the government sector with a niche focus on childcare subsidy calculations, serving a small-scale audience primarily within Switzerland. The website content is primarily in German and offers basic but relevant information about the service without extensive business details or contact information. From a technical perspective, the website employs basic HTML5 and CSS without indications of modern frameworks or CMS platforms. The site demonstrates moderate performance and basic mobile optimization but lacks advanced accessibility features. SEO optimization is minimal, with essential meta tags present but no structured data or Open Graph tags detected. No analytics or tracking technologies are embedded, indicating a privacy-conscious or minimalistic approach. Security posture is limited; the site does not show evidence of HTTPS enforcement or security headers in the provided data, which lowers its security score. There are no visible forms or data collection points on the main page, reducing the attack surface but also limiting interactivity. The absence of privacy, cookie, or terms of service policies indicates compliance gaps, especially concerning GDPR. WHOIS data aligns well with the website's purpose and geographic focus, showing consistent registration details and no privacy protection, which supports legitimacy. Overall, the website is functional for its intended purpose but would benefit from enhanced security measures, privacy compliance documentation, and clearer contact information to improve trust and regulatory adherence.

G

Gemeinde Wohlen

wohlen.ch

62

Gemeinde Wohlen operates as the official municipal government website for the town of Wohlen in Switzerland, providing a broad range of services and information to residents, businesses, and visitors. The site offers detailed sections on administration, politics, education, culture, social services, and local events, positioning itself as a comprehensive community resource. The business model is centered on public service and community engagement, with a clear focus on accessibility and user-friendly navigation. Technically, the website is built on the i-web CMS platform, utilizing modern web technologies such as JavaScript modules and CSS. The site demonstrates good mobile optimization and accessibility features, with a moderate performance profile. SEO practices are adequately implemented, including meta tags and structured navigation. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security policies or incident response contacts, which could be improved to enhance trust and resilience. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism, ensuring GDPR alignment. Overall, the website presents a low-risk profile with strong business credibility and good content quality. Strategic improvements in security policy transparency and technical security controls would further strengthen its posture.

J

JFB Region Baden

jfbb.ch

60

JFB Region Baden is a regional non-profit organization based in Switzerland providing personal and financial advice and support to residents of the Baden region. The website serves as an informational and contact portal for community members seeking assistance. The organization positions itself as a trusted local service provider with a focus on social support. Technically, the website is built on the Wix platform using Wix Thunderbolt and standard web technologies, offering a moderate performance and good mobile optimization. Security posture is solid with HTTPS and security headers implemented, though privacy and cookie policies are missing, which is a compliance gap. Overall, the website is professional and trustworthy but could improve privacy compliance and incident response transparency.

G

Gemeinde Obergösgen

obergoesgen.ch

59

The website www.obergoesgen.ch serves as the official digital presence of the municipality of Obergösgen in Switzerland. It provides residents and visitors with comprehensive information about local government services, community news, events, and administrative functions including an online service portal. The site targets local citizens and stakeholders, offering a user-friendly interface with clear navigation and relevant content tailored to municipal needs. Technically, the website is built on a modern CMS platform (i-web CMS) utilizing standard web technologies such as HTML5, CSS, JavaScript, and Bootstrap for responsive design. The site demonstrates good mobile optimization, accessibility, and SEO practices. It employs HTTPS for secure communication and includes a cookie consent mechanism ensuring compliance with privacy regulations. From a security perspective, the site enforces HTTPS and uses secure form submission methods. However, it lacks explicit security headers and a dedicated security policy or incident response contact, which are recommended best practices. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy policies and terms of service are present and appear compliant with GDPR requirements. Overall, the website is a trustworthy and professional municipal portal with a strong focus on community engagement and service delivery. Strategic improvements in security headers and incident response transparency could further enhance its security posture and user trust.

G

Gemeinde Niedergösgen

niedergoesgen.ch

61

Gemeinde Niedergösgen betreibt eine offizielle Website, die umfassende Informationen und Dienstleistungen für Einwohner und Interessierte der Gemeinde bereitstellt. Die Website ist klar strukturiert und bietet Inhalte zu Verwaltung, Politik, Bildung, Gewerbe und sozialem Leben. Die Zielgruppe sind hauptsächlich lokale Bürger und Besucher der Gemeinde. Die Website nutzt das i-web CMS und ist technisch solide mit moderater Performance und guter mobiler Optimierung. Die Sicherheitslage ist grundlegend gut mit HTTPS, jedoch fehlen erweiterte Sicherheitsheader und explizite Sicherheitsrichtlinien. Datenschutz wird durch eine gut sichtbare Datenschutzerklärung und Cookie-Einwilligung gewährleistet. Insgesamt zeigt die Website eine hohe Vertrauenswürdigkeit und Professionalität, typisch für eine kommunale Institution.

G

Gemeinde Niederbuchsiten

niederbuchsiten.ch

59

The website www.niederbuchsiten.ch serves as the official digital presence of the Gemeinde Niederbuchsiten, a small municipal government entity in Switzerland. It provides comprehensive information about the community, including services, events, political structure, and contact details. The site targets residents and visitors seeking municipal information and online services such as room reservations and administrative contacts. The business model is focused on public service and community engagement, positioning itself as a trusted local government resource. Technically, the website is built on the i-web CMS platform, utilizing modern web technologies including JavaScript modules and import maps. The site is mobile-optimized, accessible, and structured with clear navigation. Performance is moderate, with no critical technical issues detected. The use of a Swiss-based anonymized web statistics service indicates a privacy-conscious approach to analytics. From a security perspective, the site employs HTTPS but lacks visible advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is well addressed with a clear privacy and cookie policy, including user consent mechanisms. Contact information is transparent and professionally presented, enhancing trustworthiness. Overall, the website demonstrates a solid security posture and good digital maturity for a municipal government site. Recommendations include implementing additional security headers, publishing security policies, and enhancing incident response transparency to further strengthen security and compliance.

G

Gemeinde Gunzgen

gunzgen.ch

60

Gemeinde Gunzgen is a municipal government website serving the local community in Switzerland. It provides a broad range of public services and information including politics, administration, education, social services, events, and waste management. The site targets residents and visitors seeking official information and online services such as the Online-Schalter. The website is well-structured, professionally designed, and consistent with the branding of a local government entity. Technically, the site uses a modern CMS platform (i-web CMS) with standard web technologies such as JavaScript, CSS, and HTML5. It is mobile-optimized and accessible, with good SEO practices and a moderate performance profile. The site employs HTTPS and includes a cookie consent mechanism, reflecting a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and anonymizes web statistics data, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by a clear privacy policy and cookie consent banner, aligned with GDPR requirements. Overall, the website presents a low-risk profile with strong business credibility as a government entity. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and security posture.

G

Gemeinde Fulenbach

fulenbach.ch

59

Gemeinde Fulenbach operates an official municipal website serving the local community of Fulenbach, Switzerland. The site provides comprehensive information about local government services, news, events, and administrative contacts. It targets residents and visitors seeking municipal information and online services. The website is positioned as a trusted local government portal with clear navigation and relevant content. Technically, the website is built on the i-web.ch CMS platform, utilizing modern web technologies including JavaScript, CSS, and responsive design. The site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with no critical technical issues detected. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not publish a security policy or incident response contacts. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, indicating awareness of GDPR requirements. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements could focus on enhancing security headers and publishing a vulnerability disclosure policy to further strengthen trust and security posture.

G

Gemeindeverwaltung Egerkingen

egerkingen.ch

61

The website www.egerkingen.ch serves as the official digital presence of the municipal administration of Egerkingen, Switzerland. It provides comprehensive information about the community, local politics, administrative services, events, and official publications. The site targets residents and visitors seeking municipal services and information. The business model is that of a government entity delivering public services and community engagement. The website is well-structured, professionally designed, and consistent with the branding expected from a local government authority. Technically, the site utilizes a Swiss municipal CMS (iCMS) with modern web technologies including JavaScript, CSS, and HTML5. It employs Matomo analytics with a clear user consent mechanism, indicating a mature approach to privacy. The site is mobile-optimized and accessible, with good SEO practices. Performance is moderate, suitable for the content and audience. From a security perspective, the website enforces HTTPS and uses secure login forms. However, it lacks explicit security headers and does not publish a security policy or vulnerability disclosure page. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the legitimacy and consistency of the domain registration with the municipal identity. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further improve trust and security posture.

Schule Wettingen is a public educational institution serving the Wettingen community in Switzerland, offering comprehensive educational services from kindergarten through secondary school, including special education and music school programs. The website reflects a well-structured organization with multiple subdomains dedicated to different school levels and services, targeting parents, students, and local residents. The content is primarily in German and focuses on educational information and integration support for foreign language speakers. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and Piwik/Matomo for analytics. The site is served over HTTPS, ensuring secure communication, but lacks advanced security headers and visible privacy or cookie policies, which are areas for improvement. Mobile optimization and accessibility are basic but functional, with moderate performance. From a security perspective, the site shows a good baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers, privacy policies, and incident response information indicates gaps in security maturity and compliance, particularly with GDPR requirements. The use of analytics without a consent mechanism further highlights privacy compliance risks. Overall, Schule Wettingen presents a trustworthy and professional online presence appropriate for a public educational institution. Strategic improvements in privacy compliance, security headers, and mobile accessibility would enhance the site's security posture and user trust.

The International Society for Animal Genetics (ISAG) is a non-profit scientific organization dedicated to advancing research and collaboration in molecular genetics of animals. The society organizes conferences, workshops, comparison tests, and publishes the official journal Animal Genetics. The website serves as a hub for members and researchers to access resources, membership services, and event information. The target audience primarily consists of scientists and researchers in the animal genetics field. Technically, the website uses basic web technologies including JavaScript and CSS with no detected modern frameworks or CMS. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is moderate with HTTPS implied but no visible security headers or advanced protections. Privacy and cookie policies are present but basic, with a consent mechanism implemented. Overall, the security posture is adequate for a non-profit scientific society but could be improved by implementing security headers and enhancing privacy compliance. The absence of WHOIS data is likely due to privacy protection, which is justified for this type of organization. No suspicious or malicious indicators were found. The website is trustworthy and serves its community effectively.

1

1xBet

esp-congress.org

57

The website www.esp-congress.org appears to be a gambling and sports betting platform branded as 1xBet, targeting users in Bangladesh. It offers a wide range of betting and casino services, including sports betting, live bets, online slots, poker, and a mobile app for Android and iOS. The platform claims to operate under a Curacao license issued to Caecus N.V. and emphasizes localized payment methods and bonuses for Bangladeshi customers. The site is professionally designed with good navigation and mobile optimization, providing detailed information about registration, deposits, withdrawals, and promotions. Technically, the website uses standard web technologies such as HTML5, CSS, and JavaScript, with no detected CMS or advanced frameworks. The site is mobile-friendly and optimized for performance, though no explicit security headers or analytics scripts were detected in the provided HTML content. The WHOIS data is unavailable or malformed, limiting the ability to verify domain registration details and reducing trustworthiness from a domain perspective. From a security standpoint, the site uses HTTPS as implied by canonical links but lacks visible security headers and formal privacy or cookie policies. Incident response contact is provided via a security-related email address. No critical vulnerabilities or malware indicators were found in the content. The content is focused on gambling, which is considered questionable content requiring adult user targeting but no explicit adult material was detected. Overall, the site presents a functional and professional gambling platform with moderate trustworthiness due to missing WHOIS data and privacy compliance gaps. Strategic recommendations include improving security headers, publishing privacy and cookie policies, enhancing incident response visibility, and verifying domain registration information to increase user trust and compliance.

T

Tamedia AG

landbote.ch

11

Tamedia AG operates the Tages-Anzeiger website, a leading Swiss news media platform providing regional news and background information for Winterthur and surrounding areas. The company has a strong market position as a reputable media publisher with a subscription-based business model offering digital and print content. The website demonstrates a mature digital infrastructure using modern web technologies such as Next.js, JavaScript, and integrated paywall solutions. It employs robust privacy and cookie consent mechanisms, reflecting compliance with GDPR and other privacy regulations. Security posture is strong with HTTPS enforcement, security headers, and CAPTCHA-protected forms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

K

Kantonsspital Baden

kantonsspitalbaden.ch

75

Kantonsspital Baden is a large regional healthcare provider in Switzerland offering comprehensive medical services, research, and patient care. The website reflects a mature digital presence with a modern tech stack including Next.js and React, hosted on Vercel, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

G

Gemeinde Wettingen

wettingen.ch

59

Gemeinde Wettingen operates as the official municipal government website for the town of Wettingen in Switzerland. It provides comprehensive information about local government services, political participation, community events, and administrative resources. The site targets residents and visitors seeking municipal services and information. The business model is centered on public service and community engagement, positioning itself as a trusted local government portal. Technically, the website employs modern web technologies including JavaScript modules, CSS, and HTML5, and is built on the i-web CMS platform. It demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The site uses HTTPS and includes a privacy policy and cookie consent mechanism, reflecting a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and anonymizes web statistics data, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is adequate but could be improved by implementing additional headers and formalizing security policies. The website is safe for general audiences, containing no adult or questionable content. The domain registration details align well with the municipal identity, supporting high legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing incident response information, and improving SEO and accessibility compliance.

T

TablePress

tablepress.org

72

TablePress is a well-established WordPress plugin provider specializing in creating and managing tables easily and efficiently on WordPress websites. The company offers a freemium business model with premium plans that enhance functionality and support. The website is professionally designed, highly accessible, and optimized for mobile devices, targeting WordPress users who need advanced table features without coding. Technically, the site leverages WordPress CMS, modern JavaScript libraries like DataTables, and is hosted with Cloudflare DNS and registrar services, ensuring good performance and security. Security posture is strong with HTTPS enforced and multiple security headers present, though DNSSEC is not enabled. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and credible with strong user testimonials and a clear market position as a leading WordPress table plugin.

P

PowNed

helpmee.tv

54

The website www.helpmee.tv serves as a membership enrollment portal for PowNed, a Dutch media organization focused on providing an alternative voice in the Hilversum broadcasting landscape. The business model revolves around annual membership fees (€8.50 per year) to support their media activities. The site is well-branded, consistent, and targets Dutch-speaking individuals interested in media and alternative perspectives. The content is relevant and professionally presented, with clear calls to action for membership sign-up. Technically, the website employs modern tracking and analytics technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and DoubleClick advertising services. The site is served over HTTPS with CSRF protection tokens present, indicating a baseline of security awareness. However, there is no evidence of advanced security headers or cookie consent mechanisms, which are important for compliance and security hardening. The site is mobile optimized and SEO friendly but lacks accessibility features beyond basic levels. From a security perspective, the site shows good use of HTTPS and some security best practices but lacks visible security headers and formal security policies or incident response contacts. The absence of WHOIS data and domain registration transparency reduces trustworthiness, although the website content and business appear legitimate. No critical vulnerabilities or adult content were detected, and the site is fully accessible without WAF or blocking mechanisms. Overall, the website scores moderately well on content quality, technical implementation, and business credibility but has room for improvement in privacy compliance and security posture. Strategic recommendations include implementing cookie consent, adding security headers, publishing security policies, and improving domain registration transparency to enhance trust and compliance.

K

Konzervatívny inštitút M. R. Štefánika

monitoringfondov.sk

42

The website monitoringfondov.sk is a Slovak non-profit transparency platform focused on monitoring and visualizing EU fund projects, their utilization, and recipients. Operated by the Conservative Institute M. R. Štefánika and supported by the Pontis Foundation, it serves government transparency advocates, researchers, and the general public interested in EU fund allocation. The platform uses modern web technologies including Angular and Ionic, providing a mobile-optimized experience with a professional design and clear navigation. However, it lacks key compliance documents such as privacy and cookie policies and does not provide explicit contact information, which are areas for improvement. Security posture is moderate with HTTPS assumed but missing explicit security headers and incident response information. Overall, the site is legitimate, well-structured, and serves a niche transparency function in Slovakia.

E

EWE s.r.o.

donfelder.cz

40

Don Felder is a small Czech-based business operating a diving center, retail shop, and accommodation services primarily focused on the Croatian island of Brač. The website presents basic information about diving courses, equipment rental, lodging, and a diving guide book. The business targets diving enthusiasts and tourists interested in hospitality services in Croatia. The digital presence is minimalistic with basic HTML and CSS, lacking advanced technical frameworks or CMS platforms. There is no evidence of modern analytics or advertising technologies. Security posture is weak due to missing HTTPS confirmation, absence of security headers, and no visible privacy or cookie policies. The WHOIS data is unavailable, which reduces domain trustworthiness but the website content appears legitimate for a small regional business. Overall, the site provides essential business information but lacks comprehensive security and privacy compliance features.

E

euroAWK spol s.r.o.

bilbordovka.sk

66

Bilbordovka.sk is an established Slovak online platform specializing in the rental of outdoor advertising spaces such as billboards and citylights. Operated by euroAWK spol s.r.o., the website offers a user-friendly interface for searching, selecting, and ordering advertising spaces with integrated payment options. The company leverages its long-standing experience since 1991 to provide comprehensive services including printing and graphic design support. Technically, the website employs modern web technologies including Stimulus JS, Google Analytics, and Google Tag Manager, ensuring a responsive and accessible user experience. Security measures include HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be improved. Overall, the site demonstrates a strong security posture with no critical vulnerabilities detected. The domain registration details align well with the business claims, supporting the legitimacy of the entity. Strategic recommendations include enhancing security headers, publishing a security policy, and continuous monitoring of third-party scripts to maintain security and compliance.

V

VDE VERLAG GmbH

ehp-magazine.com

59

The website energie.de hosts the EUROHEAT&POWER international trade magazine, a leading publication focused on district heating, district cooling, and cogeneration markets in Europe. Operated by VDE VERLAG GmbH, the site targets decision makers and professionals in the heating and energy sectors, offering print and digital magazine editions, newsletters, and advertising opportunities. The content is professionally curated, with a clear focus on industry developments, technical innovations, and energy policy trends. The website is built on TYPO3 CMS and integrates modern web technologies including JavaScript and CSS, with advertising managed through AdSpirit and analytics via eTracker. GDPR compliance is evident through comprehensive privacy and cookie policies with user consent mechanisms.

V

VDE VERLAG GmbH

et-magazin.de

58

The website energie.de hosts the magazine 'et - Energiewirtschaftliche Tagesfragen', a professional publication focused on the energy sector, covering news, expert articles, interviews, and future-oriented topics. Operated by VDE VERLAG GmbH, it targets professionals and stakeholders in the energy industry, providing specialized content and subscription services. The site demonstrates a solid market position as a specialized energy media publisher in Germany. Technically, the website is built on TYPO3 CMS with Yoast SEO integration, employing modern web technologies including JavaScript and CSS. Hosting is managed via agenturserver nameservers, indicating a professional hosting environment. The site is mobile-optimized with good SEO and basic accessibility features, delivering moderate performance. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Advertising is managed transparently with GDPR consent, and analytics are performed via etracker with moderate user tracking. Overall, the website is professional, secure, and compliant with privacy regulations, suitable for its target audience. Recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

V

VDE VERLAG GmbH

ew-magazin.de

58

The website energie.de hosts the ew-Magazin, a specialized media platform focused on the energy sector in Germany. It provides current news, expert articles, interviews, and industry insights targeted at energy professionals and decision makers. The business operates as a media publisher under VDE VERLAG GmbH, offering both print and digital magazine content, including e-magazines and job listings. The site is well-positioned in the German energy media market with a consistent brand and professional content quality. Technically, the site is built on TYPO3 CMS with Yoast SEO integration, hosted on a professional hosting provider (agenturserver). It employs modern web technologies, is mobile optimized, and uses structured data for SEO. Performance is moderate with good SEO and accessibility basics. Advertising and analytics are implemented with user consent, primarily using AdSpirit and etracker. From a security perspective, the site enforces HTTPS and respects privacy with cookie consent mechanisms. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The domain WHOIS data is consistent and legitimate, supporting trustworthiness. Overall, the website demonstrates a solid business and technical foundation with good privacy compliance and a professional security posture. Strategic improvements could focus on enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.

S

Slovenská asociácia poisťovní

slaspo.sk

55

Slovenská asociácia poisťovní (SLASPO) is a Slovak insurance industry association representing commercial insurance companies. The website serves as an informational and educational platform providing access to insurance statistics, legislative information, and key industry topics. The association aims to protect and promote the interests of its members in relation to government bodies and the public. The website is professionally designed with clear navigation and content relevant to its target audience of insurance professionals and the public. Technically, the site uses legacy jQuery 1.9.1 and Google Analytics for tracking, hosted on websupport.sk with DNSSEC and HTTPS enabled, indicating a moderate level of digital maturity. Security posture is adequate but could be improved by updating libraries and adding security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and legitimate with a domain age consistent with the association's history.

M

Microsoft

dot.net

73

The website https://dotnet.microsoft.com/en-us/ is an official Microsoft subdomain dedicated to the .NET developer platform. It provides tools, libraries, and resources for building modern applications across various platforms including web, mobile, desktop, games, IoT, and cloud services. The site is professionally designed, well-branded, and targets software developers and IT professionals globally. It leverages Microsoft Azure for hosting and monitoring, indicating a mature technical infrastructure. Security posture is strong with HTTPS enforced and modern security headers present, although explicit security policies and incident response contacts are not directly visible. Privacy compliance is partially addressed with a cookie consent mechanism but lacks visible privacy policy and terms of service links. Overall, the site is trustworthy, technically sound, and aligned with Microsoft’s enterprise standards.

B

Blaukontor für Gestaltung GmbH

walle-aktuell.de

45

Walle-Aktuell is a local community information portal focused on the Walle district in Bremen, Germany. It provides residents and visitors with event listings, local news, business directories, and promotes the community magazine 'ECHT WALLE'. The website is a project of Blaukontor für Gestaltung GmbH, a local design agency. The site is built on TYPO3 CMS, featuring structured data for SEO and clear contact information. The technical infrastructure is modern and supports HTTPS, but lacks some security headers and cookie consent mechanisms. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. Security posture is good but could be improved with additional headers and policies. Overall, the site is professional, trustworthy, and safe for general audiences.

C

Coen Siegerink

equi4.com

56

The website www.equi4.com is a small-scale personal or open source project site maintained by Coen Siegerink, focusing on embedded database libraries (Metakit), Tcl/Tk runtime environments (Tclkit), software deployment tools (Starkits), and a disk catalog utility (CatFish). The site targets developers and technical users interested in these niche technologies. The business model appears to be centered around providing open source software and utilities without commercial sales or extensive business infrastructure. Technically, the site is built with basic HTML and CSS, lacking modern frameworks or CMS, and shows moderate performance with basic mobile optimization and accessibility. Security posture is weak due to the absence of HTTPS, security headers, and privacy policies. No contact emails or phone numbers are explicitly provided, only a contact page link. WHOIS data is missing, raising concerns about domain registration legitimacy. Overall, the site is functional but lacks modern security and privacy compliance features.

M

Mistachkin Systems

e4.gl

49

The Eagle Project website represents a specialized open-source scripting language and runtime library designed for integration with the Common Language Runtime (CLR). The project is community-driven, offering free support forums, publicly accessible source code repositories, and digitally signed binaries to ensure authenticity. The target audience primarily consists of developers and technical users interested in scripting languages and secure sandbox environments. The website content is informative and technical, with a focus on project history, downloads, and development resources. Technically, the site is hosted on Linode with a straightforward HTML and CSS implementation, lacking modern CMS or advanced frameworks. The site demonstrates moderate performance and basic mobile optimization. The absence of HTTPS enforcement and security headers is a notable gap, although the project emphasizes code signing and sandbox security in its software offerings. No tracking or advertising technologies are present, reflecting a privacy-conscious approach. From a security perspective, the website lacks explicit security policies, incident response contacts, and privacy or cookie policies, which limits compliance with modern data protection regulations. The WHOIS data shows a consistent and legitimate domain registration with no privacy protection, aligning with the project's transparency. The digital signing of executables and sandbox contest indicate a security-aware culture, but the website itself could improve its security posture. Overall, the website scores moderately in content quality and business credibility but falls short in privacy compliance and security implementation. Strategic improvements in HTTPS deployment, security headers, and privacy policies would enhance trust and compliance, supporting the project's technical credibility and community engagement.

H

Hrvatsko društvo sudskih vještaka i procjenitelja

sudski-vjestaci.hr

53

Hrvatsko društvo sudskih vještaka i procjenitelja (HDSVIP) is a Croatian non-profit professional association dedicated to the advancement of court experts and appraisers. Established in 2004, it serves as a voluntary, non-governmental, and non-partisan organization focused on improving the role and institution of court experts within the judiciary and related institutions. The association is a recognized member of international bodies such as EuroExpert, HUM, and TEGoVA, enhancing its credibility and network. The website provides information about the association's initiatives, news, events, and resources for members and the public. Technically, the website is built using standard HTML5, CSS, and JavaScript with jQuery 1.8.3. It is hosted behind Cloudflare DNS services, suggesting HTTPS usage, although explicit security headers are not visible in the provided data. The site has a moderate performance profile with basic mobile optimization and accessibility features. Navigation is clear and content is professionally presented, targeting professionals in the judiciary and appraisal sectors primarily in Croatia. From a security perspective, the site shows some good practices such as using Cloudflare and secure form submission for member login. However, the use of an outdated jQuery version and absence of visible security headers indicate potential vulnerabilities. There is no visible privacy or cookie policy, which is a compliance gap under GDPR. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is trustworthy and professional but would benefit from updates to its security posture and privacy compliance. Strategic improvements in these areas would enhance user trust and regulatory adherence.

The Eagle Project website represents a small, specialized technology entity focused on the development and distribution of the Eagle scripting language, a member of the Tcl family. The project emphasizes security, sandboxing, and integration with the Common Language Runtime, targeting developers and technical users interested in scripting and secure runtime environments. The business model is community-driven with open source code repositories, downloadable binaries, and active community forums. The website content is technical and well-structured but lacks modern web features such as privacy policies and advanced security headers. Technically, the site is hosted by Hurricane Electric and built using older HTML standards with CSS styling. It supports multiple platforms including Windows and cross-platform runtimes like Mono and .NET Core. The site lacks modern CMS or analytics tools and shows basic mobile optimization and accessibility. Digitally signed executables and archives demonstrate good security practices for software distribution, although the website itself does not enforce HTTPS visibly or implement security headers. From a security perspective, the site shows strengths in code signing and authenticity verification but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. No forms or data collection points are present, reducing attack surface but also limiting user engagement. The absence of privacy and cookie policies indicates a gap in compliance with modern data protection regulations. Overall, the website is safe, professional, and trustworthy for its niche audience but would benefit from enhanced privacy compliance, security hardening, and improved technical modernization to increase its security posture and user trust.

BIS Bremerhaven is a regional economic development organization focused on supporting businesses and sustainable growth in the Bremerhaven area of Germany. The website presents a professional and well-structured digital presence, offering information on business services, networking, sustainability initiatives, and sector-specific support. The company targets local businesses, entrepreneurs, and investors, positioning itself as a key regional economic facilitator. Technically, the website uses modern web technologies including JavaScript and Cookiebot for GDPR-compliant cookie management, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks published security policies and advanced security headers. Privacy compliance is basic, with no explicit privacy policy or terms of service pages found in the provided content. Overall, the website is trustworthy and professional, with room for improvement in security transparency and privacy documentation.

The mevatec.net domain hosts a minimal placeholder website generated by Web4u s.r.o., a Czech web hosting and site editor service provider. The site content is limited to basic introductory text and links to Web4u's client and support pages, with no specific business information about mevatec.net itself. The domain is registered since 2011 and is active but not developed into a full business website. Technically, the website uses simple HTML and CSS without any advanced frameworks or CMS beyond the Web4u proprietary editor. There is no evidence of modern web technologies, analytics, or tracking. Performance and mobile optimization are basic, and SEO is minimal due to lack of metadata and content. From a security perspective, the site lacks HTTPS information in the provided data, has no security headers, and no privacy or cookie policies. There are no forms or data collection points, which reduces risk but also indicates low maturity. The WHOIS data is consistent and legitimate, with no privacy protection or suspicious patterns. Overall, mevatec.net is a low-activity domain with a placeholder site, minimal content, and limited security or compliance measures. It poses low risk but also low trust and business credibility. Strategic improvements should focus on enabling HTTPS, adding privacy and cookie policies, and developing meaningful content and contact information.

Mistachkin Systems is a personal and professional website representing Joe Mistachkin, a highly experienced software engineer with over 30 years in the technology sector. The site highlights his expertise in secure software automation, provisioning, and open source contributions, targeting potential employers and collaborators in the software engineering field. The business model centers on professional services and software development with a strong emphasis on security and ethical engineering practices. Technically, the website is built using basic HTML 4.01 Transitional and CSS, with no detected JavaScript or advanced frameworks. It is hosted with DNS services via Cloudflare, ensuring reliable domain resolution. The site is mobile optimized and performs well, though accessibility features are basic. SEO optimization is minimal but sufficient for a personal portfolio. From a security perspective, the site encourages secure communications using Session and OpenPGP, reflecting a strong security culture. However, it lacks formal privacy and cookie policies, security headers, and DNSSEC, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent and trustworthy, with a long history supporting the professional claims. Overall, the website is professional, trustworthy, and safe, but could benefit from enhanced privacy compliance and security hardening to improve its posture and user trust.

The domain unequalbrake.com currently serves a 404 Not Found error page with no substantive content. It is used by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. The site infrastructure is hosted on Google Cloud Platform in Europe and uses industry-standard encryption with frequent certificate rotation. However, the website lacks privacy and cookie policies, contact information, and any business-identifying content, limiting its utility and trustworthiness. Security practices are described in the page content, but no explicit security headers or vulnerability disclosure files are present. Overall, the site is accessible but non-functional as a public-facing website, resulting in a low content quality and business credibility score.

Grünbauer BV is a small manufacturing company based in the Netherlands specializing in steel processing services including cambering, straightening, splitting, sawing, cold rolling, and production of various steel girders and beams. The company targets steel fabricators and steel traders with a niche B2B business model. The website provides multilingual content describing their services and contact information but lacks modern web technologies and advanced digital features. The technical infrastructure is basic, with no detected CMS or analytics tools, and the site appears static and somewhat outdated. Security posture is weak due to lack of HTTPS enforcement and missing security headers, although DNSSEC is enabled on the domain. Privacy compliance is minimal with no privacy or cookie policies present. Overall, the website is functional but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

A

aliam S.A.

aliam.ch

48

aliam S.A. is a Swiss export company specializing in the distribution of laboratory equipment, representing world-leading manufacturers. The website presents a professional and consistent brand image, targeting businesses in the laboratory equipment sector. The company operates primarily as an exporter and distributor within the manufacturing industry in Switzerland. The digital infrastructure is based on WordPress with the Divi theme, leveraging WooCommerce assets, indicating a modern and flexible platform. The site demonstrates good SEO practices and moderate performance with mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced compliance and security transparency.

nLab sp. z o.o. is a specialized distributor and authorized service provider of scientific measurement instruments operating primarily in Poland and the Baltic states since 1998. The company represents several international brands in electrochemistry, surface plasmon resonance, and tensiometry, offering both sales and technical support including warranty services. Their market position is that of a trusted regional leader in niche scientific instrumentation with a focus on research and industrial R&D customers. Technically, the website is built on a CMS Made Simple platform using classic web technologies such as jQuery and CSS, providing a functional but somewhat dated user experience with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and DNSSEC, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

B

Baltnetos komunikacijos, UAB

tellq.io

61

Tellq.io is a Lithuanian-based technology company operating under Baltnetos komunikacijos, UAB, founded in 2016. The company offers Tellq Multi, a SaaS platform designed to streamline multi-channel customer support and sales through email, chat, phone, and SMS. Positioned as an emerging enterprise solution, Tellq emphasizes features such as a unified inbox, communication history, notifications, analytics, and team collaboration to enhance customer service efficiency. The website reflects a professional and consistent brand image with clear calls to action for early access, targeting businesses seeking advanced customer support tools. Technically, the site employs modern web technologies including SVG graphics, JavaScript, and Cloudflare DNS services, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are recommended in DNSSEC implementation and security headers. Privacy compliance is partial, with a privacy policy and terms of service present but lacking cookie consent mechanisms and GDPR explicit indicators. Overall, the domain registration aligns well with the business identity, supporting a high legitimacy score.

T

The Mail Archive

mail-archive.com

55

The Mail Archive is a specialized service that provides searchable archives for mailing lists, enabling users and administrators to easily search through archived mailing list postings. Established in 1998, it holds a niche position in the technology sector, focusing on mailing list archiving services. The website presents a straightforward interface with basic but functional design and navigation, targeting mailing list users and administrators. Technically, the site uses standard web technologies including HTML5, CSS, and JavaScript, with DNS hosted via Cloudflare. The site shows moderate performance and basic mobile optimization. There is no evidence of advanced frameworks or CMS usage. Security practices include HTTPS usage and domain transfer protection, but DNSSEC is not enabled and security headers are absent, indicating room for improvement. From a security perspective, the website does not expose sensitive data and uses HTTPS, but lacks visible security headers and cookie consent mechanisms. There is no published security policy or incident response information, which could be enhanced to improve trust and compliance. The domain registration is consistent and long-standing, supporting legitimacy. Overall, the website is functional and trustworthy for its niche purpose but would benefit from enhanced security headers, privacy compliance improvements, and clearer contact and security policy disclosures to strengthen its security posture and user trust.

T

The Chartered Institute of Building

ciob.org

67

The Chartered Institute of Building (CIOB) is a well-established professional body founded in 1834, dedicated to advancing the science, ethics, and practice of construction management and leadership globally. The organization offers membership services, professional development courses, events, and industry support, positioning itself as a leading authority in the built environment sector. The website reflects a mature digital presence with a clear focus on education, member support, and industry engagement. Technically, the site is built on Drupal 10, leveraging modern web technologies and Google Tag Manager for analytics and marketing. It demonstrates good mobile optimization, accessibility compliance (AA certified), and a professional design that supports user engagement and navigation. The presence of multiple certifications such as Cyber Essentials and Disability Confident further underscores its commitment to security and inclusivity. From a security perspective, the site enforces HTTPS and employs recognized certifications, though explicit security headers could be more visible. Privacy compliance is robust, with clear cookie and privacy policies and consent mechanisms in place. However, no explicit incident response or vulnerability disclosure information is provided, which could be improved. Overall, CIOB's website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security header implementation, publishing vulnerability disclosure policies, and providing clearer incident response contacts to further strengthen trust and security posture.

B

Bouwen met Staal

staalsupport.nl

40

Staalsupport.nl is a specialized digital information platform operated by Bouwen met Staal, focused on providing technical guidance and support for steel construction professionals in the Netherlands. The website serves as a knowledge base with over 300 questions and answers related to steel design, connections, fire safety, materials, sustainability, and execution. It is supported by the Koninklijke Staalfederatie, enhancing its credibility and industry relevance. The platform also offers direct helpdesk support for unanswered queries, positioning itself as a trusted resource in the niche market of steel construction. Technically, the website employs standard web technologies including HTML, CSS, JavaScript, and external libraries such as Font Awesome and Google Fonts. It uses HTTPS and includes analytics tools like Mtrack and MonkeyStats for user tracking. While the site is mobile responsive at a basic level and has good navigation and content structure, it lacks advanced security headers and formal privacy or cookie policies, which are areas for improvement. From a security perspective, the site benefits from HTTPS encryption and absence of exposed sensitive data or vulnerable libraries. However, the lack of security headers and absence of privacy and cookie policies reduce its compliance posture. No WAF or blocking mechanisms are detected, and the domain registration data aligns well with the website's business claims, indicating a trustworthy and legitimate online presence. Overall, Staalsupport.nl is a professionally maintained, niche informational website with good business credibility and moderate technical maturity. Enhancing privacy compliance and security best practices would further strengthen its risk profile and user trust.

E

Eclipse Foundation

ocxconf.org

74

The website www.ocxconf.org hosts the Open Community Experience (OCX) 2026 event, the flagship developer conference organized by the Eclipse Foundation. It targets developers, open source contributors, and technology professionals, offering a comprehensive program including collocated events on tooling, automotive, AI, compliance, and research. The site is professionally designed, mobile-optimized, and provides rich content about the event, sponsorship, and registration. Technically, the site is built on the Cvent event platform using React and modern web technologies, delivering moderate performance and good accessibility. Security posture is solid with HTTPS and privacy policies, though explicit security headers and incident response contacts are not evident. WHOIS data is unavailable due to a malformed query, which slightly reduces trust but is common for event domains. Overall, the site is trustworthy, well-maintained, and serves its business purpose effectively.

D

Dineplan

voucherplan.co.za

49

Dineplan operates a digital platform focused on providing universal restaurant vouchers primarily targeting the South African hospitality market. The website promotes the benefits of accepting Dineplan vouchers, aiming to increase restaurant exposure and revenue through a seamless voucher redemption process. The platform leverages HubSpot CMS technology, integrating forms and analytics to engage restaurant partners effectively. The website is professionally designed, mobile-optimized, and includes clear calls to action and contact mechanisms. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is supported by comprehensive privacy and terms pages hosted on the main domain. Overall, the site reflects a mature digital presence suitable for its business model and audience.

J

JustPaste.it

justpaste.it

56

JustPaste.it is an established online platform founded in 2009 that provides users with a quick and easy way to share text and images via a web-based editor. The service targets a general audience seeking simple content sharing without requiring account creation, supported by optional premium subscriptions for enhanced features. The website employs standard web technologies including the TinyMCE rich text editor and is accessible via HTTPS, ensuring basic security for users. However, the site lacks advanced security features such as DNSSEC and comprehensive security policies. Privacy and cookie policies are present but do not include explicit GDPR compliance mechanisms or cookie consent banners. Contact information and incident response details are not publicly available, which may impact user trust and compliance. Overall, the platform offers a functional and user-friendly service with moderate technical maturity and a stable domain registration history.

A

Automattic Inc.

intensedebate.com

62

IntenseDebate is a commenting system service owned by Automattic Inc., providing enhanced comment features such as threaded replies, social media login integration, email notifications, and moderation tools. The service targets bloggers and website owners seeking to increase reader engagement and community interaction. The website is professionally designed with clear navigation and good content relevance, reflecting a mature and stable business offering. Technically, the site uses modern web technologies, integrates with WordPress and other blogging platforms, and is hosted on Automattic's infrastructure, ensuring reliable performance and moderate loading speeds. Security measures include HTTPS enforcement, spam filtering via Akismet, and anti-clickjacking scripts, though there is room for improvement in DNS security and security headers. Privacy compliance is strong, with comprehensive policies linked from the site and GDPR considerations addressed. Overall, the site demonstrates a high level of trustworthiness and business credibility.

P

POWERbunker.com

pub400.com

41

PUB400.COM operates as a free and public IBM i 7.5 server platform aimed at the IBM i community, providing users with a programming and learning environment. The website serves over 55,000 users worldwide and offers features such as user profile creation, disk storage, and support for various programming languages including CL, RPG, SQL, and COBOL. The business model is community-focused and educational, with no commercial transactions evident. Technically, the site uses basic HTML, CSS, and IBM i Net.Data technology, with no advanced CMS or frameworks detected. Performance is moderate with basic mobile optimization and accessibility. Security posture is limited, lacking DNSSEC, security headers, and visible HTTPS enforcement, and no privacy or cookie policies are published. The domain registration is stable and consistent with the website's purpose, though the domain age is younger than the claimed service history, suggesting possible re-registration or domain change. Overall, the site is functional and trustworthy for its niche audience but requires improvements in security and privacy compliance to enhance trust and protection.

IronTcl by Eyrie Solutions is a niche technology provider offering free and commercially licensed Windows binaries of Tcl/Tk software. The website targets developers and technical users requiring Tcl/Tk on Windows platforms. The business model combines community free distribution with commercial licensing and support contracts. The company appears small and specialized, with a consistent brand presence and trust signals such as digital signatures and OpenPGP verification keys. Technically, the website is simple and functional, using basic HTML and CSS with Google Fonts. Hosting is provided by Linode, and the domain is registered with GoDaddy without privacy protection, indicating transparency. The site lacks advanced frameworks or CMS and shows basic mobile optimization and accessibility. SEO is minimal but adequate for the niche audience. Security posture is moderate, with good practices around digitally signing software and providing OpenPGP signatures. However, the site lacks security headers, privacy and cookie policies, and incident response information. No analytics or tracking scripts are present, which reduces privacy concerns but also limits marketing insights. Overall, the website is trustworthy and safe, with no adult or questionable content. The main risks relate to missing privacy compliance documentation and security headers. Strategic improvements in these areas would enhance trust and compliance.

The website www.tcl-lang.org serves as the main developer resource hub for the Tcl programming language and its Tk graphical user interface toolkit. It provides software downloads, documentation, community resources, and core development information. The site targets software developers and programmers interested in Tcl/Tk, positioning itself as a mature and evolving open source technology with commercial support partnerships such as ActiveState. The business model is community-driven with supplemental commercial offerings. Technically, the site uses basic HTML and CSS with Google Site Search integration and is hosted by ActiveState. Performance and mobile optimization are moderate to basic, with room for improvement in accessibility and SEO. Security posture is moderate; while no critical vulnerabilities or exposed sensitive data are evident, the site lacks security headers and published security policies. WHOIS data is incomplete, which slightly reduces trust but does not outweigh the legitimacy indicated by the content and hosting. Privacy and cookie policies are absent, indicating a gap in compliance. Overall, the site is functional and trustworthy for its niche audience but would benefit from enhanced security and privacy transparency.

The Tcl Developer Xchange website serves as the primary hub for the Tcl programming language and Tk GUI toolkit community. It provides software downloads, documentation, community resources, and core development information. The site targets software developers interested in Tcl/Tk technologies and is hosted by ActiveState, a reputable company known for commercial support of Tcl. The website content is technical, mature, and well-structured, though the design is basic and mobile optimization is limited. From a technical perspective, the site uses standard HTML and CSS with Google Site Search integration and Cloudflare Insights for analytics. Hosting by ActiveState suggests reliable infrastructure, but the site lacks visible modern security headers and explicit HTTPS confirmation in the provided data. Privacy and cookie policies are absent, which impacts compliance and user trust. Security posture is moderate but could be improved by implementing HTTPS, security headers, and publishing privacy-related policies. The WHOIS data is incomplete and malformed, which reduces domain registration trustworthiness, though the website content and hosting provider indicate legitimacy. No adult or questionable content is present, making the site safe for general audiences. Overall, the site is functional and credible within its niche but would benefit from enhanced security practices, privacy compliance, and improved technical modernization to strengthen trust and user experience.