Security Directory

Z

ZENIT - English

zenit.org

60

ZENIT is a well-established religious news agency providing multilingual coverage of Catholic Church affairs and related religious topics. Founded in 1997, it operates as a non-profit media organization funded primarily through reader donations. The website offers news articles, documents, and newsletters targeting a general audience interested in religious news. Technically, the site is built on WordPress with modern plugins and frameworks such as Yoast SEO, Bootstrap, and integrates Google Analytics, Tag Manager, and HubSpot for marketing and analytics. The site is hosted behind Cloudflare, ensuring good performance and security. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks DNSSEC and explicit security policies or incident response information. Privacy compliance is basic with cookie consent implemented via Iubenda. Overall, the website is professional, trustworthy, and serves its niche effectively, though improvements in security transparency and DNS security are recommended.

The website schoenstatt-zentren.net serves as an informational platform for Schönstatthäuser, spiritual retreat centers in the German-speaking region. It targets individuals and event organizers seeking places for reflection, spiritual community, and events. The site is operated by a non-profit association, Arbeitsgemeinschaft Schönstätter Trägervereine und Institutionen, established around 2006. The content is primarily in German and focuses on providing detailed information about various Schönstatt houses, their locations, and contact details. The business model is informational and community-oriented, without direct commercial transactions on the site. Technically, the website is built on the Contao Open Source CMS platform, utilizing older but functional technologies such as jQuery 1.9.1 and Liquid Slider for UI elements. Hosting is provided by World4You Internet Services GmbH. The site shows moderate performance and basic mobile optimization. Accessibility and SEO features are present but could be improved. No advanced analytics or tracking services are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS (implied by base href https://), but lacks DNSSEC and security headers, which are recommended for enhanced protection. The use of an older jQuery version may pose some security risks. No forms are present on the main page, reducing attack surface. Privacy compliance is partial; a privacy policy page exists but no cookie consent mechanism is implemented. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and serves its niche well but would benefit from technical and security improvements to enhance user trust and compliance with modern standards.

P

Pater Kentenich Sekretariat

pater-kentenich.org

41

The Pater Kentenich Sekretariat website serves as an informational and spiritual resource dedicated to Father Joseph Kentenich, founder of the International Schoenstatt Movement. It supports the beatification process by providing prayer inspirations, written materials, and testimonies in multiple languages, targeting a global religious audience. The website is positioned as a niche non-profit entity focused on religious education and spiritual guidance. Technically, the site is built on the concrete5 CMS platform (version 5.6.4.0) and employs common web technologies such as jQuery and Bootstrap. The site is mobile-optimized and offers a multilingual experience, although some technical aspects like security headers are missing. Security posture is moderate with HTTPS enforced but lacking advanced headers and incident response information. The absence of WHOIS data limits domain registration trust verification, but the website content and structure indicate legitimacy. Overall, the site is professionally presented with good content quality and user experience but could improve in privacy compliance and security best practices.

A

AWO Stadtverband Hanau e.V.

awo-hanau.de

64

AWO Stadtverband Hanau e.V. is a well-established non-profit organization based in Hanau, Germany, focused on family education, social projects, and community services. The organization offers a broad range of courses and support services for families, children, and adults, positioning itself as a key regional social service provider with a history dating back to 1962. The website serves as an information hub for their offerings and community engagement initiatives. Technically, the website is built on the Jimdo CMS platform, leveraging standard web technologies including jQuery and third-party widgets from POWr.io. It is hosted by Jimdo GmbH, with a moderate performance profile and good mobile optimization. The site includes cookie consent mechanisms and integrates social media channels for outreach. SEO and accessibility are basic but adequate for the target audience. From a security perspective, the site enforces HTTPS and includes cookie consent, but lacks advanced security headers and anti-CSRF protections in forms. No WAF or blocking mechanisms were detected, and no critical vulnerabilities were found in the visible content. Privacy compliance is good with a clear privacy policy and cookie policy aligned with GDPR requirements. Overall, the website presents a trustworthy and professional digital presence for a regional non-profit. Strategic improvements in security headers and form protections would enhance its security posture. The site is safe for general audiences and effectively supports the organization's mission and community engagement.

A

Agentur Werbezeit

agentur-werbezeit.com

54

Agentur Werbezeit is a small, German-based creative advertising agency specializing in generating ideas to increase brand awareness for companies and products. Founded in 2015, the agency leverages a small but experienced team to deliver marketing and media services. The website is professionally designed using WordPress with modern plugins for SEO and GDPR compliance, reflecting a mature digital presence. The technical infrastructure includes Google Analytics and Tag Manager for marketing insights, and the site is secured with HTTPS. Privacy and cookie policies are comprehensive and GDPR compliant, with a clear consent mechanism. However, no explicit contact emails or phone numbers are published, relying on a contact form for communication. Security posture is good but could be improved by enabling DNSSEC and adding security headers. Overall, the website presents a trustworthy and professional image suitable for its target audience of businesses seeking marketing services.

C

Chaport

chaport.com

8

Chaport is a technology company offering an all-in-one customer messaging software platform that integrates multi-channel live chat, chatbots, and knowledge base functionalities. Positioned as a leading solution in customer messaging, Chaport targets businesses seeking to enhance customer communication and support. The website is built on WordPress with modern SEO and analytics tools, indicating a moderate level of digital maturity. However, the absence of WHOIS registration data raises questions about domain legitimacy, though the website content and branding appear professional and consistent. Security posture is moderate with no detected security headers and missing visible privacy and cookie policies, suggesting room for improvement in compliance and security transparency. Overall, Chaport presents as a functional SaaS business with a good user experience but would benefit from enhanced security and compliance disclosures.

O

OEMUS MEDIA AG

zwp-online.info

10

ZWP online is a professional German-language news portal focused on the dental industry, providing daily news, market information, product details, educational content including CME, and multimedia resources such as videos and podcasts. The site targets dental professionals, industry stakeholders, and students, positioning itself as a leading source of dental news in the German-speaking market. The business operates under OEMUS MEDIA AG, a known media company specializing in healthcare and dental sectors. Technically, the website employs a modern tech stack including jQuery, Font Awesome, Moment.js, Chart.js, JWPlayer, and integrates marketing and analytics tools like Sendinblue, Matomo, and PushOwl. The site is mobile-optimized with good SEO practices and a professional design, though some accessibility features are basic. Performance is moderate with room for improvement. Security posture is solid with HTTPS enforced, CSRF tokens present, and cookie consent mechanisms implemented. However, the absence of explicit security headers and lack of published security policies or incident response contacts are areas for enhancement. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the site is trustworthy and professional, but the lack of publicly available WHOIS data and registrant information slightly reduces domain trustworthiness. Strategic recommendations include improving security headers, publishing security and incident response policies, and providing clearer contact information to enhance user trust and compliance.

M

Moravskoslezské inovační centrum (MSIC)

ms-ic.cz

10

Moravskoslezské inovační centrum (MSIC) is a regional innovation support organization based in the Czech Republic, founded in 2017. The website presents MSIC as a key player in supporting business and innovation in the Moravian-Silesian region, offering services such as financing, know-how, matchmaking, and infrastructure support. The site targets local businesses and entrepreneurs, providing resources, events, and expert networks to foster innovation and growth. Technically, the website is built on WordPress with modern integrations including Google Analytics, Microsoft Clarity, Hotjar, and Google Tag Manager, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and reCAPTCHA implementations, though some security headers and explicit policies are missing. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and well-branded, with strong regional partnerships and client testimonials enhancing credibility.

B

BIC Plzeň, s.r.o.

bic.cz

10

BIC Plzeň, s.r.o. operates as a regional business and innovation center in Plzeň, Czech Republic, providing incubation, mentoring, funding support, and infrastructure rental to startups and technology-oriented companies. The organization supports early-stage ideas through to scaling businesses, offering tailored programs and international networking opportunities. Their market position is that of a key regional enabler for innovation and entrepreneurship, collaborating with universities, government, and industry partners. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Contact Form 7, employing Google Fonts and reCAPTCHA v3 for security. The site is mobile-optimized, SEO-friendly, and uses lazy loading for images, indicating a mature digital infrastructure. Performance is moderate with good accessibility and user experience. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though additional HTTP security headers and published security policies would enhance trust. Privacy compliance is strong with visible GDPR-aligned privacy and cookie policies and consent mechanisms. Contact information is clearly presented, supporting business credibility. Overall, the website presents a professional and trustworthy front for BIC Plzeň, though the absence of WHOIS data reduces domain registration transparency. Strategic recommendations include improving security headers, publishing incident response contacts, and verifying domain registration details to strengthen trust and compliance.

I

ICT UNIE

ictu.cz

19

ICT UNIE is a professional association representing companies in the electronic communications sector in the Czech Republic. Established in 2010, it serves as a platform to raise awareness about modern information technologies among businesses and government bodies, promoting a knowledge-based society. The association offers working groups, organizes events, and supports its members through advocacy and collaboration. The website reflects a mature digital presence with a modern tech stack based on Nuxt.js and Vue.js, optimized for performance and mobile devices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, ICT UNIE demonstrates a credible and professional online presence aligned with its business objectives.

B

Brno.AI

brno.ai

9

Brno.AI is a Czech regional open platform dedicated to fostering the application of artificial intelligence and building a collaborative AI community in the Brno region. The website serves as a hub for AI enthusiasts, developers, and organizations to discover AI applications and collaborate. The platform positions itself as a community-driven initiative with a focus on technology and innovation. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search optimization and Google Tag Manager for analytics. The site demonstrates good design quality, mobile responsiveness, and clear navigation, supporting a positive user experience. However, the absence of explicit privacy policies and contact information limits its privacy compliance and business transparency. Security posture is moderate with no detected security headers or incident response information, indicating room for improvement in security best practices. Overall, the website is legitimate and appropriate for its business scope but would benefit from enhanced security and compliance measures.

P

PRAVIDLA SE ZMĚNILA

pravidlasezmenila.cz

9

PRAVIDLA SE ZMĚNILA is a small-scale creative and marketing-focused platform that provides space for creatives and marketers to advance their skills and knowledge. The website promotes events such as AI-related conferences, film festivals, and courses, targeting professionals interested in marketing and AI innovation. The site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable technical infrastructure. Tracking tools like Google Analytics and Facebook Pixel are employed for user analytics and marketing purposes. Security posture is moderate with HTTPS enabled but lacks visible security headers and explicit security policies. The absence of WHOIS data and privacy policy pages reduces transparency and compliance confidence. Overall, the website is professional and content-rich but would benefit from enhanced security and privacy disclosures.

I

Innoforum

innoforum.cz

10

Innoforum.cz is a professional Czech conference website focused on innovation, technology, and business networking. The site presents a comprehensive program with expert speakers, panel discussions, and startup pitches, targeting innovators, entrepreneurs, and professionals in the Czech Republic. The website is built on WordPress with a modern tech stack including Google Tag Manager, Google Analytics, Microsoft Clarity, and Facebook Pixel, indicating a mature digital infrastructure. The site is well-optimized for SEO, mobile-friendly, and provides a good user experience with clear navigation and rich content. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some advanced security headers and policies could be improved. The WHOIS data shows a recent domain creation date which is somewhat inconsistent with the content's historical references, suggesting a recent domain transfer or re-registration. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

C

CURIA (formerly Femtec.Alumnae)

curia-netzwerk.de

47

CURIA is a well-established non-profit network dedicated to supporting women in STEM fields in Germany. With over 1,000 members and partnerships with reputable companies, it offers career development, networking, and annual conferences. The website is professionally designed, mobile-optimized, and content-rich, reflecting a mature digital presence. Technically, it runs on WordPress with modern front-end technologies and uses plugins for analytics and contact forms. Security posture is good with HTTPS enforced, but lacks some security headers and explicit incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and serves its target audience effectively.

CertUp is a specialized audit bureau based in Belgium, focusing on quality certification and registration audits for organizations in the education, consulting, and HR sectors. With over 30 years of experience and more than 10,000 audits completed, CertUp offers a range of services including Qfor, ISO, WSE, and Qualiopi audits. The company targets training centers, consultants, HR service providers, and sector organizations, helping them achieve recognized quality certifications to enhance their market credibility and access government subsidies. Technically, the website is built with modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and Facebook SDK for analytics and marketing. The site is mobile-optimized with good SEO practices and a clear navigation structure. However, no explicit CMS or hosting provider information is detected. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The domain registration data is consistent with the business claims, supporting the legitimacy of the website. Overall, CertUp presents a professional and trustworthy online presence with strong business credibility. Strategic improvements in security policy transparency and security headers would enhance their security posture further.

S

Sozialverband Deutschland e.V.

diebessererente.de

54

Sozialverband Deutschland e.V. (SoVD) is a well-established German non-profit organization dedicated to social justice and strengthening the statutory pension system. The website focuses on educating the public about the benefits of the statutory pension, advocating for policy improvements, and providing social counseling services. It targets German residents, pensioners, and socially vulnerable groups. The organization positions itself as a trusted voice in social policy with a strong digital presence and comprehensive content offerings. Technically, the website is built on TYPO3 CMS, uses modern JavaScript libraries like jQuery, and integrates privacy-respecting tools such as Klaro for cookie consent and Matomo for analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses privacy-friendly embedded content, and implements cookie consent mechanisms. However, explicit security headers like Content-Security-Policy are not detected and could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the website presents a low-risk profile with strong privacy compliance and professional content. Strategic improvements in security headers and explicit incident response policies could further enhance trust and resilience.

N

Nordic CAMPUS Berufsbildungswerk Bremen gGmbH

bbw-bremen.de

56

Nordic CAMPUS Berufsbildungswerk Bremen gGmbH is a well-established non-profit vocational training institution in Germany focused on educating and supporting young people with disabilities. With over 40 years of experience and multiple locations, it offers a broad range of training programs, personal and health support services, and fosters inclusion through strong partnerships and community engagement. The website reflects a professional and inclusive brand with comprehensive content and clear navigation. Technically, the website uses a custom or unknown CMS with a technology stack including jQuery and responsive design elements. Hosting is provided by a German ISP (Ewetel). The site is mobile-optimized and SEO-friendly but lacks some modern security headers. Cookie consent mechanisms are implemented, supporting GDPR compliance. Security posture is moderate with HTTPS enforced and email obfuscation in place, but missing explicit security headers and incident response contacts. No vulnerabilities or malware indicators were found. Overall, the site is trustworthy and professionally maintained, with room for security enhancements. The risk level is low, with recommendations to improve security headers, publish a security policy, and enhance incident response transparency to further strengthen trust and compliance.

S

sovd-tv.de – Top-Deals

sovd-tv.de

54

The website 'sovd-tv.de – Top-Deals' functions primarily as a domain-for-sale landing page combined with an affiliate marketing platform showcasing discounted product deals across multiple categories such as electronics, home & kitchen, beauty, clothing, and toys. The business model appears to rely on affiliate commissions from Amazon product links and domain sales. The site targets general consumers interested in bargain shopping, primarily German-speaking users. Technically, the site uses standard HTML5, CSS3, and JavaScript with Google Fonts integration and dynamic search features. However, it lacks modern security practices such as HTTPS enforcement and security headers. No privacy or cookie policies are present, and no contact or company information is disclosed, which negatively impacts trust and compliance. The WHOIS data indicates the domain is unregistered or parked, raising legitimacy concerns. Overall, the site has moderate content quality and usability but poor security and compliance posture.

D

DeMa IT

dema-it.com

53

DeMa IT is a small German IT service provider based in Cologne, specializing in web design, software and app development, and IT services. The company targets business customers seeking tailored IT solutions and emphasizes customer satisfaction and long-term relationships. Their website reflects a professional and consistent brand image with clear service offerings and partner logos. Technically, the site uses modern web technologies including Laravel backend, Cloudflare DNS/CDN, and standard frontend frameworks. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS enforced and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is good with a GDPR-compliant privacy policy and cookie consent mechanism, though no terms of service or incident response policies are visible. Overall, the website is trustworthy and functional with moderate security maturity.

R

RM

rm.com

73

RM is a UK-based leading supplier of technology and services tailored for the education sector, supporting a wide range of educational institutions from pre-school to higher education, including examination boards and government bodies. Their offerings encompass education technology, assessment solutions, broadband, VoIP, and support services, positioning them as a comprehensive provider in the education technology market. The website reflects a professional and consistent brand presence with clear navigation and extensive content targeting schools, teachers, and educational institutions globally. Technically, the site employs a modern tech stack including C#, jQuery, Google Analytics, and OneTrust for cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and use of reCAPTCHA, though some security headers and explicit policies are not evident in the provided data. The absence of WHOIS registration details limits domain trust verification but the overall digital footprint and related domains support legitimacy. Privacy compliance is partially addressed with cookie consent but lacks a clearly accessible privacy policy in the analyzed content. Overall, RM demonstrates a strong market position with room for improvement in transparency and security documentation.

F

Fluke Networks

flukenetworks.com

66

Fluke Networks is a well-established provider of certification, troubleshooting, and installation tools for network cable infrastructure professionals. The company operates under the parent company Fortive Corporation and maintains a strong market position with a comprehensive product portfolio targeting network engineers, installers, and technicians. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their B2B audience. Technically, the site is built on Drupal 7 with modern JavaScript libraries and frameworks such as Bootstrap, ensuring good mobile responsiveness and user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although additional security headers could enhance protection. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website and business demonstrate high credibility and trustworthiness despite the absence of WHOIS data, which may be due to privacy or query limitations.

H

HBS IT GmbH

hbs-it-gmbh.de

54

HBS IT GmbH is a professional IT services company based in Germany, specializing in digital transformation, IT infrastructure, Industrial Internet of Things (IIOT), and web development. The company targets businesses seeking tailored IT solutions to support their digital future. Their market position is that of a regional expert with a focus on delivering customized and transparent IT services. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the website is built on WordPress with Elementor and optimized using WP Rocket. It employs modern web technologies including jQuery and Font Awesome, hosted on servers associated with rzone.de. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be improved. Performance is moderate, supported by caching and lazy loading techniques. From a security perspective, the site enforces HTTPS and includes security headers, although explicit security policies and incident response information are not published. Cookie consent is managed via Borlabs Cookie, indicating GDPR compliance. No critical vulnerabilities or security issues were detected in the analysis. The domain WHOIS data aligns with the website's geographic and business claims, supporting legitimacy. Overall, HBS IT GmbH presents a trustworthy and professional online presence with solid technical and privacy compliance foundations. Strategic improvements could include publishing detailed security policies, enhancing accessibility, and adding a vulnerability disclosure mechanism.

M

mediagrafen

mediagrafen.de

58

mediagrafen is a small, specialized internet agency based in Bielefeld, Germany, founded in 2008. The company focuses on providing tailored web design, SEO, and digital solutions primarily using TYPO3 CMS. Their market position is regional with clients across Germany and neighboring countries, emphasizing quality, strategic digital development, and long-term partnerships. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that targets businesses and organizations seeking reliable web solutions. Technically, the site leverages TYPO3 CMS, modern JavaScript libraries, and Google Analytics with a GDPR-compliant cookie consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though some HTTP security headers could be improved. Overall, the site demonstrates high professionalism and trustworthiness with clear contact information and client references.

The Verband für Sicherheit in der Wirtschaft Hessen (VSW) is a professional association serving as a key interface between government security agencies and the private sector in Germany, particularly in Hessen. It provides a platform for information exchange, networking, and professional development through seminars, events, and an expert pool. The organization collaborates closely with federal and state security bodies, enhancing its credibility and influence in the security domain. The website reflects a mature digital presence built on TYPO3 CMS, featuring modern web technologies and a responsive design that caters well to its professional audience. Security-wise, the site enforces HTTPS, uses GDPR-compliant cookie consent mechanisms, and integrates Google reCAPTCHA to protect forms. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the site is trustworthy, well-maintained, and aligned with its business mission.

P

Projekt Pilgerheiligtum

pilgerheiligtum.de

50

Projekt Pilgerheiligtum is a well-established non-profit religious initiative based in Germany, focused on promoting the pilgrimage of the Mater Ter Admirabilis image within Christian communities. With over 25 years of history and a network of thousands of pilgrimage images, it serves as a spiritual and community-building platform. The website offers rich content, multilingual support, and various services including newsletters, online prayer sessions, and a shop for religious materials. Technically, the site is built on WordPress using Elementor and WooCommerce, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Privacy compliance is strong, reflecting GDPR adherence. Overall, the site is professional, trustworthy, and well-positioned within its niche.

S

SMJ-Bamberg

smj-bamberg.de

60

SMJ-Bamberg is a small non-profit youth organization based in Scheßlitz, Germany, focused on organizing children and youth activities such as camps, weekend retreats, and day trips. The organization operates on a volunteer basis and is part of the international Schönstatt Movement. The website serves as an official information portal for the community and interested participants. Technically, the website is built on the Wix platform, leveraging Wix's hosting and content management capabilities. The site is moderately optimized for mobile devices and has a good design quality with clear navigation. Security-wise, the site uses HTTPS and includes some security hardening scripts, but lacks comprehensive security headers and formal policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced compliance and security documentation.

S

Schönstattbewegung Frauen und Mütter

s-fm.de

42

The Schönstattbewegung Frauen und Mütter website represents a small non-profit religious community focused on women and mothers within the Catholic Church in Germany. The organization provides spiritual support, events, publications, and community engagement. The website is well-structured, content-rich, and clearly targeted to its niche audience. The technical infrastructure is based on the concrete5 CMS platform, with standard web technologies such as jQuery and Bootstrap grid. The site is mobile-optimized and performs moderately well, though some modernization could improve performance and security. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of security headers and an outdated CMS version present potential risks. Privacy compliance is partially met with a privacy policy present but lacking cookie consent mechanisms. Contact is primarily via a web form, with no direct emails or phone numbers publicly listed. Overall, the site is trustworthy and professional but could benefit from enhanced security and privacy features.