Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

150926
Websites
130
Industries
113
Countries
52
Avg Score
Page 2630 of 3019|Showing 131451-131500 of 150926
medikamente-und-sucht.de favicon

Deutsche Hauptstelle für Suchtfragen e. V.

medikamente-und-sucht.de

44
HealthcareGermanymediumHIGH

The website www.medikamente-und-sucht.de is operated by the Deutsche Hauptstelle für Suchtfragen e. V., a German non-profit organization focused on providing comprehensive information about medication and addiction. The platform serves multiple audiences including affected individuals, healthcare providers, researchers, and the press. It offers educational content, resources for counseling and treatment, self-help group information, and multimedia materials such as a video series. The site is positioned as an authoritative and trusted source within the German healthcare and addiction prevention sector. Technically, the website is built on TYPO3 CMS with Bootstrap 4 and uses Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices. However, some modern security best practices such as security headers and explicit cookie consent mechanisms are missing. The site uses HTTPS with a good SSL configuration, but lacks published security policies or incident response contacts. From a security perspective, the site shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. The use of Matomo with disabled cookies indicates a privacy-aware approach. The absence of security headers and incident response information are areas for improvement. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website is professional, trustworthy, and well-aligned with its non-profit educational mission. Strategic improvements in security headers, cookie consent, and transparency around security policies would enhance its compliance and security posture further.

25
28
2
70
90
60
-
healthcareaddictionmedicationsafetynon-profitinformation+1 more
TYPO3 CMSBootstrap 4jQueryMatomo Analytics+1
2025-06-24T16:09:46.062Z
aktionstag-suchtberatung.de favicon

Deutsche Hauptstelle für Suchtfragen e. V.

aktionstag-suchtberatung.de

45
Non-profitGermanymediumHIGH

The website www.aktionstag-suchtberatung.de serves as an official information platform for the Deutsche Hauptstelle für Suchtfragen e. V. (DHS), focusing on the annual Aktionstag Suchtberatung event. It targets addiction counseling centers, affected individuals, and their families in Germany, providing resources, event information, and materials to support public awareness and coordination. The site is well-branded, consistent, and professionally maintained using TYPO3 CMS and modern frontend technologies such as Bootstrap and jQuery. The content is relevant and structured for easy navigation, with a clear focus on non-profit public health communication. From a technical perspective, the website employs HTTPS with strong SSL configuration, uses a modern tech stack, and demonstrates good mobile optimization and accessibility. However, it lacks explicit security headers and a cookie consent mechanism, which are important for GDPR compliance and security hardening. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. Security posture is generally strong with no visible vulnerabilities or exposed sensitive data. The WHOIS data is consistent with the organization's identity and domain usage, supporting legitimacy. Contact information is clearly provided, including a physical address and phone number, but no email addresses or social media links were found. The absence of a terms of service page and security/incident response policies suggests areas for improvement. Overall, the website is a credible, well-maintained resource for addiction counseling awareness in Germany, with a solid technical foundation but some gaps in privacy compliance and security best practices. Strategic enhancements in these areas would further strengthen trust and compliance.

25
28
2
70
95
60
-
suchtberatungaktionstagdhssuchtberatung+2 more
TYPO3 CMSBootstrapjQueryPhotoswipe+1
2025-06-24T16:09:41.053Z
dhs-foerderverein.de favicon

Förderverein der Deutschen Hauptstelle für Suchtfragen e.V. (DHS)

dhs-foerderverein.de

34
Non-profitGermanysmallHIGH

The Förderverein der Deutschen Hauptstelle für Suchtfragen e.V. (DHS) is a well-established non-profit organization founded in 1947, serving as the central umbrella organization for addiction help and self-help in Germany. It coordinates member associations, supports self-help initiatives, promotes addiction prevention, and conducts public relations. The organization is government-funded and targets affected individuals, relatives, professionals, journalists, and the general public interested in addiction topics. The website reflects a professional and consistent brand presence with clear contact information and relevant content in German. Technically, the website is built on WordPress 6.8.1 using the OceanWP theme and standard libraries such as jQuery and FontAwesome. It is mobile-optimized with moderate performance and good SEO practices. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. The site uses HTTPS with excellent SSL configuration but lacks some security headers and a cookie consent mechanism, which are recommended for GDPR compliance. From a security perspective, the site shows good practices with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies and incident response contacts, which could improve trust and readiness. The WHOIS data is consistent with the organization's profile, showing no suspicious patterns. Overall, the website is trustworthy, professional, and serves its non-profit mission effectively. Strategic recommendations include implementing security headers, adding a cookie consent banner, publishing a security policy and incident response contact, and maintaining regular updates to WordPress and plugins to ensure ongoing security and compliance.

15
28
17
70
-
60
-
non-profitaddictionhealthpreventiongerman
WordPress 6.8.1jQuery 3.7.1OceanWP themeFontAwesome+1

Partner Domains:

www.dhs.de
partner
www.unabhaengig-im-alter.de
partner

+1 more partners

2025-06-24T16:08:30.741Z
magyarorszag.hu favicon

Magyarország

magyarorszag.hu

63
GovernmentHungaryenterpriseMEDIUM

Magyarorszag.hu is the official Hungarian government electronic administration portal, providing citizens and residents with access to a wide range of public services including document handling, appointment booking, authentication, and access to public records. The website serves as a centralized platform for government-related electronic transactions and information dissemination, positioning itself as a critical digital interface for government-citizen interactions in Hungary. The platform is enterprise-scale, reflecting its role as a national government service established since 2000. Technically, the website employs a custom government platform (SNAP) built on a modern technology stack including jQuery, jQuery UI, Bootstrap, and iframeResizer for dynamic content management. The site demonstrates good mobile optimization and basic accessibility features, with a moderate performance profile. SEO is well addressed through comprehensive meta tags and structured data (JSON-LD) indicating organizational information. From a security perspective, the site uses HTTPS as implied by canonical URLs, but lacks visible security headers such as Content Security Policy or HSTS. No exposed sensitive data or vulnerable libraries were detected in the HTML content. However, the absence of explicit privacy, cookie, and terms of service policies, as well as missing contact information for security incidents, indicates gaps in compliance and incident response readiness. Overall, the website is trustworthy and professionally maintained, consistent with its government affiliation and long domain history. Strategic recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, providing clear contact channels for security and privacy concerns, and enhancing accessibility and compliance features to strengthen user trust and regulatory adherence.

85
10
2
75
77
80
100
governmentelectronicadministrationhungarypublicservicese-government
jQuery 3.7.1jQuery UI 1.11.4Bootstrap (customized)iframeResizer+1
2025-06-24T16:07:45.415Z
fatf-gafi.org favicon

Financial Action Task Force (FATF)

fatf-gafi.org

67
GovernmentN/alargeMEDIUM

The Financial Action Task Force (FATF) website serves as the global platform for the international standard-setting body focused on combating money laundering, terrorist financing, and proliferation financing. The site provides comprehensive resources including reports, guidance, mutual evaluations, and lists of high-risk jurisdictions, targeting governments, regulatory bodies, and financial institutions worldwide. The organization holds a strong market position as a trusted global watchdog with a large-scale presence and authoritative content. Technically, the website is built on Adobe Experience Manager hosted on Adobe AEM Cloud, leveraging modern web technologies and Google Tag Manager for analytics. The site demonstrates good performance, mobile optimization, and accessibility, with a professional and consistent branding approach. From a security perspective, the site enforces HTTPS and uses deferred and asynchronous script loading, but lacks explicit security headers and visible incident response or vulnerability disclosure policies. No WHOIS data was available to verify domain registration details, which slightly reduces trust but the content and domain name strongly indicate legitimacy. Overall, the site is content-rich, professionally designed, and highly credible, though it would benefit from enhanced privacy compliance, explicit contact information, and improved security header implementation to strengthen its security posture and user trust.

55
53
17
85
65
80
100
fatfanti-moneylaunderingterroristfinancingproliferationfinancingfinancialactiontaskforce+3 more
Adobe Experience ManagerGoogle Tag ManagerAdobe Helix RUM
2025-06-24T16:07:40.403Z
harryreidairport.com favicon

Clark County Department of Aviation

harryreidairport.com

54
TransportationUnited StateslargeMEDIUM

Harry Reid International Airport, operated by the Clark County Department of Aviation, serves as the primary commercial airport for Las Vegas and Southern Nevada. The website provides comprehensive information on flights, terminals, transportation, parking, security, and special assistance services, targeting travelers, airlines, and business partners. The airport holds a strong market position as a major transportation hub in the region. Technically, the website employs a modern technology stack including jQuery, Bootstrap, FontAwesome, and Azure hosting, delivering a responsive and well-structured user experience. While performance is moderate, the site is mobile-optimized and SEO-friendly. However, some accessibility features are basic and could be enhanced. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and a public security policy. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR-specific indicators. Contact information is limited on the site, which may impact user trust. Overall, the website is professional and trustworthy, supported by consistent WHOIS data and a long domain age. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance the security posture and user confidence.

15
35
2
40
82
75
100
airportaviationtravellasvegasflightinformation+4 more
jQueryBootstrapFontAwesomeModernizr+4

Partner Domains:

clarkcountynv.gov
partner
hnd.aero
partner

+1 more partners

2025-06-24T16:07:20.280Z
tripcheck.com favicon

Oregon Department of Transportation

tripcheck.com

56
TransportationUnited StateslargeMEDIUM

TripCheck is an official Oregon Department of Transportation website providing comprehensive traveler information including road conditions, weather forecasts, traffic cameras, and commercial vehicle restrictions. The site serves as a critical resource for travelers and commercial operators within Oregon, offering real-time data and various travel-related services. The business model is government-operated, focusing on public service and transportation safety. The website is well-branded and consistent with state government standards, targeting a broad audience of Oregon travelers and transport professionals. Technically, the site employs modern JavaScript frameworks such as Dojo Toolkit and jQuery, along with Esri's ArcGIS API for mapping functionalities. The infrastructure appears to be hosted on state government servers, ensuring reliability and alignment with public sector standards. The site is moderately optimized for performance and mobile devices, with good SEO practices and basic accessibility features. From a security perspective, the domain is well-protected with registrar-level domain status locks, but lacks DNSSEC implementation and visible security headers. No privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. There is no exposed sensitive data or vulnerable libraries detected, but the absence of incident response contacts and security policies reduces the overall security posture. Overall, the website is trustworthy and professional, serving its public service mission effectively. However, improvements in privacy compliance, security headers, and incident response transparency are recommended to enhance user trust and regulatory adherence.

15
35
17
60
67
75
100
transportationtravelroadconditionsweathergovernment+2 more
JavaScriptDojo ToolkitjQueryEsri ArcGIS API+2
2025-06-24T16:06:55.218Z
azuredevsummit.com favicon

Azure Dev Summit

azuredevsummit.com

64
TechnologyPortugalmediumMEDIUM

Azure Dev Summit is a specialized technology conference focused on Microsoft Azure and related developer technologies, scheduled for October 2025 in Lisbon, Portugal. It targets software developers and the Microsoft Azure community, offering a 4-day event with workshops, sessions, and networking opportunities. The event is organized by NDC Conferences Portugal, a recognized entity in the tech conference space, with strong partnerships including Microsoft and other industry players. The website reflects a mature digital presence with comprehensive content, professional design, and clear business information. Technically, the website leverages modern web technologies including Next.js, React, and Sanity CMS, hosted behind Cloudflare DNS and CDN services. It integrates multiple analytics and marketing tools such as Microsoft Clarity, Google Tag Manager, HubSpot, and Mailchimp, indicating a sophisticated approach to user engagement and data collection. The site is mobile-optimized, fast-loading, and SEO-friendly, providing a positive user experience. From a security perspective, the site enforces HTTPS, employs domain locking status flags, and includes a cookie consent mechanism compliant with GDPR. However, DNSSEC is not enabled, and no explicit security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is strong but could be improved with additional transparency and DNS security enhancements. The overall risk assessment is low, with the site demonstrating high professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include enabling DNSSEC, publishing a security policy, and adding a vulnerability disclosure page to further enhance trust and security maturity.

15
68
17
70
75
80
100
languagesmicrosoftfuncross-platformai+2 more
ReactNext.jsHubSpotMailchimp+3

Partner Domains:

aikido.dev
partner
techorama.be
partner

+2 more partners

2025-06-24T16:06:20.115Z
stringsbymail.com favicon

Strings By Mail

stringsbymail.com

69
RetailUnited StatesmediumMEDIUM

Strings By Mail is an established online retailer specializing in guitar and orchestral strings, accessories, sheet music, and related musical products. The website targets musicians and music enthusiasts, offering a broad catalog including classical, acoustic, electric, and bass guitar strings, as well as orchestral strings and instructional materials. The business operates primarily as an e-commerce platform with additional services such as a subscription string delivery service. The company maintains a strong market position within its niche, supported by trust indicators like customer testimonials and security seals. Technically, the website is built on the Zen Cart e-commerce platform and utilizes a variety of JavaScript libraries including jQuery, Owl Carousel, and Yotpo for reviews. The site is mobile responsive with good SEO and accessibility basics, though some libraries are outdated which may pose security risks. HTTPS is enforced, and security best practices such as Google reCAPTCHA are implemented, but advanced security headers are not explicitly detected. From a security perspective, the site shows a moderate security posture with no visible critical vulnerabilities but could improve by updating libraries and enhancing security headers. Privacy compliance is basic, with a privacy policy present but no visible cookie consent mechanism. WHOIS data is missing or indicates the domain may not be currently registered, which is a significant concern for domain legitimacy and trust. Overall, the website is professional and functional with good content quality and user experience. However, the lack of WHOIS registration data and outdated technical components suggest areas for improvement in security and trustworthiness. Strategic recommendations include updating technical components, enhancing security headers, implementing cookie consent, and investigating domain registration status to ensure legitimacy.

65
53
17
85
75
85
100
e-commercemusicguitarstringsmusicalinstrumentsretail+4 more
jQuery 1.12.0jQuery Migrate 1.3.0jQuery BlockUIjQuery LazySizes+6

Partner Domains:

sheetmusicdirect.com
partner
us10.campaign-archive.com
partner

+1 more partners

2025-06-24T16:05:55.025Z
T

Twofold Health

trytwofold.com

61
HealthcareN/asmallMEDIUM

Twofold Health operates a specialized AI-driven medical scribe platform designed to automate and streamline clinical documentation for healthcare professionals such as therapists, physicians, and nurses. The company positions itself as a leading ambient AI solution trusted globally, offering a SaaS model with free, personal, and group subscription plans. Their platform emphasizes accuracy, compliance, and ease of use, targeting clinicians seeking to reduce administrative burden and improve patient care. Technically, the website is built using modern frameworks like Astro, hosted on Microsoft Azure with a strong focus on security and compliance. The site integrates advanced analytics tools including PostHog, Google Tag Manager, and social media pixels to monitor user engagement and optimize marketing efforts. The site is mobile-optimized, fast-loading, and well-structured for SEO. Security posture is robust with HIPAA and HITECH compliance, encrypted data handling, and no storage of audio recordings. The company maintains a formal Business Associate Agreement with Microsoft Azure and enforces internal security practices such as background checks and training. However, there is room for improvement in explicit security headers and cookie consent mechanisms. Overall, the website and business demonstrate a high level of professionalism and trustworthiness, though the absence of WHOIS domain registration data raises some concerns about domain legitimacy. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing vulnerability disclosure policies, and improving transparency on incident response.

30
53
2
70
72
80
100
aimedicalscribehealthcaretechnologyhipaacompliantclinicaldocumentationmentalhealth+2 more
JavaScriptPostHog analyticsGoogle Tag ManagerFacebook Pixel+1
2025-06-24T16:05:24.890Z
colorize.design favicon

Extract Color Palettes from Any Website - Free Color Palette Generator

colorize.design

58
TechnologyN/asmallMEDIUM

The website 'colorize.design' is a newly launched online tool designed to extract color palettes from any website for free. It targets designers, developers, and creatives who need quick access to color schemes from existing web pages. The business model is straightforward, offering a free service without evident monetization or advertising. The site is built with modern web technologies including Tailwind CSS and is hosted with Cloudflare DNS services, indicating a focus on performance and reliability. The domain was registered very recently in July 2024 and uses privacy protection, which is typical for new startups or small online services. From a technical perspective, the website demonstrates good mobile optimization, fast loading times, and a clean design. However, it lacks several important compliance and security features such as privacy and cookie policies, security headers, and contact information. No analytics or tracking scripts were detected, which may be positive for user privacy but also limits business intelligence capabilities. Security posture is adequate with HTTPS enabled and domain status marked as OK, but the absence of DNSSEC and security headers reduces the overall security robustness. The lack of published incident response or vulnerability disclosure policies suggests limited readiness for security incidents. Business credibility is moderate due to the absence of verifiable company information or trust signals. Overall, the website is functional and professionally designed but requires improvements in privacy compliance, security best practices, and transparency to enhance trustworthiness and regulatory adherence.

55
35
2
70
75
60
100
colorpalettedesigntoolfreetoolwebdesigncolorextraction
Tailwind CSSCloudflare DNS
2025-06-24T16:05:04.840Z
launchpedia.co favicon

Private by Design, LLC

launchpedia.co

49
TechnologyUnited StatessmallHIGH

LaunchPedia is a specialized online platform dedicated to helping startup founders and SaaS makers successfully launch their products. The website offers actionable guides, workbooks, resource lists, and consulting services focused on product launches, particularly leveraging platforms like Product Hunt. The business operates under Private by Design, LLC, a US-based company founded in 2022, positioning itself as a niche leader in the product launch resource market. The platform combines free content with paid digital products and affiliate marketing to generate revenue. Technically, LaunchPedia is built on WordPress using Elementor, supported by modern web technologies including jQuery, FontAwesome, and integrations with marketing and analytics tools such as Google Analytics, Microsoft Clarity, MailerLite, and Convertful. Hosting and CDN services are provided via Porkbun DNS and Bunny.net CDN, ensuring moderate performance and good mobile optimization. SEO practices are well implemented with comprehensive meta tags and structured data. From a security perspective, the site enforces HTTPS and uses domain status locks to prevent unauthorized domain transfers or deletions. However, it lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. Privacy compliance is partial; while a privacy policy and terms of service are present, there is no cookie consent mechanism despite the use of tracking scripts. No incident response or security policy information is publicly available. Overall, LaunchPedia presents a professional and trustworthy online presence with good content quality and business credibility. Security posture is adequate but can be improved by implementing additional domain and web security measures. Privacy compliance should be enhanced to meet GDPR and other regulations fully. Strategic improvements in these areas will strengthen user trust and regulatory adherence.

15
53
2
60
62
80
40
productlaunchstartupsaasguidesresources+3 more
WordPressElementorPHPjQuery+5

Partner Domains:

launchpedia.gumroad.com
partner
listmysaas.com
partner

+1 more partners

2025-06-24T16:04:59.782Z
skipcut.com favicon

SkipCut Team

skipcut.com

59
TechnologyN/asmallMEDIUM

SkipCut is a small technology-focused web service offering a free, ad-free YouTube player that works across multiple devices without requiring installation or login. It targets users seeking a clean, distraction-free YouTube viewing experience with features like SponsorBlock integration, playlist support, background audio playback, and dark mode. The business model relies on ethical partnerships, affiliate links, and community donations to sustain operations. Technically, SkipCut leverages modern web technologies including the official YouTube iframe API, Microsoft Clarity, Google Tag Manager, and Cloudflare DNS hosting. The site is well optimized for mobile and desktop with excellent SEO and accessibility features. Security posture is good with HTTPS enforced and domain transfer protection, but lacks visible security headers and formal security policies. Privacy compliance is limited due to absence of explicit privacy and cookie policies. WHOIS data shows some inconsistencies in domain creation date, which may be a data error but slightly impacts trust. Overall, SkipCut presents a professional, user-friendly service with strong technical foundations but would benefit from enhanced privacy and security documentation.

30
35
2
75
65
85
100
youtubewithoutadsadfreeyoutubeyoutubevideoplayeryoutubenocommercialsyoutubebackgroundplay+3 more
YouTube iframe APISponsorBlock integrationFont AwesomeMicrosoft Clarity+3

Partner Domains:

buymeacoffee.com
partner
t.me
partner
2025-06-24T16:04:54.749Z