Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

150926
Websites
130
Industries
113
Countries
52
Avg Score
Page 2631 of 3019|Showing 131501-131550 of 150926
qrtiger.com favicon

QR TIGER

qrtiger.com

55
TechnologyN/asmallMEDIUM

QR TIGER operates as a technology-focused online service specializing in QR code generation, including customized QR codes with logos. The website analyzed is a minimal landing page that directs users to the main service site and blog, indicating a supporting or redirect domain rather than a full-featured platform. The business appears to be a small-sized SaaS provider founded in 2019, targeting businesses and individuals needing QR code solutions. The market position is niche with a focus on QR code customization and related content. Technically, the website uses standard web technologies such as Bootstrap 4.1.1, FontAwesome, and Google Fonts, hosted behind Cloudflare DNS services. The site is mobile responsive at a basic level but lacks advanced SEO and accessibility features. No CMS or complex frameworks are detected, suggesting a lightweight and straightforward implementation. Performance is moderate given the minimal content. From a security perspective, the domain benefits from clientTransferProhibited status and Cloudflare DNS, but lacks visible security headers and privacy or cookie policies. No HTTPS status was explicitly provided but is assumed given Cloudflare usage. The absence of security policies, incident response contacts, and vulnerability disclosures indicates a low maturity in security governance. No forms or user data collection mechanisms are present to assess input security. Overall, the website presents a moderate risk profile with no critical security issues detected but notable gaps in privacy compliance and security best practices. Strategic improvements in security headers, privacy policies, and SEO would enhance trust and compliance. The domain WHOIS data is consistent and supports legitimacy, with no suspicious patterns or privacy protection masking registrant details.

15
35
2
75
75
75
100
qrcodeqrcodegeneratorqrtigertechnologysaas
Bootstrap 4.1.1FontAwesome 5.3.1Google Fonts (Merriweather)

Partner Domains:

www.qrcode-tiger.com
partner
2025-06-24T16:04:24.659Z
manchesterpaintballarena.co.uk favicon

manchesterpaintballarena.co.uk

manchesterpaintballarena.co.uk

50
OtherUnited KingdomsmallMEDIUM

The website manchesterpaintballarena.co.uk ostensibly represents a paintball arena business located in Manchester, UK, offering recreational paintball services. However, the actual website content is minimal and primarily consists of a domain parking or monetization page with advertising blocks and limited business information. The domain was registered recently in August 2023 by a registrant associated with domain reselling, which raises questions about the direct ownership and legitimacy of the site as a business platform. Technically, the site uses basic HTML5, CSS3, and JavaScript with integrations for Google Tag Manager and Google AdSense for advertising and tracking. The site lacks advanced frameworks or CMS platforms and shows only basic mobile optimization and SEO features. There are no forms or interactive elements, and no visible contact or social media links, which limits user engagement and trust. From a security perspective, the site uses HTTPS but lacks important security headers and policies. There is no visible privacy or cookie consent mechanism compliant with GDPR, and no incident response or security policy information is provided. The domain registration details suggest the domain may be parked or monetized by a third party rather than directly owned by the paintball business, which reduces trustworthiness and business credibility. Overall, the website presents a low-risk but low-value profile with limited business presence and security posture. Strategic recommendations include improving business content and contact information, implementing comprehensive privacy and security policies, enhancing technical infrastructure, and clarifying domain ownership to build trust and compliance.

20
53
2
60
52
70
100
paintballmanchesterrecreationaldomainparkingadvertising
Google Tag ManagerGoogle AdSenseBodis (domain parking/monetization)HTML5+2
2025-06-24T16:04:14.581Z
U

UR Bis

urbis.org.uk

42
OtherUnited KingdomsmallHIGH

UR Bis is an online resource dedicated to helping entrepreneurs and business owners in the UK start and grow their online businesses. The website offers comprehensive guidance on business planning, branding, website development, marketing, and technology tools. It positions itself as a niche platform focused on providing expert advice tailored to the unique challenges of the UK online business environment. The site is small in scale but professionally presented with consistent branding and relevant content targeting its audience effectively. Technically, the website is built on WordPress using the GeneratePress theme and Yoast SEO plugin, with jQuery and Google Analytics integrated for tracking. The site is served over HTTPS with a valid SSL certificate, ensuring secure connections. Mobile optimization and SEO practices are good, though accessibility features are basic. Performance is moderate, and the site uses standard modern web technologies. From a security perspective, the site benefits from HTTPS and secure form handling via Contact Form 7. However, no security headers were detected, and there is a lack of explicit privacy, cookie, or security policies. No contact emails or phone numbers are provided, limiting direct communication channels. The domain WHOIS data is unavailable due to the domain name being invalid per Nominet UK rules, which impacts trustworthiness from a domain registration standpoint. Overall, UR Bis presents a professional and useful resource for its target market but should improve privacy compliance, security headers, and contact transparency to enhance trust and security posture. The domain registration inconsistency should be clarified to avoid confusion and improve legitimacy perception.

20
35
2
55
72
80
-
onlinebusinessbusinessguideentrepreneurshipukbusinesswebsitedevelopment+2 more
WordPressYoast SEO pluginjQueryGoogle Analytics (gtag.js)+1
2025-06-24T16:04:04.561Z
A

adidas

adidas.co.uk

55
RetailUnited KingdomenterpriseMEDIUM

The website for adidas.co.uk is currently inaccessible due to a security block that triggers a HTTP 403 Forbidden response. This block is part of a bot protection mechanism during high-traffic product releases to ensure fair access to customers. Due to this, the site content is minimal and does not provide typical metadata, contact information, or business details. The WHOIS lookup for the subdomain 'www.adidas.co.uk' failed because it is not a valid registrable domain under Nominet UK rules, indicating the query was made incorrectly on a subdomain rather than the base domain. This limits the ability to verify domain registration details. Technically, the site uses JavaScript and references a tag management script that is commented out, indicating some level of digital marketing infrastructure, but no active scripts or external resources are loaded on this blocked page. No privacy, cookie, or terms of service policies are present on this page, and no contact or security policy information is available. The security posture cannot be fully assessed due to lack of data, but the presence of a WAF or bot protection system is confirmed. Overall, the site is enterprise-level retail focused on sportswear and sneaker sales, targeting consumers in the UK. However, the current page state prevents a full security, compliance, or business analysis. The lack of accessible content and WHOIS data results in a very low AI score and indicates the need for direct access or alternative data sources for comprehensive evaluation.

20
50
17
85
80
70
100
e-commercesportswearsecurity-blockbot-protection403-forbidden
JavaScript
2025-06-24T16:03:24.453Z
nflpa.com favicon

National Football League Players Association

nflpa.com

65
GovernmentUnited StateslargeMEDIUM

The National Football League Players Association (NFLPA) is the official union representing professional football players in the NFL. The organization focuses on player advocacy, collective bargaining, licensing, marketing, and providing resources for players and related stakeholders. The website reflects a mature and authoritative presence with comprehensive content tailored to players, agents, financial advisors, marketing representatives, media, and partners. The NFLPA maintains a strong market position as the recognized players' union with a large audience and extensive services including public dashboards and storytelling content. Technically, the website employs modern web technologies including JavaScript and Google Tag Manager, hosted with Azure DNS services. The site is mobile optimized, accessible, and SEO friendly with structured data enhancing search visibility. Performance is moderate with good design and navigation clarity. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the NFLPA website demonstrates a high level of professionalism, trustworthiness, and digital maturity. Security practices are good but could benefit from enhancements such as DNSSEC and a published security policy. The domain registration data aligns well with the organization's identity, reinforcing legitimacy. The site is free from blocking or WAF challenges, allowing full content access and analysis.

55
53
2
75
67
85
100
sportsunionnflplayersassociation+4 more
JavaScriptGoogle Tag ManagerAzure DNSSVG graphics

Partner Domains:

playerstrust.com
partner
yourpaf.com
partner

+3 more partners

2025-06-24T16:03:19.443Z
D

Force24 Portal

data-crypt.com

47
OtherN/asmallHIGH

The website 'Force24 Portal' appears to be a login portal for a service likely related to Force24, a company known for marketing automation solutions. The site is minimalistic with a focus on user authentication and integrates several third-party marketing and analytics tools such as Intercom, Microsoft Clarity, Appcues, Freshsuccess, and Datadog. However, there is a lack of publicly available business descriptive content, contact information, and legal policies such as privacy or cookie policies, which limits transparency and user trust. Technically, the site uses modern JavaScript frameworks and analytics platforms, indicating a moderate level of digital maturity. The performance and mobile optimization are basic but functional. Security posture is moderate with HTTPS enabled but lacking advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data for the domain platform.data-crypt.com is unavailable, with the raw WHOIS output indicating no match for the domain. This raises concerns about the domain's registration legitimacy or privacy protection usage. This lack of registration data negatively impacts the trustworthiness and business credibility scores. Overall, the site serves its purpose as a portal but lacks comprehensive business and privacy transparency. Strategic improvements in legal policy disclosures, contact availability, and security hardening are recommended to enhance trust and compliance.

40
35
17
50
-
80
100
loginportalauthenticationanalyticsmarketing+1 more
AngularJSAppcuesIntercomMicrosoft Clarity+4
2025-06-24T16:03:09.423Z
regprog.com favicon

Regular Programming

regprog.com

60
TechnologyN/asmallMEDIUM

The website 'Regular Programming' is a podcast platform focused on delivering conversations about programming topics, hosted by Lars Wikman and Andreas Ekeroot, and funded by Underjord.io. The site targets programmers and software developers interested in technology discussions. It operates primarily as a content distribution platform for podcast episodes, leveraging Transistor.fm for hosting and media delivery. The website presents a clean, consistent brand with good content quality and user experience, though it lacks comprehensive business and contact information. From a technical perspective, the site uses modern JavaScript frameworks such as Alpine.js and integrates with Transistor.fm's platform. The performance and mobile optimization are adequate, with basic accessibility features. However, the site lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. Security posture is moderate; no critical vulnerabilities or exposed sensitive data were detected, but the absence of security headers and incident response information indicates room for improvement. The lack of WHOIS data for the domain is a notable concern, reducing trustworthiness and raising questions about domain registration legitimacy. Overall, the site is functional and professional but would benefit from enhanced security practices, privacy compliance, and transparent business information to improve trust and compliance posture.

80
50
2
70
57
55
100
technologyprogrammingsoftwaredeveloperscode+5 more
JavaScriptAlpine.jsTransistor.fm podcast hosting
2025-06-24T16:03:04.414Z
beamrad.io favicon

Beam Radio

beamrad.io

60
TechnologyN/asmallMEDIUM

Beam Radio is a niche podcast platform focused on the Elixir programming language, Erlang, and the BEAM virtual machine ecosystem. It features a panel of expert hosts and delivers educational and conversational content to developers and enthusiasts interested in functional programming technologies. The business model is content-driven, supported by sponsorships from companies like Grox.io and Underjord. The website is professionally designed, with consistent branding and high-quality content that appeals to its target audience. Technically, the site is built on the Fireside CMS platform, leveraging modern web technologies such as Typekit fonts, FontAwesome icons, and Turbolinks for enhanced user experience. The site is served over HTTPS, ensuring secure communication. Performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and does not expose sensitive data in its HTML content. However, it lacks several security headers that could improve protection against common web attacks. There is no visible privacy policy, cookie consent mechanism, or contact information for security incidents, which are gaps in compliance and user trust. The WHOIS data is unavailable due to privacy protection, which is typical for small content sites and does not raise immediate concerns. Overall, Beam Radio presents a low-risk profile with strong content and technical foundations but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

50
50
2
70
72
55
100
podcastelixirbeamerlangtechnology+1 more
Fireside CMSTypekit fontsFontAwesome iconsTurbolinks+1
2025-06-24T16:02:59.402Z
civo.com favicon

Civo

civo.com

75
TechnologyN/amediumMEDIUM

Civo is a cloud computing service provider specializing in Kubernetes-powered infrastructure and cloud native services. Their platform emphasizes speed, simplicity, and transparent pricing, targeting developers and businesses seeking efficient and scalable cloud solutions. Key offerings include managed Kubernetes, compute instances, managed databases, private cloud software, and GPU-powered machine learning environments. The company positions itself as an innovative alternative to traditional cloud providers with a focus on developer experience and sustainability. Technically, the website employs a modern tech stack with Google Tag Manager, Google Analytics, Facebook Pixel, HubSpot, Intercom, and Mouseflow for analytics and marketing. The site is well-optimized for performance, mobile responsiveness, and accessibility, with comprehensive SEO metadata and structured data. Security best practices are observed with HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, although explicit security policies and incident response information are not published. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is good, with GDPR-aligned cookie consent and privacy policy. However, the absence of WHOIS data and domain registration details introduces a moderate trust concern. The website demonstrates high professionalism, clear navigation, and strong trust indicators such as customer testimonials and industry partnerships. Overall, Civo presents a credible and professional cloud service platform with a strong technical foundation and user-centric design. Strategic improvements include publishing detailed security policies, incident response contacts, and improving transparency around domain registration to enhance trustworthiness.

70
83
53
70
72
70
100
cloudcomputingkubernetesmanagedservicescloudnativemachinelearning+3 more
Google Tag ManagerGoogle AnalyticsFacebook PixelIntercom+3

Partner Domains:

www.relax.ai
partner
2025-06-24T16:02:49.381Z
cloudnativesummit.de favicon

Cloud Native Summit Munich

cloudnativesummit.de

58
TechnologyGermanysmallMEDIUM

Cloud Native Summit Munich is a community-driven technology event focused on cloud native technologies, targeting developers, platform engineers, and IT professionals. The event is scheduled for July 21-22, 2025, in Munich, Germany, and is organized by local community members. The website provides comprehensive information about the event, including speakers, schedule, venue, ticketing, and sponsors, reflecting a well-established local event with reputable industry partners. Technically, the website is built using modern web technologies including Gatsby (React-based static site generator) and Tailwind CSS, hosted behind Cloudflare DNS services. The site is optimized for performance and mobile responsiveness, with good accessibility and SEO practices. Embedded multimedia content such as YouTube videos enrich the user experience. From a security perspective, the site uses Cloudflare DNS which adds a layer of protection and performance. However, explicit security headers and policies are not detected, and there is no visible privacy or cookie policy, which are important for GDPR compliance. No forms collecting personal data are present on the site itself; ticket purchases are handled via an external partner, reducing direct data handling risks. Overall, the website is professional and trustworthy, but improvements in privacy compliance and security policy transparency are recommended to enhance user trust and regulatory adherence.

30
28
17
85
62
65
100
cloudnativeconferencetechnologycommunitymunich+3 more
React (Gatsby 5.13.7)Tailwind CSSCloudflare DNSYouTube embedded video
2025-06-24T16:02:44.370Z
givingpage.org favicon

FinDock

givingpage.org

68
TechnologyN/asmallMEDIUM

FinDock is a technology company specializing in providing payment page and form solutions integrated within Salesforce, enabling businesses to create seamless payment experiences and unify payment data within their CRM systems. The company operates primarily in the B2B SaaS space, targeting Salesforce users and organizations seeking efficient payment processing solutions. The website demonstrates a professional design with good content relevance and clear navigation, reflecting a mature digital presence consistent with a company founded in 2017. Technically, the website is built on WordPress using the Divi theme and several plugins including Yoast SEO and GDPR Cookie Compliance, indicating a modern and extensible infrastructure. The site is mobile optimized and performs moderately well, though accessibility features are basic. The domain is registered with a reputable registrar without privacy protection, and SSL is properly configured, enhancing trustworthiness. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and publicly available security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of privacy and terms of service documents is a compliance gap that should be addressed. Overall, FinDock's website presents a solid business and technical foundation with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas will strengthen trust and regulatory adherence, supporting the company's market position and growth.

45
85
22
70
77
65
100
paymentsalesforcecrmgivingpagesfintech+2 more
WordPressDivi ThemejQueryYoast SEO+2
2025-06-24T16:02:14.311Z
cdmediase.eu favicon

CD Media S.E.

cdmediase.eu

56
MediaRomaniamediumMEDIUM

CD Media S.E. is a well-established distributor specializing in interactive entertainment, gaming software, and hardware across Southeastern Europe and the Balkans. With a history dating back to 1993, the company has developed strong partnerships with major publishers such as Nintendo, Ubisoft, Capcom, and Bethesda, positioning itself as a leading market player in the region. Their business model focuses on physical and digital distribution, direct brand representation, and expanding digital distribution channels. Technically, the website employs modern JavaScript libraries including jQuery, Owl Carousel, and Google Fonts, with a responsive design optimized for mobile devices. The site uses HTTPS and Google Analytics for tracking, but lacks advanced security headers and comprehensive privacy or cookie policies, indicating room for improvement in compliance and security transparency. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data, but misses critical elements such as published privacy policies, cookie consent mechanisms, and incident response contacts. No WAF or blocking mechanisms were detected, and the WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is professional and content-rich but requires enhancements in privacy compliance and security disclosures to meet modern standards. Strategic improvements in these areas will strengthen trust and regulatory adherence.

20
10
2
80
72
85
100
videogamesdistributorbalkannintendoubisoft+6 more
jQuery 3.7.1Owl CarouselTimeline.jsGoogle Fonts+1

Partner Domains:

ro.cdmediase.eu
subsidiary
gr.cdmediase.eu
subsidiary

+3 more partners

2025-06-24T15:01:26.596Z
underjord.io favicon

Underjord

underjord.io

59
TechnologySwedensmallMEDIUM

Underjord.io is a small, artisanal software development and educational content provider focused on the Elixir programming language. The website offers blogs, podcasts, newsletters, and curated job listings, targeting software developers interested in Elixir and sustainable software practices. The business operates from Sweden with a domain registered since 2018, indicating a stable presence in its niche market. The content quality is good with consistent branding and active engagement through multiple media channels including YouTube and podcasts. Technically, the site is built using the Hugo static site generator, hosted on AWS infrastructure, and employs modern web technologies such as ES modules and efficient font loading. The site performs well with good mobile optimization and SEO practices. However, there is room for improvement in accessibility and security headers implementation. From a security perspective, the site enforces HTTPS and uses clientTransferProhibited domain status to prevent unauthorized domain transfers. The absence of DNSSEC and security headers are notable gaps. Privacy compliance is limited due to the lack of explicit privacy and cookie policies, though the newsletter form includes consent checkboxes respecting GDPR principles. No incident response or vulnerability disclosure policies are published. Overall, the website presents a trustworthy and professional front with minor compliance and security improvements recommended to enhance user trust and regulatory adherence.

15
35
2
70
100
75
100
softwaredevelopmentelixirblogpodcastnewsletter+2 more
Hugo static site generatorJavaScript ES modulesAWS Route53 DNSCampaign Monitor (newsletter service)

Partner Domains:

regprog.com
partner
beamrad.io
partner
2025-06-24T15:00:25.865Z
kindbridge.com favicon

Kindbridge Behavioral Health

kindbridge.com

62
HealthcareUnited StatesmediumMEDIUM

Kindbridge Behavioral Health is a specialized online therapy provider focusing on behavioral health issues such as problem gambling, gaming addiction, anxiety, depression, and related conditions. Founded in 2019, the company offers virtual counseling, assessments, group therapy, and workplace wellness programs, serving individuals, families, athletes, veterans, and businesses across the United States. Their platform emphasizes accessibility and rapid connection to licensed therapists, supported by a multi-lingual network and partnerships with major sports and gaming organizations. Technically, the website is built on WordPress using modern frameworks like Bricks Builder and Automatic CSS, with performance optimizations and mobile responsiveness. The site uses Cloudflare for DNS and likely CDN services, and integrates Google Tag Manager for analytics. SEO and accessibility features are well implemented, including structured data and meta tags. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protections. However, DNSSEC is not enabled, and there is a lack of visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms, which is critical given the sensitive health data collected via forms. Overall, the website is professional and trustworthy with a solid business model and technical foundation. To improve, the company should implement comprehensive privacy and cookie policies, enhance security headers, enable DNSSEC, and provide clear contact and incident response information to strengthen compliance and user trust.

80
53
25
75
72
75
40
behavioralhealthonlinetherapyproblemgamblingmentalhealthtelehealth+5 more
jQueryWordPressBricks BuilderAutomatic CSS+1
2025-06-24T15:00:00.815Z
haveagameplan.org favicon

American Gaming Association

haveagameplan.org

55
Non-profitUnited StatesmediumMEDIUM

Have A Game Plan is a public service campaign launched in 2019 by the American Gaming Association to promote responsible sports betting across the United States. The website serves as an educational platform providing tools, resources, and partnerships with major sports leagues and sportsbooks to encourage safe betting practices. The campaign targets sports fans and bettors, positioning itself as a trusted source for responsible gambling information. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools such as Google Analytics, Pingdom, and New Relic for performance and user monitoring. The site is hosted on a platform likely Pantheon, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though security headers could be improved. Privacy compliance is basic, with a privacy policy linked externally but no visible cookie consent mechanism despite tracking scripts. WHOIS data is unavailable, limiting domain trust assessment, but the affiliation with the American Gaming Association supports legitimacy. Overall, the site is professional, trustworthy, and serves an important educational role in the sports betting industry.

25
53
2
40
75
70
100
sportsbettingresponsiblegamblingpublicservicecampaignamericangamingassociationeducation
WordPressjQuerySwiper.jsGoogle Analytics+3

Partner Domains:

americangaming.org
partner
2025-06-24T14:59:45.789Z
playsmartfromthestart.org favicon

American Gaming Association

playsmartfromthestart.org

59
OtherUnited StateslargeMEDIUM

Play Smart From The Start is a responsible gaming educational platform operated by the American Gaming Association, a reputable US-based industry organization. The website provides comprehensive resources, interactive content, and educational materials aimed at promoting smart gambling habits and responsible play. It targets gambling players, policymakers, media, and industry stakeholders, positioning itself as a trusted resource in the gaming sector. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager for analytics and BugHerd for issue tracking. The site is hosted via Cloudflare, ensuring robust performance and security. Security posture is strong with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is well addressed with a comprehensive privacy policy and a detailed cookie consent mechanism that supports GDPR requirements. However, no explicit security policy, incident response contacts, or vulnerability disclosure policies are published. Overall, the site demonstrates a high level of professionalism, trustworthiness, and technical maturity, suitable for its educational mission in the gambling industry.

25
65
2
60
62
70
100
responsiblegaminggamblingeducationamericangamingassociationprivacycookieconsent+1 more
WordPressjQuerySwiper.jsBugHerd+2

Partner Domains:

americangaming.org
parent
2025-06-24T14:59:40.776Z
M

ManchesterCity.com tourist guide to the City of Manchester - places of interest and attractions

manchestercity.com

51
OtherUnited KingdomsmallMEDIUM

ManchesterCity.com is a small-scale informational website serving as a tourist guide to the City of Manchester, UK. It provides visitors with details on local attractions, restaurants, hotels, and cultural sites, emphasizing Manchester's rich industrial heritage and modern leisure offerings. The site targets tourists and visitors seeking comprehensive city information but lacks modern interactive features or dynamic content. Technically, the website is built on legacy HTML and CSS without evidence of modern frameworks or CMS platforms. It lacks mobile optimization and accessibility features, and performance is moderate. The site embeds an Amazon UK affiliate iframe for advertising but does not utilize analytics or tracking services visibly. Security infrastructure is minimal, with no HTTPS enforcement or security headers detected, and DNSSEC is not enabled. From a security perspective, the site exhibits several weaknesses including lack of HTTPS, absence of privacy and cookie policies, and no visible contact or incident response information. The WHOIS data shows a long-registered domain consistent with the website's history, registered through a reputable registrar without privacy protection, supporting legitimacy. However, the lack of modern security practices and compliance measures presents risks. Overall, the website is functional for basic informational purposes but requires significant improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and user experience.

15
50
17
60
42
75
100
tourismmanchestercityguiderestaurantshotels+2 more
HTMLCSSiframe
2025-06-24T14:59:30.686Z
K

Koentopp Guitars

koentoppguitars.com

60
OtherN/asmallMEDIUM

Koentopp Guitars is a small artisanal business specializing in handcrafted guitars by luthier Dan Koentopp. The website serves as a showcase for their custom guitar offerings, testimonials, and blog content, targeting musicians and guitar enthusiasts seeking high-quality custom instruments. The business appears well-established with a domain age consistent with its founding year, positioning itself as a niche player in the custom guitar market. Technically, the website uses a basic but functional technology stack including HTML5, CSS3, jQuery 1.9.1, and Bootstrap for UI components like the carousel. Hosting is provided by GoDaddy. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. No CMS is detected, suggesting a custom or static site build. From a security perspective, the site uses HTTPS but lacks important security headers such as Content-Security-Policy and HSTS. DNSSEC is not enabled, and no privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. Forms exist for newsletter subscription but no explicit security controls are visible. Contact information is clearly provided, enhancing trust. Overall, the website is functional and professional but could improve significantly in privacy compliance and security posture. Strategic improvements in these areas would reduce risk and enhance user trust.

65
35
2
70
67
75
100
handmadeguitarsluthiercustomguitarsmusic+1 more
HTML5CSS3JavaScriptjQuery 1.9.1+1
2025-06-24T14:58:50.903Z