Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

151329
Websites
130
Industries
113
Countries
52
Avg Score
Page 363 of 1034|Showing 18101-18150 of 51672
terremotos.org favicon

Earthquake Country Alliance

terremotos.org

57
GovernmentUnited StatesmediumMEDIUM

Earthquake Country Alliance (ECA) is a public-private partnership focused on earthquake and tsunami preparedness, mitigation, and resilience. The website provides educational resources primarily in Spanish, targeting residents and travelers in earthquake-prone regions. It is affiliated with reputable organizations such as the Statewide California Earthquake Center (SCEC), FEMA, and CalOES, positioning it as a trusted source for earthquake safety information. The business model is non-profit and educational, serving a medium-sized audience with a focus on community preparedness and safety drills. Technically, the website is built on WordPress and employs modern web technologies including Google Analytics, Google Tag Manager, and Google reCAPTCHA Enterprise for security and user tracking. Accessibility is addressed through the Pojo Accessibility plugin, and the site is mobile-optimized with good SEO practices. Performance is moderate, with room for improvement in security headers and privacy compliance. Security posture is solid with HTTPS enforced and bot protection in place, but lacks visible security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is published, which could be improved to enhance trust and compliance. The absence of WHOIS data limits domain trust verification, though the website content and affiliations strongly suggest legitimacy. Overall, the site is a reliable educational resource with good technical implementation but would benefit from enhanced privacy transparency, security best practices, and published contact information for security incidents.

25
35
2
55
85
80
100
earthquakesafetypreparednessnon-profiteducation+3 more
WordPressGoogle AnalyticsGoogle Tag ManagerGoogle reCAPTCHA Enterprise+3

Partner Domains:

www.shakeout.org
partner
www.tsunamizone.org
partner

+3 more partners

2025-10-12T06:16:48.670Z
berkeleyscanner.com favicon

The Berkeley Scanner

berkeleyscanner.com

65
MediaUnited StatessmallMEDIUM

The Berkeley Scanner is an independent, reader-supported local news website focused on delivering timely and comprehensive crime and safety news for Berkeley, California. The site is led by award-winning journalist Emilie Raguso and serves a community audience interested in local public safety updates. The business model is primarily membership and reader-driven, positioning the site as a trusted local media source. Technically, the website is built on the Ghost CMS platform, leveraging modern analytics and marketing tools such as Google Analytics, Plausible, and Wisepops. The site is mobile-optimized and well-structured, providing a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and some security headers present, though there is room for improvement in implementing additional security policies and formal vulnerability disclosure mechanisms. Privacy compliance is limited, with no explicit privacy or cookie policies detected, which could be a risk area. The absence of WHOIS data for the domain is a notable concern, as it raises questions about domain registration transparency, although the website content and technical setup appear legitimate. Overall, the site is a valuable community resource with good technical and security foundations but should enhance privacy and transparency practices to improve trust and compliance.

15
68
14
75
95
80
100
crimesafetynewsberkeleylocal+2 more
Ghost CMS 6.2Google AnalyticsGoogle Tag ManagerPlausible Analytics+4
2025-10-12T06:16:43.661Z
G

Glassdoor

glassdoor.co.in

72
TechnologyIndiaenterpriseMEDIUM

Glassdoor is a leading global job search and career community platform that provides millions of job listings, company reviews, salary comparisons, and anonymous workplace discussions. The platform targets job seekers, professionals, and employers, offering a comprehensive ecosystem for career development and employer branding. The website demonstrates a strong market position with consistent branding and a professional digital presence. Technically, the site leverages modern web technologies including React, RudderStack for data collection, Google Tag Manager, and Amplitude for analytics. The site is well optimized for mobile and accessibility, with good SEO practices and performance. Security is robust with HTTPS enforced and several security headers present, although explicit security policies and incident response information are not publicly available. The security posture is solid, with no visible vulnerabilities or exposed sensitive data. Privacy compliance is moderate; while a cookie consent mechanism is implemented, explicit privacy and terms of service documents were not found in the provided content. The WHOIS data confirms the legitimacy of the domain registration, consistent with the business claims. Overall, Glassdoor's website is professional, secure, and trustworthy, with room for improvement in privacy transparency and security policy disclosures.

55
100
17
85
52
85
100
jobsearchcareercompanyreviewssalarycomparisonemployment+1 more
React 18.3.1RudderStack (rudderlabs.com)Google Tag ManagerScorecardResearch+2
2025-10-12T06:15:47.656Z
loloyal.com favicon

Loloyal

loloyal.com

61
E-commerceN/amediumMEDIUM

Loloyal is a loyalty and rewards program provider focused on Shopify merchants, offering features such as points programs, referral incentives, VIP tiers, and customizable reward panels. The company is rebranding under the Trustoo.io brand to provide broader retention solutions. The website is professionally designed using WordPress and WooCommerce with Elementor, integrating modern web technologies and marketing tools like Google Tag Manager and Calendly. The platform targets small to medium-sized e-commerce businesses seeking to enhance customer engagement and retention through loyalty programs. Technically, the website demonstrates a solid infrastructure with HTTPS enabled and a modern tech stack, though some improvements in security headers and privacy compliance mechanisms are recommended. The absence of WHOIS registration data is a notable anomaly, potentially impacting trustworthiness, but the site maintains strong branding consistency and partner relationships. Analytics usage is moderate, with Google Analytics present but not fully configured. Security posture is generally good with no obvious vulnerabilities detected, but the lack of published security policies and incident response information suggests room for maturity. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site presents a low to moderate risk profile with recommendations to enhance transparency and security practices.

15
58
17
70
75
75
100
loyaltyrewardsshopifyecommercecustomerretention+3 more
WordPressWooCommerceElementorGoogle Tag Manager+4

Partner Domains:

channelwill.com
partner
parcelpanel.com
partner

+3 more partners

2025-10-12T05:14:20.470Z
P

Pedal Revolution

pedalrevolution.co.uk

66
RetailUnited KingdommediumMEDIUM

Pedal Revolution is a UK-based specialist retailer focused on performance road, mountain, carbon, and titanium bicycles and related cycling equipment. The company operates an e-commerce platform offering a wide range of bikes, frames, and accessories, targeting cycling enthusiasts primarily in the UK. The website demonstrates a solid market position with clear navigation, multiple product categories, and additional services such as Click & Collect and finance options like Cyclescheme. Structured data and trust badges like Google Certified Shops enhance credibility. Technically, the website uses a combination of ASP.NET WebForms and modern JavaScript libraries, integrating Google Analytics (GA4), Bing UET, Hotjar, and Google Tag Manager for analytics and marketing. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in accessibility and security header implementation. Security posture is good with enforced HTTPS and consent management for cookies, but lacks explicit security headers such as CSP and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is evident with a privacy policy and cookie consent mechanism, aligned with GDPR requirements. Overall, the website presents a trustworthy and professional e-commerce platform with a moderate to high security posture. The lack of WHOIS data for the subdomain is expected and does not detract from legitimacy. Strategic recommendations include enhancing security headers, improving accessibility, and maintaining regular audits of third-party scripts to sustain security and compliance.

-
100
17
85
75
70
100
e-commercecyclingbikesretailuk+2 more
JavaScriptGoogle Tag ManagerGoogle Analytics (GA4)Bing UET+3

Partner Domains:

thepedalrevolution.co.uk
partner
www.pedalrevolution.co.uk
partner
2025-10-12T05:14:10.454Z
corptax.com favicon

CSC

corptax.com

76
TechnologyN/aenterpriseLOW

CSC operates as an established enterprise providing corporate tax software solutions under the Corptax brand. Their offerings focus on automating corporate tax reporting, streamlining tax workflows, and delivering advanced tax planning and data analytics tools. The company targets corporations and tax professionals seeking efficient tax compliance and reporting technologies. CSC positions itself as a leader in tax technology with a comprehensive suite of services including consulting and professional support. Technically, the website leverages modern frameworks such as Bootstrap and jQuery, integrates advanced analytics and marketing tools like Google Tag Manager and Optimizely, and is hosted on Microsoft Azure infrastructure, indicating a mature digital presence. Security-wise, the site enforces HTTPS, employs reCAPTCHA for form protection, and uses cookie consent mechanisms aligned with GDPR requirements. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and transparency, which slightly impacts overall trust. No critical vulnerabilities or security policy disclosures are publicly evident, suggesting a moderate security posture. Overall, CSC's website reflects a professional, business-focused platform with good technical and privacy compliance, but domain registration opacity warrants further verification.

80
88
17
80
77
90
100
corporatetaxtaxsoftwarecorporatecompliancebusinessservicesenterprisesoftware+2 more
Bootstrap CSSjQuery 3.7.1jQuery ValidateGoogle Tag Manager+4

Partner Domains:

cscdbs.com
partner
corptaxconnect.com
partner
2025-10-12T05:13:15.178Z
erecording.com favicon

CSC

erecording.com

73
Real EstateUnited StatesenterpriseMEDIUM

CSC operates as a leading enterprise-focused provider of electronic document recording (eRecording) solutions, serving real estate document submitters and county recorders across the United States. The company emphasizes reliability, compliance, and efficiency, leveraging industry certifications such as ISO 27001 and SOC audits to assure security and trust. Their market position is strong, being first to market with eRecording in the U.S. and maintaining partnerships with key industry associations and software vendors. The website reflects a mature digital presence with comprehensive service descriptions and a professional user experience. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Tag Manager, and Optimizely, hosted likely on Microsoft Azure. The site is mobile-optimized, accessible, and SEO-friendly, with secure form handling and reCAPTCHA integration. Security posture is robust with HTTPS enforced and adherence to recognized security frameworks, though some security headers could be explicitly confirmed. Overall, CSC demonstrates a strong security and compliance posture with clear privacy policies and certifications. The lack of public WHOIS data is likely due to privacy protection and does not detract from the site's legitimacy. The site is safe for general audiences and free from adult or questionable content. Strategic recommendations include publishing a vulnerability disclosure policy and enhancing security header implementation to further strengthen trust and compliance.

80
68
17
80
67
90
100
erecordingrealestatedocumentrecordingcomplianceiso27001+2 more
jQuery 3.7.1Bootstrap 5Google Tag ManagerOptimizely+2

Partner Domains:

cscdbs.com
partner
2025-10-12T05:13:10.139Z
3bears.co.uk favicon

3Bears

3bears.co.uk

67
RetailUnited KingdommediumMEDIUM

3Bears is a UK-based e-commerce retailer specializing in premium vegan porridge products made with whole oat flakes and large pieces of fruit. The company operates multiple localized domains targeting European markets including Germany, the Netherlands, Switzerland, and the UK, reflecting a strong regional presence. Their business model focuses on direct-to-consumer online sales with a clear emphasis on health-conscious and vegan consumers. The website is professionally designed with consistent branding and good content quality, supporting multiple languages and currencies to cater to their diverse audience. Technically, the website is built on the Shopify platform, leveraging modern JavaScript modules, asynchronous loading of third-party scripts, and integration with marketing and analytics tools such as Google Analytics, Hotjar, Klaviyo, and affiliate networks like Awin. The site demonstrates good performance, mobile optimization, and accessibility features. GDPR compliance is well addressed with a comprehensive cookie consent mechanism and privacy policy. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. Forms are protected with CAPTCHA, and no sensitive data is exposed in the HTML. However, explicit security policies and incident response information are not published, which could be improved to enhance trust and readiness. Overall, the site shows a mature security posture appropriate for its business scale. The domain registration data is consistent with the business claims, showing a domain age since 2016 registered through a reputable UK registrar without privacy protection, supporting legitimacy. No WAF or blocking mechanisms interfere with site access, allowing full content analysis. The site uses extensive tracking and marketing tools, balanced with user consent and privacy compliance. Strategically, 3Bears should consider publishing dedicated security and incident response policies and possibly a vulnerability disclosure program to further strengthen their security culture and customer trust. Regular audits of third-party scripts and continuous monitoring will help maintain a strong security posture as the business grows.

60
100
17
70
75
35
100
e-commercefoodveganporridgeshopify+4 more
ShopifyJavaScript ES6 modulesGoogle Tag ManagerHotjar+3

Partner Domains:

3bears.de
partner
3bears.com
partner

+2 more partners

2025-10-12T05:12:35.077Z
ogrelogic.com favicon

Ogrelogic

ogrelogic.com

65
TechnologyUnited StatesmediumMEDIUM

Ogrelogic is a Texas-based digital solutions company founded in 2014, specializing in mobile app development, website design and development, SEO, and digital marketing services. The company targets startups, SMBs, enterprises, and professionals, positioning itself as a top-rated agency with strong client testimonials and industry certifications such as Google Partner and Clutch. Their service portfolio includes custom software solutions, marketing campaigns, and staff augmentation, serving diverse industries including healthcare, energy, finance, and hospitality. Technically, the website leverages modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Swiper.js for UI components. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site is mobile-optimized with responsive design and integrates Google Tag Manager and Analytics for tracking. Contact forms are protected with Cloudflare Turnstile CAPTCHA to mitigate spam. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS/CDN, but lacks visible security headers and a published security policy or incident response contacts. GDPR compliance is partial, with a privacy policy present but no cookie consent mechanism detected. WHOIS data shows consistent domain registration with no privacy protection, supporting legitimacy. Overall, Ogrelogic demonstrates a mature digital presence with strong business credibility and technical implementation. Security posture is good but can be improved by adding security headers, cookie consent, and incident response information. The site is safe for general audiences with no adult content detected.

40
53
17
70
75
85
100
digitalmarketingmobileappdevelopmentwebsitedesignseoppc+3 more
HTML5CSS3JavaScriptjQuery+4
2025-10-12T05:10:39.456Z
wurl.com favicon

Wurl, LLC

wurl.com

63
TechnologyUnited StatesmediumMEDIUM

Wurl, LLC is a technology company specializing in powering Connected TV (CTV) distribution, monetization, and advertising. Positioned as a market leader in streaming TV solutions, Wurl offers a suite of products and services aimed at advertisers, publishers, and streamers to grow viewership, maximize revenue, and strengthen brand value. Their business model focuses on B2B SaaS and platform services within the media and technology sectors. The website reflects a professional and comprehensive digital presence with strong SEO and social media integration. Technically, the website is built on WordPress with modern tools such as Yoast SEO, Google Tag Manager, HubSpot, and Wistia, indicating a mature digital infrastructure. Performance and mobile optimization are good, with accessibility and SEO rated excellent. Security posture is strong with HTTPS enforced and multiple security headers present, though there is room for improvement in publishing explicit security policies and incident response information. The security evaluation shows no critical vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligning with GDPR requirements. Business credibility is supported by clear company information, contact details, and trust indicators such as social media presence and published reports. Overall, Wurl.com presents a trustworthy and professional online presence with a solid technical and security foundation. Recommendations include publishing a dedicated security policy, adding vulnerability disclosure information, and providing incident response contacts to further enhance trust and compliance.

30
88
17
60
52
75
100
ctvstreamingadvertisingtechnologymedia+2 more
WordPressYoast SEOGoogle Tag ManagerGoogle Analytics+3
2025-10-12T05:10:24.429Z
drv-netzwerkstatt.de favicon

Deutscher Reiseverband

drv-netzwerkstatt.de

42
HospitalityGermanysmallHIGH

The DRV-Netzwerkstatt website represents a professional event platform affiliated with the Deutscher Reiseverband, focused on networking and knowledge exchange within the tourism industry. The site targets industry professionals and offers biannual events to foster cross-sector collaboration. The business model centers on event hosting and community building, supported by a small but consistent team with clear contact channels and social media presence. Technically, the website is built on TYPO3 CMS, hosted by Schlund Technologies, and incorporates modern web standards including responsive design and Google Tag Manager for analytics. The site performs moderately well with good SEO and accessibility basics, though some improvements in security headers and explicit policies could enhance its posture. Security-wise, the site enforces HTTPS and provides cookie consent mechanisms, indicating GDPR awareness. However, it lacks publicly visible security policies, incident response contacts, or vulnerability disclosure information. No critical vulnerabilities or suspicious elements were detected, and the WHOIS data aligns well with the business identity, supporting legitimacy. Overall, the website is trustworthy, professionally maintained, and compliant with basic privacy standards. Strategic improvements in security transparency and policy publication would further strengthen its risk profile and user trust.

25
43
2
55
72
60
-
tourismnetworkingeventdrvtypo3+1 more
TYPO3 CMSBootstrapGoogle Tag Manager

Partner Domains:

www.drv.de
partner
2025-10-12T05:09:59.381Z
treatsoft.at favicon

treatsoft

treatsoft.at

53
HealthcareAustriamediumMEDIUM

treatsoft is a cloud-based practice management software tailored for therapeutic professionals in Austria, including physiotherapists, dietitians, masseurs, and psychotherapists. The company positions itself as a comprehensive solution for appointment scheduling, billing, accounting, and documentation, emphasizing ease of use and cloud accessibility. The website reflects a mature digital presence with modern technologies such as WordPress, Bootstrap, and Matomo analytics, supported by a cookie consent mechanism compliant with GDPR. The parent company is hoferdigital, which is clearly indicated on the site, enhancing corporate credibility. Technically, the website is well-structured, mobile-optimized, and uses secure HTTPS connections. Security best practices are partially implemented, with encrypted data transport and cookie consent, but some HTTP security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data due to NIC.AT restrictions limits domain trust assessment, but the website's professional content and clear contact information mitigate concerns. Overall, treatsoft demonstrates a strong security posture and compliance with privacy regulations, providing a trustworthy platform for its target audience. Strategic improvements in security headers and publishing a security.txt file would further enhance its security maturity.

15
83
17
58
62
85
20
healthcaretherapysoftwarecloudsaaspracticemanagementaustria+3 more
jQueryBootstrapLightSliderMatomo Analytics+3

Partner Domains:

hoferdigital.at
parent
sophyapp.com
partner

+3 more partners

2025-10-12T05:09:44.324Z
tarjetayou.es favicon

Advanzia Bank

tarjetayou.es

60
FinanceSpainmediumMEDIUM

Tarjeta YOU is an online credit card service operated in partnership with Advanzia Bank, targeting residents in Spain. The website offers a no-annual-fee Mastercard Gold credit card with flexible payment options and travel insurance. The business model focuses on digital-first credit card issuance and management without requiring customers to change banks. The site is well-branded, professional, and provides comprehensive legal and privacy information, enhancing trustworthiness. Technically, the website uses AngularJS and Bootstrap frameworks, integrates Google Tag Manager for analytics, and employs Usercentrics for cookie consent management. Hosting includes Microsoft Azure Blob Storage for legal documents. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate with room for improvement. Security posture is solid with HTTPS enforced and digital signature integration, but lacks some security headers and a public security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with GDPR-aligned policies and consent mechanisms. Overall, the website presents a trustworthy and professional front for an online financial product, with minor technical and security enhancements recommended to further strengthen its posture.

50
10
17
75
67
80
100
financecreditcardonlinebankingconsumercreditspain+2 more
AngularJSBootstrapGoogle Tag ManagerUsercentrics (consent management)+2

Partner Domains:

advanzia.com
partner
mastercard.com
partner
2025-10-12T05:09:14.267Z
ucweb.com favicon

Guangzhou Dongjing Computer Technology Co., Ltd.

ucweb.com

71
TechnologyChinalargeMEDIUM

UC Browser is a well-established mobile and desktop web browser launched in 2004, with a user base exceeding 1 billion by 2025. It holds a strong market position in Asia, particularly in India and Indonesia, competing with major browsers like Firefox and Opera. The company emphasizes speed, privacy, and innovation, offering features such as built-in VPN, ad blocking, cloud storage, and AI-driven translation. The website reflects a mature digital presence with professional design and comprehensive content targeting general internet users seeking fast and secure browsing experiences. Technically, the website leverages modern JavaScript frameworks, service workers, and analytics tools like Google Tag Manager and Hotjar. Hosting appears to be on Alibaba Cloud, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and some security headers, though improvements are recommended in explicit header implementation and incident response transparency. The absence of WHOIS data for the domain www.ucweb.com is a notable gap, reducing domain registration trustworthiness. However, the website content and business information align with a legitimate large technology company. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks visible cookie consent mechanisms. Overall, the website is professional, secure, and user-friendly but would benefit from enhanced transparency and compliance features.

65
58
25
65
90
85
100
browservpntechnologymobiledesktop+3 more
JavaScriptReact (implied by CSR and component structure)Hotjar (analytics)Google Tag Manager+1

Partner Domains:

drive.ucweb.com
partner
app.adjust.com
partner
2025-10-12T05:08:29.106Z
heylink.me favicon

HeyLink.me

heylink.me

66
TechnologyUnited StateslargeMEDIUM

HeyLink.me is a well-established SaaS company founded in 2020, specializing in link-in-bio tools that enable businesses and influencers to manage and share multiple links through a single URL. The platform serves a global audience with over 10 million customers from 195 countries, positioning itself as a leading solution in the social media marketing and digital content management space. Key services include link management, social media integrations, analytics, and customizable templates designed for mobile-first experiences. The company leverages modern web technologies and integrates with popular marketing and analytics platforms to provide a seamless user experience. Technically, HeyLink.me demonstrates a mature digital infrastructure with fast performance, mobile optimization, and accessibility considerations. The use of Cloudflare for DNS and hosting, combined with modern JavaScript frameworks and libraries such as AOS and Keen Slider, supports a responsive and engaging website. The site employs comprehensive tracking and marketing tools including Google Analytics, Facebook Pixel, TikTok Pixel, and others, indicating a data-driven approach to user engagement and advertising. From a security perspective, the website enforces HTTPS with strong SSL configurations and implements key security headers. Cookie consent is managed via OneTrust, reflecting compliance with GDPR and other privacy regulations. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. The domain registration is privacy protected but consistent with legitimate business practices, and the domain age aligns with the company's founding date. Overall, HeyLink.me presents a professional, secure, and privacy-conscious online presence with strong business credibility and technical implementation. Strategic recommendations include enhancing transparency around security policies and incident response, enabling DNSSEC, and publishing vulnerability disclosure information to further strengthen trust and compliance.

35
68
2
85
75
75
100
link-in-biosaassocialmediaanalyticsmarketing+1 more
JavaScriptGoogle Tag ManagerGoogle AnalyticsFacebook Pixel+6

Partner Domains:

persollo.com
partner
kode.link
partner

+2 more partners

2025-10-12T05:07:54.032Z