Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

151515
Websites
130
Industries
113
Countries
52
Avg Score
Page 407 of 1035|Showing 20301-20350 of 51732
cmb.fr favicon

Crédit Mutuel de Bretagne

cmb.fr

66
FinanceFrancelargeMEDIUM

Crédit Mutuel de Bretagne is a regional cooperative and mutual bank serving individuals, professionals, enterprises, associations, and collectives primarily in Brittany, France. The website offers comprehensive banking services including account management, online account opening, and card services, positioning itself as a trusted regional financial institution under the Crédit Mutuel Arkéa group. The site is professionally designed with consistent branding and clear navigation tailored to its diverse audience segments. Technically, the website leverages modern web technologies including JavaScript, CSS, Bootstrap, and Jalios CMS. It integrates advanced consent management via Didomi and analytics through Piano Analytics and Google Tag Manager, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing search visibility. From a security perspective, the website enforces HTTPS, employs cookie consent mechanisms aligned with GDPR, and avoids exposing sensitive data. While explicit security headers are not fully visible in the HTML, the overall posture is strong with no evident vulnerabilities. The absence of WHOIS data is likely due to privacy protection, which is justified for a financial institution. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for a major regional bank. Strategic recommendations include enhancing visible security headers, publishing clear security and incident response policies, and maintaining vigilance on third-party scripts to sustain trust and compliance.

80
25
17
70
77
75
100
bankingfinancecooperativemutualcreditmutuel+2 more
JavaScriptCSSHTML5Google Tag Manager+3

Partner Domains:

entreprise.cmb.fr
partner
pro.cmb.fr
partner

+2 more partners

2025-10-09T15:26:16.453Z
mathoverflow.net favicon

Stack Exchange

mathoverflow.net

67
EducationN/amediumMEDIUM

MathOverflow is a specialized Q&A platform dedicated to professional mathematicians and advanced researchers in mathematics. It operates as part of the Stack Exchange network, leveraging a community-driven model to provide high-quality, research-level mathematical discussions and problem-solving. The platform has a strong market position within the academic and research community, supported by a reputation system and active user moderation. Founded in 2009, it has established itself as a trusted resource for mathematical inquiry. Technically, MathOverflow employs a modern web technology stack including jQuery, MathJax for rendering mathematical notation, and the proprietary Stacks UI framework developed by Stack Exchange. The site is hosted with Cloudflare DNS and CDN services, ensuring fast performance and global availability. The website is mobile-optimized, accessible, and SEO-friendly, providing an excellent user experience. From a security perspective, MathOverflow enforces HTTPS with strong SSL configurations and implements several security headers to protect users. The domain registration is consistent and protected against unauthorized changes. However, there is room for improvement in publishing explicit security policies, incident response procedures, and vulnerability disclosure mechanisms. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. Overall, MathOverflow presents a low-risk profile with a mature digital presence, strong community trust, and solid technical infrastructure. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing security policy transparency to further strengthen its security posture and user trust.

60
83
2
70
52
80
100
educationmathematicsqastackexchangeacademic
jQuery 3.7.1MathJax 2.7.5Stacks UI frameworkGoogle Tag Manager+1

Partner Domains:

stackexchange.com
partner
stackoverflow.com
partner

+1 more partners

2025-10-09T15:26:01.415Z
springer.com favicon

Springer Nature

springer.com

64
EducationN/aenterpriseMEDIUM

Springer Nature operates the www.springer.com domain as a major international academic publisher specializing in science, technology, and medicine. The website offers extensive content including journals, books, and open access materials targeting authors, researchers, and academic institutions. The business model centers on publishing and distributing scientific content with a strong market position as a leading global publisher. Technically, the site employs modern web technologies including Google Tag Manager, reCAPTCHA, and a consent management platform, ensuring a good level of digital maturity and user experience. The site is mobile optimized, accessible, and SEO friendly, with a professional and consistent brand presentation. Security posture is solid with HTTPS enforced and bot protection, though it lacks some security headers and published security policies. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. WHOIS data is unavailable, which is unusual but does not detract from the site's legitimacy given the strong branding and content. Overall, the site is trustworthy, professional, and well maintained.

35
53
2
85
72
80
100
academicpublishingsciencetechnologymedicine+4 more
Google Tag ManagerGoogle reCAPTCHAjQuery (detected in inline script)Custom JavaScript bundle

Partner Domains:

springernature.com
partner
link.springer.com
partner

+2 more partners

2025-10-09T15:25:56.406Z
politico.eu favicon

POLITICO Europe

politico.eu

78
MediaN/alargeLOW

POLITICO Europe is a leading media outlet specializing in European Union politics, policy, and government news. It provides comprehensive coverage including breaking news, opinion pieces, and in-depth features targeting policymakers, political professionals, and the interested public within the EU. The website demonstrates a mature digital presence with a modern WordPress CMS, integration of advanced analytics tools such as Adobe Analytics, Chartbeat, and Parsely, and advertising technologies including Cxense and Google AdSense. The site is well-optimized for mobile and SEO, with a professional design and clear navigation structure. From a security perspective, the website employs HTTPS with strong SSL configuration and implements multiple security headers, reflecting good security hygiene. However, there is no explicit security policy or vulnerability disclosure page, and no visible incident response contact information, which could be improved to enhance trust and transparency. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR consent mechanisms. Overall, the domain WHOIS data is privacy protected, which is typical for media organizations, and no suspicious patterns were detected. The website content is safe for general audiences, with no adult or explicit content. The site is not blocked by any WAF or security challenge, allowing full content access and analysis. Strategic recommendations include adding explicit security and incident response information, improving accessibility features, and providing clearer business contact details to strengthen credibility and user trust.

55
85
55
87
75
85
100
politicsnewseuropeanunionpolicygovernment+1 more
WordPressAdobe AnalyticsGoogle Tag ManagerChartbeat+3
2025-10-09T15:24:25.759Z
twosigma.com favicon

Two Sigma Investments, LP

twosigma.com

65
FinanceUnited StatesenterpriseMEDIUM

Two Sigma Investments, LP is a leading quantitative investment management firm that leverages data science, rigorous inquiry, and technological innovation to address complex challenges in financial services. The company operates multiple business lines including investment management, securities trading, real estate investment, venture capital, and data platforms, positioning itself as a diversified and enterprise-scale player in the finance industry. The website reflects a strong brand presence with professional design, comprehensive content, and clear navigation targeting financial professionals, data scientists, and investors. Technically, the website is built on WordPress with modern technologies such as jQuery, Google Analytics, Google Tag Manager, and reCAPTCHA v3 for security. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are not explicitly detected. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. From a security perspective, the site enforces HTTPS and integrates anti-bot measures but lacks publicly visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces transparency but does not detract from the site's professional appearance and trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security header implementation, incident response transparency, and WHOIS data availability would further enhance trust and compliance.

50
68
2
75
67
75
100
financedatascienceinvestmenttechnologyrealestate+3 more
WordPressjQueryGoogle AnalyticsGoogle Tag Manager+6

Partner Domains:

twosigmaventures.com
subsidiary
www.venn.twosigma.com
subsidiary

+1 more partners

2025-10-09T15:23:45.480Z
wwu.edu favicon

Western Washington University

wwu.edu

71
EducationUnited StateslargeMEDIUM

Western Washington University (WWU) is a well-established public university located in Bellingham, Washington, offering a broad range of academic programs and student services. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistent with a reputable educational institution. The university targets prospective and current students, faculty, and the community, emphasizing personalized education and sustainability. Technically, the website is built on Drupal 10, leveraging modern web technologies and optimized for performance, accessibility, and SEO. Integration with Google Tag Manager and Analytics indicates a moderate level of user tracking for marketing and analytics purposes. The site is mobile-optimized and includes accessibility features, enhancing user experience. From a security perspective, the site enforces HTTPS and demonstrates good security hygiene with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security headers and a vulnerability disclosure policy suggests room for improvement. Privacy compliance is supported by a comprehensive privacy policy, though cookie consent mechanisms could be enhanced. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. The missing WHOIS data is likely due to .edu domain registry policies rather than suspicious activity. Strategic recommendations include implementing additional security headers, establishing a vulnerability disclosure channel, and enhancing cookie consent transparency to further strengthen security and compliance posture.

70
58
17
75
77
80
100
educationuniversityhighereducationpublicuniversityacademicprograms+1 more
Drupal 10Google Tag ManagerGoogle AnalyticsMaterial Icons+1
2025-10-09T15:23:35.215Z
iwf.org.uk favicon

Internet Watch Foundation

iwf.org.uk

70
Non-profitUnited KingdommediumMEDIUM

The Internet Watch Foundation (IWF) is a UK-based non-profit charity dedicated to eliminating online child sexual abuse imagery. Established in 1996, it operates a trusted anonymous reporting hotline and collaborates with businesses and governments to identify and remove harmful content from the internet. The organization holds a strong market position as a leading authority in online child protection and abuse prevention. Technically, the IWF website is built on the Umbraco CMS platform, utilizing modern web technologies such as Typekit fonts, Cookiebot for consent management, and Google Tag Manager for analytics. The site demonstrates good performance, mobile optimization, and accessibility standards, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS, employs security headers, and integrates cookie consent mechanisms, indicating a solid security posture. However, explicit security policies and incident response information are not publicly available, suggesting room for improvement in transparency and preparedness. Overall, the IWF website is professional, trustworthy, and compliant with privacy regulations such as GDPR. The absence of WHOIS data is due to an invalid query format rather than privacy protection, and does not detract from the organization's legitimacy. Strategic recommendations include publishing detailed security policies, vulnerability disclosure procedures, and data protection officer contacts to enhance trust and compliance.

15
83
47
85
75
70
100
childabusepreventioncharityonlinesafetychildsexualabusereportinghotline+1 more
Typekit fontsCookiebot consent managementGoogle Tag ManagerUmbraco Forms+1

Partner Domains:

find-and-update.company-information.service.gov.uk
partner
2025-10-09T15:22:44.463Z
crossriverbank.com favicon

Cross River

crossriverbank.com

62
FinanceUnited StateslargeMEDIUM

Cross River is a prominent financial services organization specializing in API-driven banking infrastructure that enables businesses and fintechs to embed financial services seamlessly. The company positions itself as a hybrid between a traditional bank and a technology innovator, offering a broad suite of products including payment rails, card issuing, digital lending, and capital solutions. Their market presence is reinforced by partnerships with major players such as Plaid, Visa, Mastercard, and Stripe, highlighting their integral role in the fintech ecosystem. Technically, the website demonstrates a mature digital infrastructure leveraging modern web technologies such as Webflow CMS, jQuery, Swiper.js, and analytics tools like Google Tag Manager and Hotjar. The site is well-optimized for performance, mobile responsiveness, and accessibility, providing a professional and user-friendly experience. The presence of cookie consent mechanisms and privacy policies indicates attention to privacy compliance. From a security perspective, the site enforces HTTPS and uses secure login portals, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data is a notable anomaly for a financial institution, warranting further verification of domain ownership and registration. Overall, Cross River's website reflects a high level of professionalism, technical sophistication, and business credibility. However, improvements in transparency around security policies and domain registration details would enhance trust and compliance posture.

15
53
17
85
62
85
100
financebankingfintechapipayments+3 more
jQuery 3.5.1Swiper.jsGoogle Tag ManagerHotjar+3

Partner Domains:

plaid.com
partner
stripe.com
partner

+3 more partners

2025-10-09T15:22:04.285Z
hager.sg favicon

Hager

hager.sg

70
EnergySingaporelargeMEDIUM

Hager is a well-established company specializing in electrical products and solutions, targeting primarily B2B customers in the energy sector. The website for the Singapore market offers a comprehensive product catalog including energy distribution, main switchgear, modular devices, and energy management solutions. The company demonstrates a strong market position with a large-scale business presence and a domain registered since 1997, indicating stability and trustworthiness. Technically, the website is built on the Sitecore CMS platform, leveraging modern web technologies such as Algolia for search, Google Analytics for tracking, and CookieHub for cookie consent management. The site is hosted on Akamai infrastructure, ensuring reliable performance and security. Security posture is generally good with HTTPS enforced and domain transfer protections in place, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service detected in the analyzed content. Overall, the website is professional, user-friendly, and trustworthy, with moderate tracking and analytics usage. Recommendations include enhancing privacy disclosures, publishing security policies, and improving security header implementation to strengthen compliance and security posture.

90
73
17
80
54
65
100
energyelectricalb2bproductssitecore+2 more
JavaScriptCSSHTML5Algolia Search+3
2025-10-09T15:20:53.824Z
neuco.ch favicon

NEUCO

neuco.ch

59
OtherSwitzerlandsmallMEDIUM

NEUCO is a specialized Swiss company focused on architectural lighting solutions for interior and exterior spaces such as offices, museums, shops, and public buildings. The website presents a professional and well-structured digital presence, leveraging TYPO3 CMS and modern web technologies including Cloudflare for security and Cookiebot for privacy compliance. The company targets architects, businesses, and public institutions seeking high-quality lighting solutions. Their service portfolio includes lighting concepts, renovations, digital light control, repairs, and replacement parts. The website content is relevant and professionally presented, with clear navigation and mobile optimization. From a technical perspective, the site uses a modern tech stack with TYPO3 CMS, Google Tag Manager, and Cloudflare CDN/security. Performance and accessibility are good, and SEO best practices are observed. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, including GDPR compliance indicators. However, the site lacks explicit terms of service, security policy, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. No direct contact emails or phone numbers were found; contact is primarily via forms. WHOIS data is consistent with the business claims, showing a trustworthy domain registration. Overall, NEUCO's website demonstrates a solid digital maturity and security posture suitable for its business scope, with room for improvement in transparency around security policies and incident response.

70
83
2
85
52
75
20
architecturelightinginteriorlightingexteriorlightingswitzerland+2 more
TYPO3 CMSGoogle Tag ManagerCookiebotCloudflare
2025-10-09T14:19:40.444Z
safecompany.com.br favicon

Safecompany

safecompany.com.br

10
TechnologyBrazilmediumCRITICAL

Safecompany is a Brazilian technology company specializing in integrated security management solutions that combine patrimonial, occupational, and cybersecurity with intelligence tools. The company targets medium to large enterprises seeking to enhance their security posture through AI-driven CCTV threat detection and a fully digital platform that supports mobile risk reporting and operational efficiency. Their market position is strengthened by notable clients such as Colgate-Palmolive and CPFL Energia, supported by strong branding and customer testimonials. Technically, the website is built on WordPress with modern plugins like Yoast SEO, Google reCAPTCHA, and Microsoft Clarity for analytics and user behavior tracking. Hosting is via AWS infrastructure, ensuring reliable performance and scalability. The site is mobile-optimized with good SEO and accessibility features, although some accessibility improvements could be made. From a security perspective, the site enforces HTTPS, uses a Content Security Policy header, and implements cookie consent mechanisms. However, additional security headers could enhance protection. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with comprehensive policies and GDPR alignment. Overall, Safecompany presents a professional, trustworthy online presence with a solid security posture and compliance framework. The risk level is low, but improvements in security headers and incident response transparency are recommended to further strengthen trust and resilience.

-
-
-
-
-
-
-
securitytechnologyairiskmanagemententerprise+1 more
WordPressYoast SEO pluginjQuerySlick Carousel+3
2025-10-09T14:19:15.281Z
scentbird.com favicon

Scentbird, Inc.

scentbird.com

65
E-commerceUnited StatesmediumMEDIUM

Scentbird, Inc. operates a subscription-based e-commerce platform specializing in monthly perfume and fragrance deliveries, offering consumers access to over 600 designer scents. The company targets fragrance enthusiasts who prefer to sample perfumes before purchasing full bottles, positioning itself as a niche leader in the fragrance subscription market. Founded in 2013 and headquartered in New York, Scentbird provides personalized fragrance recommendations and flexible subscription management, enhancing customer experience. Technically, the website leverages modern web technologies including React, Apollo GraphQL, and Strapi CMS, supported by robust analytics and tracking tools such as Mixpanel, Google Tag Manager, and RudderStack. The site demonstrates excellent performance, mobile optimization, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates security tools like Jscrambler. Consent management mechanisms are in place to comply with privacy regulations, including GDPR. However, the absence of a public security policy, vulnerability disclosure, and incident response contacts suggests areas for improvement in transparency and readiness. Overall, Scentbird presents a professional, trustworthy online presence with strong business credibility and technical maturity. The lack of WHOIS transparency slightly reduces trust but does not detract significantly from the legitimacy of the business. Strategic enhancements in security policy publication and incident response communication would further strengthen its security posture.

20
68
2
90
77
80
100
perfumesubscriptione-commercefragrancedesignerbrands+1 more
ReactApollo GraphQLMixpanelGoogle Tag Manager+4

Partner Domains:

recurly.com
partner
amazon.com
partner
2025-10-09T14:18:50.216Z
bbentrepreneurprivate.ch favicon

Bellevue Asset Management AG

bbentrepreneurprivate.ch

41
FinanceSwitzerlandmediumHIGH

Bellevue Entrepreneur Private is a specialized investment fund managed by Bellevue Asset Management AG, focusing on providing growth capital to small and medium-sized enterprises (SMEs) in the DACH region, particularly Switzerland. The fund targets established, profitable companies with strong growth potential, acting as a co-investor alongside experienced investors and entrepreneurs. The website reflects a professional and consistent brand image, with clear investor-focused content and legal disclaimers. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, integrating modern web technologies such as Google Tag Manager and Vimeo embeds. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security is well implemented with HTTPS, secure login forms, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies. The website maintains high business credibility with consistent WHOIS data and clear contact information. Strategic recommendations include publishing a dedicated security policy, incident response details, and vulnerability disclosure information to enhance trust and compliance.

15
35
17
70
-
70
40
financeinvestmentsmeswitzerlandneoscms+2 more
PHPFlow FrameworkNeos CMSGoogle Tag Manager+4

Partner Domains:

www.bellevue.ch
partner
www.adbodmer.ch
partner
2025-10-09T14:16:39.050Z
brevo.com favicon

Brevo

brevo.com

71
TechnologyUnited StateslargeMEDIUM

Brevo is a large technology company providing an all-in-one AI-enabled marketing platform that integrates email marketing, SMS, WhatsApp, CRM, and automation tools. It serves over 500,000 customers globally, positioning itself as a competitive player in the marketing automation and CRM SaaS market. The platform emphasizes multichannel communication and AI-driven features to enhance marketing efficiency and customer engagement. Technically, the website is built on modern web technologies including React with Next.js framework, and integrates multiple analytics and marketing tools such as Google Tag Manager, AB Tasty, and Albacross. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs standard security headers, indicating a good security posture. However, the absence of publicly available WHOIS data and lack of explicit security policies or incident response information slightly reduce transparency and trust. No critical vulnerabilities or exposed sensitive data were detected. Overall, Brevo presents a professional and trustworthy online presence with strong business credibility and technical maturity. Strategic improvements in WHOIS transparency and security policy disclosures would further enhance trust and compliance.

15
85
20
100
75
85
100
emailmarketingcrmmarketingautomationsmsmarketingwhatsappmarketing+4 more
React (Next.js)JavaScriptCSSVimeo player+6
2025-10-09T14:13:52.822Z