Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

151515
Websites
130
Industries
113
Countries
52
Avg Score
Page 430 of 1035|Showing 21451-21500 of 51732
chiemsee-alpenland.de favicon

Chiemsee-Alpenland Tourismus

chiemsee-alpenland.de

48
HospitalityGermanymediumHIGH

Chiemsee-Alpenland Tourismus operates an official regional tourism website promoting the Bavarian Alps and Chiemsee region in Germany. The site provides comprehensive travel information, accommodation booking services, event promotion, and cultural highlights targeting tourists and visitors interested in this scenic area. The business model focuses on tourism promotion and facilitating bookings, positioning itself as a key regional player in hospitality and travel services. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, incorporating modern web technologies such as lazy loading, accessibility tools (Eye-Able), and cookie consent management (Usercentrics). The site demonstrates good mobile optimization, accessibility, and SEO practices, with moderate performance characteristics. From a security perspective, the website enforces HTTPS and SSL encryption, especially for booking forms, and uses cookie consent mechanisms to comply with privacy regulations. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no published privacy policy or terms of service were found in the provided content. No vulnerabilities or exposed sensitive data were detected, indicating a generally sound security posture. Overall, the website is professional, trustworthy, and well-structured, with clear contact information and strong branding consistency. To enhance compliance and security, it is recommended to publish explicit privacy and terms documents, implement additional security headers, and provide a vulnerability disclosure or security policy page.

15
68
2
85
52
60
20
tourismtravelbavarianalpschiemseebooking+4 more
PHPNeos CMSFlow FrameworkGoogle Tag Manager+4
2025-10-08T12:20:31.536Z
stuttgart-tourist.de favicon

Stuttgart-Marketing GmbH

stuttgart-tourist.de

70
HospitalityGermanymediumMEDIUM

Stuttgart-Marketing GmbH operates the official tourism website for the city of Stuttgart, Germany, providing comprehensive information and services including hotel bookings, city tours, event tickets, and cultural experiences. The website serves as a central hub for tourists and visitors, offering multilingual support and a variety of interactive features such as booking forms and event highlights. The company holds recognized certifications related to sustainability and quality, reinforcing its market position as a trusted regional tourism partner. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Cookiebot for privacy compliance, and interactive JavaScript components for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation structure. Security is well-managed with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly documented. Overall, the security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is strong, supported by comprehensive privacy and cookie policies. The business credibility is high, supported by clear contact information, certifications, and official domain registration. The website content is safe for general audiences, focusing on tourism and cultural events without any adult or questionable content. Strategic recommendations include enhancing security headers, publishing a formal security policy and incident response contacts, and considering a vulnerability disclosure mechanism to further strengthen trust and security culture.

50
83
2
80
100
60
100
tourismtravelstuttgarteventscitytours+2 more
Google AnalyticsGoogle Tag ManagerCookiebotBookingkit+3

Partner Domains:

hausdestourismus.de
partner
erlebnisregion.stuttgart-tourist.de
partner

+3 more partners

2025-10-08T12:20:21.516Z
zermatt.ch favicon

Zermatt-Matterhorn: Ferien in den Bergen & Alpen

zermatt.ch

62
HospitalitySwitzerlandmediumMEDIUM

The website zermatt.swiss serves as a regional tourism portal promoting vacations and holidays in the Zermatt-Matterhorn area of the Swiss Alps. It targets tourists interested in mountain and alpine experiences, providing information and services related to travel and accommodation. The business model is focused on destination marketing and tourism promotion, positioning itself as a key regional player in hospitality. The website demonstrates a good level of digital maturity, utilizing modern web technologies such as Nuxt.js, Tailwind CSS, and integrating analytics and marketing tools like Google Analytics, Facebook Connect, and Cookiebot. Performance and mobile optimization are good, though accessibility is basic. From a security perspective, the site enforces HTTPS and employs a Content-Security-Policy header, reflecting sound security practices. However, additional security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is limited, with no explicit privacy or cookie policies found in the provided content, which is an area for improvement. Business credibility is supported by consistent WHOIS data and a professional web presence, though contact information and trust indicators are minimal. Overall, the website presents a moderate risk profile with strengths in technical implementation and business legitimacy but gaps in privacy compliance and security policy transparency. Strategic recommendations include publishing comprehensive privacy and cookie policies, enhancing security headers, and improving accessibility and user trust signals.

55
73
2
60
62
65
100
tourismtravelvacationalpszermatt+3 more
JavaScriptNuxt.jsTailwind CSSGoogle Tag Manager+3
2025-10-08T12:19:26.393Z
buxumlunic.ch favicon

BuxumLunic

buxumlunic.ch

53
MediaSwitzerlandmediumMEDIUM

BuxumLunic is a well-established digital communication agency based in Geneva, Switzerland, with over 35 years of experience. The company specializes in 360-degree communication services including branding, digital campaigns, print, visual creation, and website development. Positioned as a strategic partner for businesses and institutions, BuxumLunic targets a broad audience seeking to enhance their brand visibility and communication effectiveness. The website reflects a professional and consistent brand image with a strong portfolio and client references, indicating a solid market position in the media and communication sector. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and GSAP, and integrates SEO tools like Yoast SEO. Google Tag Manager is used for analytics, showing a moderate level of digital maturity. The site is mobile-optimized and offers a good user experience with clear navigation and rich content. However, some accessibility features could be improved. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and incident response policies. No cookie consent mechanism was detected, indicating partial GDPR compliance. No vulnerabilities or exposed sensitive data were found, but improvements in security best practices are recommended. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security policy transparency. Strategic recommendations include implementing cookie consent, enhancing security headers, and publishing incident response information to strengthen trust and compliance.

25
35
2
80
95
85
20
digitalagencybrandingcommunicationgenevamarketing+3 more
WordPressYoast SEO pluginjQuerySwiper.js+3

Partner Domains:

projets.buxumlunic.ch
partner
2025-10-08T12:18:46.086Z
thenationaldesk.com favicon

The National Desk

thenationaldesk.com

65
MediaUnited StateslargeMEDIUM

The National Desk is a national news media outlet founded in 2019, delivering breaking news, investigative reports, political coverage, weather updates, and live video broadcasts. It operates under the Sinclair Broadcast Group umbrella, leveraging modern web technologies including React and Next.js, and integrates multiple advertising and analytics platforms to monetize and analyze user engagement. The website is professionally designed with good content quality and accessibility features, targeting a general audience interested in national news and politics. Technically, the site is hosted on AWS infrastructure with a modern tech stack and uses HTTPS with standard security headers. However, DNSSEC is not enabled, representing a minor security gap. Privacy compliance is basic, with no explicit privacy or cookie policy found on the main site, though a consent management platform (Ketch) and accessibility widget (UserWay) are implemented. Contact information is limited to a support email, and no incident response or vulnerability disclosure policies are published. Security posture is solid but could be improved by enabling DNSSEC and publishing clear privacy and security policies. The domain registration is consistent and legitimate, registered since 2019 with no privacy protection, appropriate for a media brand. Overall, the site is trustworthy and professional but would benefit from enhanced privacy transparency and DNS security. Recommendations include enabling DNSSEC, publishing comprehensive privacy and cookie policies, adding a vulnerability disclosure or security.txt file, and providing explicit incident response contacts to improve security posture and user trust.

50
80
17
40
77
75
100
newsmedianationalweatherpolitics+2 more
Next.js (implied by _next static paths)JWPlayer (video player)Google AnalyticsGoogle Tag Manager+6

Partner Domains:

sbgi.net
partner
sinclairstoryline.com
partner
2025-10-08T12:17:30.856Z
rockstarradio.ch favicon

Media One Group

rockstarradio.ch

47
MediaSwitzerlandsmallHIGH

Rockstar is a digital radio station operated by Media One Group, focusing on rock music from the 1960s to today. The website serves as a streaming platform and brand presence for the radio station, targeting rock music enthusiasts primarily in Switzerland. The site uses modern web technologies including Vue.js and Nuxt.js, and integrates Google Tag Manager and Axeptio for analytics and consent management, although no explicit cookie or privacy policies are published. Social media presence on Instagram and Facebook supports audience engagement. Technically, the website is well-structured with responsive design and moderate performance. However, security posture is moderate due to lack of visible security headers and absence of published security or privacy policies. The domain uses privacy protection in WHOIS, which is common and acceptable for media entities, and no suspicious patterns were detected. The site content is safe for general audiences with no adult or explicit material. Overall, the website is professionally presented and credible as a niche digital radio station. Key improvements include publishing privacy and cookie policies, adding security headers, and providing clear contact information to enhance trust and compliance. These steps will strengthen the security posture and privacy compliance, aligning with best practices for media websites.

95
85
65
-
35
2
25
rockradiodigitalradiomusicmedia+2 more
JavaScriptVue.jsNuxt.jsGoogle Tag Manager+1
2025-10-08T11:43:14.823Z
mtcaptcha.com favicon

Sun Spray Technologies LLC

mtcaptcha.com

68
TechnologyUnited StatesenterpriseMEDIUM

MTCaptcha, operated by Sun Spray Technologies LLC, is a GDPR-compliant enterprise captcha service designed to protect websites from bots, human abuse, and fraud. Positioned as a privacy-focused alternative to reCAPTCHA, it offers advanced AI security, accessibility compliance (WCAG 2.1 AAA), and multi-region availability including China. The service targets enterprises, startups, and small businesses, providing customizable themes, adaptive risk engines, and enterprise dashboards with multi-user management. The website demonstrates strong branding consistency, professional design, and clear navigation, supporting a positive user experience and trustworthiness. Technically, the website leverages modern web technologies including jQuery, Webflow CMS, Google Tag Manager, Mouseflow analytics, and Swiper.js for UI components. Hosting is via Webflow's CDN, ensuring fast performance and mobile optimization. Security best practices are observed with HTTPS enforcement, sandboxed captcha iframes, and no exposed sensitive data. Analytics usage is moderate and privacy compliant, with cookie consent mechanisms in place. Security posture is strong with appropriate headers and SSL configuration, though explicit security policy and incident response contacts are not published. No vulnerabilities or suspicious domains were detected. WHOIS data confirms legitimacy and consistency with the business identity. Overall, MTCaptcha presents a mature, secure, and privacy-conscious captcha solution with a solid market position. Strategic recommendations include publishing a dedicated security policy, providing incident response contacts, adding vulnerability disclosure mechanisms, and enhancing admin portal security. These steps will further strengthen trust and compliance.

85
85
80
100
2
30
72
captchagdprenterpriseprivacybotprotection+2 more
jQueryWebflowGoogle Tag ManagerMouseflow+2
2025-10-08T11:41:44.596Z
eventbrite.com favicon

Eventbrite

eventbrite.com

74
TechnologyUnited StateslargeMEDIUM

Eventbrite is a leading global online event management and ticketing platform that enables users to discover, create, and promote a wide range of events including concerts, workshops, festivals, and virtual gatherings. The platform serves both event organizers and attendees, providing comprehensive tools for ticket sales, event marketing, and attendee management. Eventbrite holds a strong market position with a large user base and extensive event categories. Technically, the website is built on modern web technologies including React and Next.js, with robust integration of analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and TikTok Pixel. The site demonstrates excellent performance, mobile optimization, and accessibility features, ensuring a high-quality user experience. From a security perspective, Eventbrite employs HTTPS with strong SSL configuration and security headers, alongside consent management for privacy compliance. While explicit security policies and incident response details are not publicly detailed, the platform shows adherence to best practices and GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, Eventbrite presents a mature, professional, and trustworthy online presence with strong business credibility. The absence of WHOIS data reduces domain registration transparency but does not detract from the platform's legitimacy or operational security. Strategic recommendations include publishing detailed security policies and vulnerability disclosure programs to enhance transparency and trust.

30
88
17
100
82
90
100
eventticketingeventmanagementonlineeventslocaleventseventmarketing
ReactNext.jsGoogle Tag ManagerGoogle Analytics+3
2025-10-08T11:40:54.481Z
jobpaths.com favicon

JobPaths

jobpaths.com

55
Non-profitUnited StatesmediumMEDIUM

JobPaths is a specialized platform founded in 2013 that provides technology solutions to nonprofits and government agencies focused on workforce development for diverse populations including veterans, military spouses, people with disabilities, and second chance candidates. The platform offers a comprehensive suite of services such as skills assessments, online training, resume generation, mentorship, and personalized dashboards. It also supports employers with job posting and candidate sourcing capabilities. The company maintains strong partnerships with reputable organizations and operates multiple microsites tailored to specific user groups, enhancing its market niche in veteran and diversity employment support. Technically, JobPaths employs a modern technology stack centered around React and Next.js, hosted likely on AWS infrastructure with media assets served via S3. The site integrates Stripe for payment processing and Google reCAPTCHA v3 for bot mitigation, alongside Google Tag Manager for analytics. The website demonstrates excellent design quality, mobile optimization, and SEO practices, providing a professional and user-friendly experience. From a security perspective, the site enforces HTTPS, uses domain status locks to prevent unauthorized domain changes, and employs bot protection mechanisms. However, DNSSEC is not enabled, and explicit security headers such as Content-Security-Policy are not detected. Privacy compliance is supported by a comprehensive privacy policy and terms of service, though a cookie consent mechanism is absent. No incident response or security policy pages were found, indicating room for improvement in transparency and readiness. Overall, JobPaths presents a trustworthy and mature online presence with a strong focus on social impact and workforce development. Strategic recommendations include enabling DNSSEC, implementing additional security headers, publishing a security policy and incident response contacts, and adding a cookie consent mechanism to enhance GDPR compliance and user trust.

85
-
85
100
17
20
53
veteransjobtrainingnonprofitgovernmentdiversity+3 more
ReactNext.jsStripeGoogle reCAPTCHA v3+2

Partner Domains:

yourjobpath.com
partner
spouses.yourjobpath.com
partner

+3 more partners

2025-10-08T11:20:53.757Z
A

Adobe System Incorporated

businesscatalyst.com

57
TechnologyN/aenterpriseMEDIUM

The website businesscatalyst.com serves as a formal end-of-life announcement for the Adobe Business Catalyst hosting platform, which was shut down on September 26, 2021. The site provides no active services or user interaction and primarily serves to inform former users of the platform's closure. The business behind the site is Adobe System Incorporated, a large enterprise technology company. The website content is minimal and focused solely on the shutdown notice, with links to Adobe's official privacy and terms pages. Technically, the site uses Adobe Business Catalyst CMS, Google Analytics, Google Tag Manager, and Typekit fonts. Hosting is inferred to be on AWS infrastructure based on DNS servers. The site lacks advanced SEO optimization, accessibility features, and security headers. There is no cookie consent mechanism despite the use of tracking scripts, which is a privacy compliance gap. The site is mobile responsive at a basic level but offers limited navigation and content quality. From a security perspective, the domain is well-established since 2002 with proper domain status locks but lacks DNSSEC. No security policies or incident response information is provided on the site. The absence of security headers and cookie consent reduces the security posture score. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the site is low risk but minimal in security maturity. The overall risk assessment is low due to the site being informational only and no active services. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and improving privacy disclosures to enhance trust and compliance.

77
70
100
85
2
53
15
end-of-lifeadobebusinesscatalysthostingplatformshutdownproductannouncementadobe
Google AnalyticsGoogle Tag ManagerTypekit FontsIonic Framework Icons+1
2025-10-08T11:20:03.195Z
nga.org favicon

National Governors Association

nga.org

70
GovernmentUnited StateslargeMEDIUM

The National Governors Association (NGA) is a well-established, bipartisan non-profit organization representing the governors of the 55 U.S. states, territories, and commonwealths. Founded in 1908, NGA serves as a leading forum for policy innovation, advocacy, and best practices sharing among state leaders. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation aimed at government officials and policy stakeholders. Technically, the site is built on WordPress with modern tools such as Google Tag Manager, Google Analytics, and Smart Slider 3, ensuring a responsive and accessible user experience. SEO and privacy compliance are well addressed, including a detailed privacy policy and cookie consent mechanisms. Security posture is strong with HTTPS enforced, though additional security headers and explicit vulnerability disclosure policies could enhance trust. Overall, the NGA website demonstrates high legitimacy and professionalism, with no signs of malicious activity or content safety concerns. The absence of WHOIS data limits domain registration insights, but the organization's long-standing reputation and consistent branding support its credibility. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and maintaining regular audits of third-party scripts.

15
80
47
80
72
80
100
governmentpolicynon-profitbipartisangovernors+3 more
WordPressGoogle Tag ManagerGoogle AnalyticsSmart Slider 3+3
2025-10-08T11:19:03.022Z
masscybercenter.org favicon

Massachusetts Technology Collaborative

masscybercenter.org

68
TechnologyUnited StatesmediumMEDIUM

MassCyberCenter is a government-affiliated cybersecurity collaborative under the Massachusetts Technology Collaborative, focused on enhancing economic growth through cybersecurity ecosystem outreach and resiliency within Massachusetts. The website serves as a hub for cybersecurity workforce development, grants, resources, events, and a jobs board targeting municipalities, small businesses, non-profits, and cybersecurity professionals. The organization holds a strong regional market position as a key resource for cybersecurity initiatives in the Commonwealth. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Tag Manager and Google reCAPTCHA for analytics and security. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Hosting details are limited but the domain registrar is Network Solutions, LLC, with a domain age consistent with the organization's founding. Security posture is solid with HTTPS enforced and use of CAPTCHA on forms, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional, trustworthy, and well-positioned to serve its audience. Strategic improvements in security headers, DNSSEC, and privacy consent would further strengthen its posture.

80
53
47
40
67
70
100
cybersecuritymassachusettsgovernmenttechnologyworkforcedevelopment+3 more
Drupal 10Google Tag ManagerGoogle reCAPTCHAVimeo Player API+1

Partner Domains:

masstech.org
partner
aihub.masstech.org
partner

+3 more partners

2025-10-08T11:18:52.996Z
securityandtechnology.org favicon

Institute for Security and Technology

securityandtechnology.org

72
TechnologyUnited StatessmallMEDIUM

The Institute for Security and Technology (IST) is a U.S.-based 501(c)(3) non-profit think tank that unites policymakers, technology experts, and industry leaders to address emerging security challenges through actionable solutions. The organization focuses on critical areas such as AI integration in nuclear command and control, cybersecurity, ransomware mitigation, and resilient infrastructure. IST operates with a collaborative business model emphasizing policy research, project initiatives, events, and publications to influence national security and global stability. Technically, the website is built on WordPress with Elementor, leveraging modern SEO tools like Yoast SEO and analytics services including Google Analytics and Google Tag Manager. The site is hosted with GoDaddy as registrar and uses Cloudflare for DNS services. Performance and mobile optimization are good, though accessibility features are basic. The site employs HTTPS with strong SSL configuration but lacks DNSSEC and some security headers, which are recommended for enhanced security. From a security perspective, IST demonstrates a solid posture with HTTPS enforcement and domain status protections. However, the absence of DNSSEC and explicit security headers, as well as missing cookie consent mechanisms, represent areas for improvement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy, though cookie policy and consent mechanisms could be enhanced. Overall, IST's website reflects a professional, trustworthy, and content-rich platform suitable for its target audience of security and technology stakeholders. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent mechanisms, and publishing explicit security and incident response policies to further strengthen trust and compliance.

100
75
70
80
55
58
55
securitytechnologynon-profitpolicyai+3 more
WordPressElementorGoogle AnalyticsGoogle Tag Manager+1
2025-10-08T11:18:27.929Z
everyoneon.org favicon

Everyone On

everyoneon.org

66
Non-profitUnited StatesmediumMEDIUM

Everyone On is a well-established non-profit organization dedicated to bridging the digital divide by providing affordable internet access, low-cost computers, and digital skills training to under-resourced communities. The organization has demonstrated significant impact since 2012, connecting millions to digital resources and advocating for equitable digital policies. Their website reflects a professional and consistent brand presence, targeting individuals and communities in need of digital inclusion services. Technically, the website is built on the Squarespace platform, leveraging modern web technologies and integrating Google services such as Google Analytics, Google Tag Manager, and Google Ads for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site enforces HTTPS but lacks several important security headers such as HSTS, Content-Security-Policy, and X-Frame-Options, which could enhance protection against common web threats. No critical vulnerabilities were detected, but improvements in security headers and cookie consent mechanisms are recommended to strengthen privacy compliance and security posture. Overall, the website presents a trustworthy and credible digital presence for a non-profit organization, though the absence of WHOIS registrant data due to privacy protection slightly reduces transparency. Strategic recommendations include enhancing security headers, implementing a cookie consent banner, and improving privacy compliance to align with best practices and regulatory requirements.

35
53
17
85
75
85
100
non-profitdigitalinclusioninternetaccessdigitalskillscommunitysupport+1 more
Squarespace CMSGoogle Tag ManagerGoogle AnalyticsGoogle Ads+1
2025-10-08T11:18:02.810Z
ddia.org favicon

Digital Democracy Institute of the Americas

ddia.org

64
Non-profitUnited StatessmallMEDIUM

The Digital Democracy Institute of the Americas (DDIA) is a small non-profit organization founded in 2018, focused on strengthening digital democracy and information integrity for Latino communities across the Americas. It operates as a research and advocacy hub, providing public opinion research, narrative analysis, capacity-building, and policy guidance. The organization targets Latino populations in the U.S. and Latin America, policymakers, journalists, and civil society actors. The website reflects a professional and consistent brand with clear messaging and a strong social media presence. Technically, the website is built on modern frameworks including React and Next.js, hosted and secured via Cloudflare. It demonstrates good performance, mobile optimization, and SEO practices. Security posture is solid with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is partially addressed with privacy and cookie policies present, but lacks an explicit cookie consent mechanism. Contact information is primarily via a contact form and social media channels, with no direct emails or phone numbers publicly listed. Overall, the site is safe, trustworthy, and well-maintained, with minor improvements recommended in security transparency and privacy consent. Strategic recommendations include enabling DNSSEC, publishing a security policy and incident response contacts, implementing cookie consent mechanisms, and considering a vulnerability disclosure policy to enhance trust and compliance.

15
68
25
70
75
75
100
digitaldemocracynon-profitlatinocommunitiesresearchpolicy+2 more
ReactNext.jsCloudflareGoogle Tag Manager+1
2025-10-08T11:17:42.487Z