Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

151699
Websites
130
Industries
113
Countries
52
Avg Score
Page 438 of 1036|Showing 21851-21900 of 51794
snapkit.com favicon

Snap Inc.

snapkit.com

71
TechnologyN/alargeMEDIUM

Snap for Developers is the official developer portal for Snap Inc., providing comprehensive documentation and resources for developers to build augmented reality experiences and integrate with Snap's products such as Lens Studio, Camera Kit, Snap Kit, and Spectacles. The portal targets developers and technical users interested in leveraging Snap's AR technology and APIs. The website demonstrates a professional and consistent brand presence aligned with Snap Inc.'s corporate identity. Technically, the site is built using modern frameworks such as Docusaurus and integrates analytics tools like Google Analytics and Google Tag Manager. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. However, explicit privacy and cookie policies are not found on the main page, which is a gap in privacy compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries in the HTML content. However, no security headers were detected in the provided data, and there is no visible incident response or security policy information. The WHOIS data for the subdomain is not available, which is typical for subdomains, and does not raise legitimacy concerns. Overall, the security posture is adequate but could be improved with additional headers and clearer privacy disclosures. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers to enhance protection, and providing clear contact information for security and data protection inquiries to improve compliance and trust.

85
35
2
85
95
85
100
developeraugmentedrealitysnapincapilensstudio+3 more
Docusaurus v3.8.1Google Tag ManagerGoogle AnalyticsAlgolia DocSearch+1
2025-10-08T00:31:03.343Z
spectacles.com favicon

Snap Inc.

spectacles.com

75
TechnologyN/aenterpriseMEDIUM

The website spectacles.com represents the official product site for Snap Inc.'s Spectacles, a line of augmented reality glasses powered by Snap OS. The site showcases the product features, shared AR experiences, and developer tools, positioning itself as a key player in the AR technology market. The branding and content strongly align with Snap Inc.'s ecosystem, indicating a high level of business credibility and market positioning as a technology innovator in AR hardware and software. Technically, the site leverages modern web technologies including React, Apollo GraphQL, Contentful CMS, and integrates with Shopify for e-commerce capabilities. The site is optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and strict Content-Security-Policy headers, though additional headers could enhance protection. Privacy compliance is robust with clear privacy and cookie policies, and GDPR adherence is evident. No direct company emails or phone numbers are published, but contact forms for support and business inquiries are available. WHOIS data is unavailable, which is unusual but likely due to privacy or registrar policies. Overall, the site is professional, secure, and trustworthy, serving as a flagship digital presence for Snap Inc.'s AR product line.

75
73
2
85
95
85
100
arglassessnapincaugmentedrealitytechnologyspectacles+3 more
React (implied by JSX and React Helmet usage)Apollo GraphQLHls.jsContentful CMS+4

Partner Domains:

snap.com
parent
snapchat.com
sister

+3 more partners

2025-10-08T00:30:58.333Z
nordlayer.com favicon

NordLayer

nordlayer.com

86
TechnologyN/aenterpriseLOW

NordLayer is a cybersecurity company specializing in enterprise-grade network security solutions tailored for modern hybrid workforces. Their platform offers a comprehensive suite of services including business VPN, Zero Trust Network Access, threat protection, threat intelligence, and password management. Positioned as a trusted solution by over 11,000 businesses globally, NordLayer emphasizes ease of deployment, compliance with major security standards, and seamless integration with popular IAM and cloud platforms. The company is part of the Nord Security family, founded in 2019, and maintains a strong market presence with a focus on cloud-native, toggle-ready cybersecurity tools. Technically, NordLayer's website is built on modern frameworks such as Next.js and React, hosted likely via Cloudflare, and employs a robust tech stack including various marketing, analytics, and customer engagement tools. The site is fast, mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security best practices are well implemented, including HTTPS, Content Security Policy, and multiple compliance certifications. However, DNSSEC is not enabled, and no explicit vulnerability disclosure or incident response contact is published. The security posture is strong with no detected vulnerabilities or exposed sensitive data. The company demonstrates compliance with SOC 2, ISO 27001, PCI-DSS, and HIPAA standards, enhancing trustworthiness. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. The website integrates multiple trusted external domains and marketing platforms, maintaining transparency and user privacy. Overall, NordLayer presents a professional, secure, and trustworthy online presence with a high level of business credibility and technical sophistication. Strategic recommendations include enabling DNSSEC, publishing a vulnerability disclosure policy, and enhancing incident response transparency to further strengthen security and compliance.

80
100
47
87
100
85
100
cybersecuritynetworksecurityvpnzerotrustthreatprotection+3 more
ReactNext.jsCloudflare DNSGoogle Tag Manager+8

Partner Domains:

nordsecurity.com
parent
nordvpn.com
sister

+3 more partners

2025-10-08T00:29:53.141Z
fda.gov favicon

U.S. Food and Drug Administration

fda.gov

70
GovernmentUnited StatesenterpriseMEDIUM

The U.S. Food and Drug Administration (FDA) is a federal government agency responsible for protecting public health through regulation and oversight of food, drugs, medical devices, and related products. The website serves as a comprehensive resource for consumers, industry professionals, and government officials, providing regulatory information, safety alerts, guidance documents, and news updates. The FDA holds a primary market position as the authoritative regulatory body in the United States for these sectors. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies including Bootstrap for responsive design, Google Tag Manager, Google Analytics, and CrazyEgg for analytics and user behavior tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, though some security headers are missing. The performance is moderate, with asynchronous loading of scripts enhancing user experience. From a security perspective, the site enforces HTTPS and links to a vulnerability disclosure policy, indicating a mature security posture. However, explicit security headers like Content-Security-Policy and X-Frame-Options are absent, and no incident response contact details are published. Privacy compliance is addressed with a comprehensive privacy policy and cookie information, though no explicit cookie consent mechanism is present. Overall, the FDA website is a highly trustworthy and professional government resource with excellent content quality and business credibility. The incomplete WHOIS data is mitigated by the .gov domain status and consistent branding. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response contacts, and adding a security.txt file to improve transparency and security posture.

55
53
35
70
80
80
100
governmenthealthcarefdapublichealthregulation+3 more
Google Tag ManagerGoogle Analytics (gtag.js)CrazyEggDrupal CMS+2
2025-10-08T00:29:48.133Z
nextdaycontacts.com favicon

Next Day Contacts LLC

nextdaycontacts.com

61
RetailUnited StatesmediumMEDIUM

Next Day Contacts LLC operates a specialized e-commerce platform focused on selling contact lenses with a unique value proposition of free next day shipping across the United States. Founded in 2005, the company targets individuals requiring contact lenses and vision care, offering both product sales and online prescription renewal services. The website is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and rich content including customer testimonials and popular brand offerings. Technically, the site leverages modern web technologies such as React and Next.js, integrated with advanced analytics and marketing tools like Google Analytics, FullStory, Klaviyo, and Facebook Pixel, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and standard security headers, though the absence of a visible cookie consent mechanism and published security policies suggests room for improvement in privacy compliance. The WHOIS data is notably missing, which raises questions about domain registration legitimacy despite the professional appearance and business consistency. Overall, the website presents a trustworthy and efficient platform for contact lens retail, but domain registration verification and enhanced privacy transparency are recommended.

30
53
2
70
62
85
100
contactlensese-commercehealthcarenextdayshippingonlineprescriptionrenewal
ReactNext.jsGoogle AnalyticsGoogle Tag Manager+4
2025-10-08T00:29:33.110Z
yes4youth.co.za favicon

Yes4Youth

yes4youth.co.za

69
Non-profitSouth AfricalargeMEDIUM

Yes4Youth is a prominent South African non-profit organization focused on addressing youth unemployment through private sector partnerships. The organization facilitates the creation of quality 12-month work experiences for unemployed youth, enabling them to develop skills and become future leaders, professionals, and entrepreneurs. Businesses benefit by improving their B-BBEE scorecard levels and integrating youth employment into their ESG strategies. The website demonstrates a mature digital presence leveraging HubSpot CMS, modern JavaScript libraries, and comprehensive marketing and analytics tools. Privacy and cookie consent mechanisms are implemented effectively, reflecting good compliance with data protection regulations. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable gap, reducing domain registration transparency, but the website's content, social media presence, and partnerships support its legitimacy. Overall, Yes4Youth presents a professional and trustworthy platform with room for improvement in transparency and security disclosures.

45
68
17
98
75
70
100
youthemploymentnon-profitb-bbeesouthafricajobcreation+1 more
HubSpot CMSjQuerySlick CarouselSwiper+7

Partner Domains:

blog.yes4youth.co.za
partner
portal.yes4youth.co.za
partner

+1 more partners

2025-10-08T00:29:22.970Z
workable.com favicon

Workable

workable.com

61
TechnologyUnited StateslargeMEDIUM

Workable is a leading SaaS provider of all-in-one HR software solutions, specializing in talent acquisition, applicant tracking, employee management, and payroll services. Founded in 2012, it serves over 30,000 companies globally with AI-powered tools that streamline recruitment and HR processes. The company positions itself as a future-ready HR platform with a strong emphasis on AI integration and user-friendly design. Technically, the website leverages modern frameworks such as Next.js and React, with robust analytics and error monitoring tools like Google Analytics, Hotjar, and Rollbar. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Security-wise, Workable demonstrates a strong posture with HTTPS enforcement, multiple security certifications (ISO 27001, SOC 2 Type II), and comprehensive privacy policies aligned with GDPR and CCPA. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website and business exhibit high professionalism, trustworthiness, and compliance, though WHOIS data is unavailable, likely due to privacy protection. Strategic recommendations include publishing explicit incident response contacts and a vulnerability disclosure policy to enhance transparency and security readiness.

25
95
17
70
-
90
100
hrsoftwareapplicanttrackingtalentacquisitionairecruitingemployeemanagement+5 more
ReactNext.jsRollbarGoogle Tag Manager+3

Partner Domains:

partners.workable.com
partner
2025-10-08T00:29:17.947Z
jivosite.com favicon

LLC TECNOLOGY DISTRIBUTION LTDA

jivosite.com

74
TechnologyN/alargeMEDIUM

JivoChat is a globally recognized SaaS provider specializing in live chat software and customer engagement platforms. The company offers a comprehensive suite of services including live chat for websites and mobile apps, chatbot integration, AI agents, telephony solutions, and CRM integrations. Positioned as one of the top three platforms worldwide by user count, JivoChat serves over 200,000 businesses and processes more than 14 million chats monthly. The website demonstrates a mature digital presence with multi-language support and extensive integration capabilities. Technically, the website leverages modern web technologies such as React and Next.js, ensuring fast performance, mobile responsiveness, and good SEO optimization. The presence of Google Tag Manager and Ahrefs Analytics indicates a data-driven approach to marketing and performance monitoring. Security best practices are observed with HTTPS enforcement, security headers, and a cookie consent mechanism. The company also runs a bug bounty program, reflecting a proactive security posture. While the website content and technical infrastructure are robust, the absence of WHOIS registration data is a notable gap that affects trustworthiness from a domain registration perspective. Despite this, the professional presentation, clear business information, and active customer engagement tools mitigate concerns. Overall, JivoChat presents a strong business and technical profile with room for improvement in transparency of domain registration and incident response contact details. Strategic recommendations include publishing explicit incident response contacts, adding a security.txt file for vulnerability disclosures, and maintaining regular audits of third-party scripts to sustain security and compliance standards.

60
95
20
70
75
85
100
livechatcustomersupportchatbotsmessengersaiagent+4 more
ReactNext.jsJavaScriptGoogle Tag Manager+2

Partner Domains:

app.jivosite.com
partner
2025-10-08T00:29:12.926Z
identity.digital favicon

Identity Digital Inc.

identity.digital

76
TechnologyUnited StateslargeLOW

Identity Digital Inc. operates as a leading domain registry and registrar services provider, offering the world's largest and most relevant domain extension portfolio. Their business model focuses on empowering businesses, governments, nonprofits, and individuals to create authentic digital identities through descriptive domain names. The company targets a broad audience including registrars, registries, and resellers, positioning itself as a key player in the domain name industry with a strong market presence and partnership ecosystem. Technically, the website is built on modern web technologies including Webflow CMS, HubSpot marketing and analytics tools, Google Tag Manager, and GSAP for animations. The site is hosted on Webflow's CDN, optimized for fast performance, mobile responsiveness, and good accessibility. The technical infrastructure supports a professional and seamless user experience with clear navigation and rich content. From a security perspective, the website enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and integrates reCAPTCHA for form protection. While explicit security headers are not detected, the site follows best practices to protect user data and maintain privacy compliance. No vulnerabilities or exposed sensitive data were found, indicating a mature security posture appropriate for a domain registry business. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations. The domain WHOIS data is privacy protected but consistent with the company's identity. The risk profile is low, with recommendations to enhance security headers and publish formal security policies to further strengthen trust and compliance.

45
100
47
75
72
85
100
domainregistryregistrardigitalidentitysecurity+2 more
Webflow CMSGoogle Tag ManagerHubSpot (forms, analytics, messaging)GSAP (animation)+2

Partner Domains:

brandportal.identity.digital
partner
registrar.identitydigital.services
partner
2025-10-08T00:24:45.536Z
cleandns.com favicon

CleanDNS, Inc.

cleandns.com

74
TechnologyN/amediumMEDIUM

CleanDNS, Inc. is a technology company specializing in DNS abuse management and online harm mitigation. Established in 2012, it serves registries, registrars, hosting providers, and cybersecurity organizations with a customizable, evidence-based platform designed to streamline abuse reporting, escalation, and mitigation. The company positions itself as a trusted partner with SOC 2 Type II and GDPR compliance, emphasizing security and trust in its operations. The website reflects a professional and consistent brand image with clear messaging and accessible contact channels. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and user interaction, including Google Analytics, Google Tag Manager, and CookieYes for consent management. Hosting appears to be on Azure App Service, inferred from cookies. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and security headers. Security posture is strong with HTTPS enforced, SOC 2 Type II compliance, GDPR adherence, and use of reCAPTCHA v3 on forms. However, the absence of explicit security headers and a security.txt file suggests areas for enhancement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust with clear policies and consent mechanisms. Overall, CleanDNS presents a low-risk profile with a mature business model, solid technical infrastructure, and good security practices. Strategic recommendations include implementing additional security headers, publishing vulnerability disclosure information, and enhancing accessibility to further strengthen trust and compliance.

60
95
47
72
57
80
100
dnsabusecybersecurityabusemanagementonlineharmmitigationsoc2+3 more
WordPress 6.8.3Yoast SEO pluginGoogle Tag ManagerGoogle Analytics+6

Partner Domains:

netbeacon.org
partner
trust.cleandns.com
service

+1 more partners

2025-10-07T23:22:37.240Z