Security Directory

О

ООО ИТ Проспект

chat2desk.com

46

Chat2Desk is a Russian-based IT company founded in 2015, specializing in providing a comprehensive business communication ecosystem. Their platform aggregates multiple messaging channels including WhatsApp Business API, Telegram, VKontakte, and others into a unified chat center, enabling businesses to automate workflows, manage customer interactions, and enhance service efficiency. The company targets a broad range of industries such as fintech, retail, energy, healthcare, and logistics, serving over 10,000 clients globally with a medium-sized team and extensive partner network. The website is professionally designed, content-rich, and optimized for mobile devices, reflecting a mature digital presence. Technically, the website employs modern web technologies including JavaScript frameworks, Google reCAPTCHA v3 for bot protection, and integrates analytics tools like Yandex Metrika and Google Tag Manager. Hosting and DNS services leverage Cloudflare, ensuring reliable performance and security. While HTTPS is enforced and some security best practices are observed, the site lacks explicit security headers and DNSSEC, which are recommended for enhanced protection. From a security standpoint, the platform emphasizes secure communication with features like two-factor authentication and IP filtering. Privacy and cookie policies are clearly presented with consent mechanisms, indicating compliance with GDPR principles. However, no explicit incident response or vulnerability disclosure policies are found, suggesting room for improvement in transparency and security governance. Overall, Chat2Desk presents a trustworthy and professional business solution with a solid technical foundation and good privacy practices. Strategic enhancements in security headers, incident response documentation, and DNS security would further strengthen their security posture and trustworthiness.

B

Bahnhit

bahnhit.de

68

Bahnhit.de is an online travel booking platform specializing in affordable city trips that include train and hotel packages, targeting German-speaking travelers. The website presents a professional and consistent brand image with a clear focus on transportation and hospitality sectors. The platform leverages modern web technologies including JavaScript, Google Tag Manager, and Cookiebot for consent management, ensuring a good level of digital maturity. The site is mobile optimized and SEO friendly, providing a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit incident response policies are missing. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism in place. Overall, the website is trustworthy and professionally maintained, with extensive use of third-party advertising and analytics services.

A

Arbeitsgemeinschaft der Wissenschaftlichen Medizinischen Fachgesellschaften e. V.

awmf.org

55

The Arbeitsgemeinschaft der Wissenschaftlichen Medizinischen Fachgesellschaften e. V. (AWMF) is a prominent non-profit network of scientific medical societies in Germany. It focuses on the development, publication, and coordination of high-quality medical guidelines, serving as a central hub for medical professionals and scientific societies. The website reflects a professional and well-structured platform that supports its mission through guideline registers, events, and publications. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies with good mobile optimization and SEO practices. Security posture is moderate, with HTTPS usage but lacking explicit security headers and privacy policies. The absence of visible contact information and WHOIS data limits full verification but does not detract from the site's credibility given its professional content and external affiliations. Overall, the site is trustworthy, well-positioned in the healthcare sector, and serves a specialized audience effectively.

A

Arkane Studios

arkane-studios.com

64

Arkane Studios is a well-established video game development company founded in 1999, known for critically acclaimed titles such as Dishonored, Prey, and DEATHLOOP. The company operates under the parent company ZeniMax Media Inc. and is currently developing Marvel’s Blade in collaboration with Marvel Games. The website presents a professional and consistent brand image with comprehensive content about their games and studio. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, FontAwesome, and Google Analytics for tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is implied but no explicit security headers were detected in the provided content. Privacy and legal policies are linked to the parent company’s domain, indicating compliance with GDPR and other regulations. However, the absence of WHOIS data and lack of direct contact information on the site slightly reduce trustworthiness. Overall, the website is professional, secure, and credible with room for improvement in security headers and contact transparency.

U

Unity Technologies

multiplay.com

71

Unity Technologies operates a comprehensive platform for game development and multiplayer game server hosting, exemplified by their Multiplay Hosting Service. The company is a market leader in the technology sector, providing scalable and flexible cloud-based hosting solutions tailored for game developers and studios. Their website reflects a mature digital infrastructure leveraging modern web frameworks such as React and Next.js, hosted on Akamai CDN, ensuring fast performance and excellent mobile optimization. Privacy and cookie compliance are well implemented with clear policies and consent mechanisms. Security posture is strong with HTTPS, security headers, and no detected vulnerabilities, although improvements could be made by enabling DNSSEC and publishing explicit security policies and incident response contacts.

M

Megazone Corp., dba HOSTING.KR

webdock.com

53

The website webdock.com currently serves as a domain parking page with no active business content or services. It prominently displays a sales banner indicating the domain is for sale, targeting domain investors or buyers. The domain is registered to Megazone Corp., a hosting and registrar company, consistent with the domain parking business model. The site lacks substantive content, contact information, or detailed business descriptions, limiting its utility beyond domain resale. Technically, the site uses standard HTML5, CSS3, and JavaScript with integrations of Google Adsense and Bodis domain parking scripts for monetization. The hosting provider is Megazone Corp., and the site is served over HTTPS with a good SSL configuration. However, it lacks DNSSEC and important security headers, which are recommended for improved security posture. The site shows basic mobile optimization and accessibility but has poor SEO and content quality due to minimal content. From a security perspective, the site benefits from HTTPS but lacks additional security headers and privacy compliance mechanisms such as cookie consent banners. No contact or incident response information is provided, and no certifications or security frameworks are referenced. The domain WHOIS data is consistent and legitimate, with no suspicious patterns detected. Overall, the site scores low on content quality, business credibility, and privacy compliance, resulting in a moderate overall AI score. It is safe for general audiences but offers limited value beyond domain resale. Strategic improvements in security headers, privacy compliance, and business transparency would enhance trust and professionalism.

F

Futurra Group

futurragroup.com

52

Futurra Group is an IT company with Ukrainian roots and head offices in Cyprus and Hong Kong, specializing in mobile and web EdTech products. Their offerings include lifestyle education platforms targeted primarily at women, focusing on personal development and empowerment. The company positions its products among the top in Tier-1 countries such as the USA, Canada, and the UK, indicating a strong market presence and international reach. The website reflects a medium-sized enterprise with about 60 team members and over 100 million users of their products worldwide. Technically, the website is built using modern JavaScript frameworks like Nuxt.js and integrates Google Fonts, Google Tag Manager, Google Ads, and Facebook Pixel for marketing and analytics purposes. Hosting is managed via NameCheap's registrar servers, and the domain is well-established with a registration date in 2017, consistent with the company's stated experience. Security-wise, the domain status clientTransferProhibited is a positive indicator, but the absence of DNSSEC, security headers, and published security policies suggests room for improvement. The website lacks visible privacy and cookie policies or consent mechanisms, which impacts privacy compliance. Overall, the site is professionally designed, mobile-optimized, and content-rich, but it should enhance its privacy and security posture to meet higher compliance and trust standards.

Unreal Engine, operated by Epic Games, Inc., is a leading technology company specializing in real-time 3D creation tools. Their flagship product, Unreal Engine, serves a broad audience including game developers, designers, and creators across multiple platforms such as PC, console, mobile, VR, and AR. The company holds a strong market position as a premier provider of advanced real-time technology solutions, enabling users to build high-quality games and cinematic experiences. Technically, the website demonstrates a mature digital infrastructure leveraging modern frameworks like Next.js and React, with optimized performance and excellent mobile responsiveness. The use of OneTrust for cookie consent and tracking indicates a commitment to privacy compliance. The site is well-structured with comprehensive metadata, SEO optimization, and accessibility considerations. From a security perspective, the website enforces HTTPS, employs multiple security headers, and integrates cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. The absence of WHOIS data is likely due to privacy protection, which is common for large enterprises and does not detract from the site's legitimacy. Overall, Unreal Engine's website reflects a professional, secure, and privacy-conscious digital presence aligned with its industry stature. Strategic recommendations include publishing detailed security and incident response policies and maintaining vigilance on third-party scripts to uphold security standards.

K

Kongregate

kongregate.com

71

Kongregate is a well-established online gaming platform offering thousands of free games across various genres including action, strategy, and RPGs. The platform supports a vibrant gaming community with features such as achievements and ratings, targeting gamers of all ages. The business model primarily relies on advertising revenue with options for premium user experiences. Technically, the website employs modern JavaScript frameworks, integrates with major analytics and advertising services like Google Analytics, Google Ads, and Facebook SDK, and is hosted likely on AWS infrastructure. The site demonstrates excellent performance, mobile optimization, and accessibility standards. Security-wise, Kongregate enforces HTTPS, uses standard security headers, and implements CSRF protections, though it lacks a publicly visible security policy or incident response contacts. The WHOIS data is unavailable or protected, which slightly impacts trust but is common for such businesses. Overall, the site is professional, secure, and compliant with privacy regulations, making it a trustworthy platform for users.

I

indieprize

indieprize.org

54

indieprize.org is a niche content website dedicated to World of Warcraft players, providing daily news, in-depth guides, and expert tips focused on Mythic+ dungeons and raid content. The site targets WoW gamers seeking practical and tested gameplay advice to enhance their experience. Technically, the site is built on WordPress with a modern block-based theme, hosted behind Cloudflare DNS, and uses HTTPS with standard domain protections. However, it lacks advanced security headers and DNSSEC, which could improve its security posture. Privacy compliance is minimal, with a basic privacy policy but no cookie consent mechanism or GDPR indicators. No contact or incident response information is provided, limiting transparency. Overall, the site is professionally designed with good content quality and moderate technical implementation, but security and privacy practices need enhancement to meet higher standards.

The website aiv01.it is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block page. This security mechanism prevents access to the site's actual content, resulting in no visible business information, contact details, or policies. The domain is aged since 2003, indicating a long registration history, but no registrant or business data is available to assess legitimacy or market position. Technically, the site uses Cloudflare services including Cloudflare Insights for analytics, but no other technologies or CMS platforms are detectable due to the block. Security posture cannot be fully assessed, but the absence of DNSSEC and security headers is noted. Privacy compliance is lacking as no privacy or cookie policies are found. Overall, the site presents a low trust profile due to inaccessibility and lack of transparency.

W

WN Conference

wnconf.com

56

WN Conference Abu Dhabi is a specialized event focused on the global gaming industry, targeting decision makers, investors, and developers. The conference is positioned as a strategic hub for business networking and investment in the MENA region, supported by government and private sector initiatives. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies and is hosted on a reliable platform, though some security best practices like DNSSEC and security headers are missing. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is credible but could improve in privacy and security transparency.

F

Fairlead Group

fairleadgroup.com

65

Fairlead Group is a private investigation service provider established in 2019, offering a range of investigative services including open-source, social media, surveillance, SIU, and canvasses investigations. The company targets businesses and professionals seeking credible and effective investigative strategies, positioning itself as a niche provider with an integrated investigation management platform. The website is professionally designed using GoDaddy Website Builder, featuring modern web technologies and multimedia content such as embedded Vimeo videos. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and domain registration locks in place, but lacks advanced security headers and DNSSEC. Privacy and cookie policies are absent, indicating gaps in compliance. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

S

Shearwater Law

shearwater-law.com

68

Shearwater Law is a specialized legal services provider focusing on maritime and commodities law, serving clients globally with offices in Plymouth and Newcastle. The firm offers a comprehensive range of legal services including dispute resolution, regulatory advice, and contract drafting tailored to the shipping and marine insurance sectors. The website reflects a professional and consistent brand image with clear sector and service navigation, targeting maritime industry professionals and related businesses. Technically, the website is built on TYPO3 CMS and integrates modern web technologies such as Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile optimized with good SEO practices, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS registration data raises concerns about domain legitimacy and consistency with the firm's claimed history. No direct contact emails or phone numbers are publicly available, which may impact user trust. Overall, the website is professional and content-rich but would benefit from enhanced transparency in domain registration, improved security policies, and clearer contact information to strengthen trust and compliance.

The domain pixellb.com is currently a parked domain hosted by GoDaddy.com, LLC, with no active business content or services offered. The page serves as a placeholder and includes basic branding and a Trustpilot review widget. The target audience is primarily potential domain buyers. The technical infrastructure is minimal, relying on GoDaddy's parking platform with embedded scripts for cookie consent (TrustArc) and customer reviews (Trustpilot). The site lacks a CMS and advanced SEO or accessibility features. Security posture is basic, with no DNSSEC enabled and no visible security headers, but the domain is protected by registrar status flags preventing unauthorized changes. Privacy compliance is basic, with a cookie consent banner and a link to GoDaddy's privacy policy. No contact information, security policies, or incident response details are provided, limiting business credibility. Overall, the site is low risk but offers limited value beyond domain parking.

The website clickslogistics.com currently serves as a parked domain with minimal content and no active business presence. The domain was registered recently in May 2023 through IONOS SE, a known registrar and hosting provider. The site content consists primarily of a cookie consent modal referencing third-party Sedoparking policies, with no company branding, contact information, or descriptive business content. Technically, the site uses basic HTML, CSS, and JavaScript, with DNS hosted on Cloudflare name servers. There is no evidence of HTTPS enforcement or security headers, and no forms or user data collection mechanisms are present. From a security perspective, the site lacks fundamental protections and does not demonstrate compliance with privacy regulations beyond basic cookie consent. Overall, the domain appears to be held as a placeholder or for future use rather than an active business website.

F

Fondazione Bologna Welcome

bolognawelcome.com

59

Fondazione Bologna Welcome operates the official tourism portal for Bologna and its metropolitan area, providing comprehensive information on places to visit, events, activities, and hospitality services. The website serves tourists and visitors with multilingual support, ticketing, and merchandise sales, positioning itself as a key resource for tourism promotion in the region. The site is well-branded, professionally designed, and supported by official government and regional partners, enhancing its market credibility. Technically, the website leverages modern web technologies including Angular 15, integrates analytics and consent management tools such as Microsoft Clarity and Cookiebot, and employs security best practices with HTTPS and security headers. The site is optimized for mobile devices and accessibility, ensuring a positive user experience across platforms. From a security perspective, the site demonstrates a strong posture with enforced HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. However, it lacks a public vulnerability disclosure policy and explicit incident response contacts, which are recommended for enhanced security transparency. Overall, the website presents a low risk profile with high trustworthiness and professionalism. The absence of WHOIS data slightly reduces domain trust but is mitigated by the site's official nature and strong partner ecosystem. Strategic recommendations include publishing a vulnerability disclosure policy and incident response information to further strengthen security and compliance.

A

aaPanel Team

aapanel.com

67

aaPanel is an established provider of a free and open-source web hosting control panel designed primarily for Linux servers. The company offers a robust platform that simplifies server management with features such as one-click installation of popular web environments (LNMP/LAMP/OpenLiteSpeed), WP Toolkit, mail server management, and file management. The website positions aaPanel as a widely adopted solution with over 3 million installations, targeting server administrators and hosting providers. The business model includes a free edition and a paid Pro version with enhanced features. Technically, the website is well-constructed using modern web technologies and integrates analytics and consent management tools, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and cookie consent but lacks explicit security policies and some recommended security headers. The absence of WHOIS data limits domain legitimacy verification, though the website's content and trust signals suggest a credible operation. Overall, aaPanel demonstrates a strong market position in the hosting control panel niche with room for improvement in privacy and security transparency.

V

VPSServer.com

vpsserver.com

66

VPSServer.com is a VPS and cloud hosting provider offering secure, scalable, and affordable virtual private servers with a global footprint. The company, legally known as Kamatera Inc, claims a founding year of 1995 and operates multiple data centers worldwide. Their services include Linux and Windows VPS, managed and unmanaged hosting, and a custom control panel for easy server management. The website is professionally designed with clear navigation and comprehensive service descriptions, targeting individuals and businesses seeking reliable VPS hosting solutions. Technically, the website employs modern web technologies including HTML5, CSS3, and JavaScript, with a focus on performance using NvME SSD storage and Intel Xeon processors. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is strong with HTTPS enforced and secure forms, but lacks explicit security policy and incident response information. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website presents a trustworthy and professional image with good content quality and technical implementation. However, the absence of WHOIS domain registration data introduces uncertainty about domain legitimacy. Security and privacy practices could be enhanced by adding formal policies and consent mechanisms. The company maintains active social media channels and provides clear contact information, supporting business credibility.

T

TransIP

transip.nl

70

TransIP is a leading Dutch hosting provider and the largest domain registrar in the Netherlands, serving over 150,000 customers. Their core business revolves around domain registration, web hosting, VPS, and colocation services, targeting both individuals and businesses seeking reliable internet infrastructure solutions. The website is professionally designed, well-branded, and optimized for the Dutch market with clear navigation and relevant content. Technically, the site employs modern web standards, uses reputable third-party services such as HubSpot for marketing and Iubenda for cookie compliance, and enforces HTTPS with strong security headers, reflecting a mature digital infrastructure. However, explicit security policies and incident response information are not publicly available, which could be improved to enhance transparency and trust. Overall, the security posture is strong with no detected vulnerabilities or suspicious content, and privacy compliance is well addressed with comprehensive policies and consent mechanisms. The domain registration details align well with the business claims, reinforcing legitimacy and trustworthiness. Strategic recommendations include publishing dedicated security and incident response pages, implementing a vulnerability disclosure policy, and enhancing accessibility features to meet broader compliance standards.

T

TransIP B.V.

transip.net

70

TransIP B.V. is a well-established Dutch hosting provider and domain registrar, recognized as the largest registrar in the Netherlands with over 150,000 customers. The company offers a range of services including domain registration, web hosting, VPS, and colocation, targeting both individuals and businesses. Their website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in Dutch, reflecting their primary market focus. Technically, the site employs modern web technologies, integrates reputable third-party services for marketing and privacy compliance, and maintains good performance and SEO practices. Security-wise, the website enforces HTTPS, implements key security headers, and uses a cookie consent mechanism, although it lacks a dedicated security policy or incident response page. Overall, the domain registration details align well with the business claims, indicating high legitimacy and trustworthiness.

I

InnovateNB

innovatenbcelebration.com

60

InnovateNB is a specialized event platform focused on celebrating innovation within New Brunswick, Canada. The website promotes the InnovateNB Celebration & Awards 2025, highlighting local innovators and technology entrepreneurs through a formal awards event. The business model centers on event organization, sponsorship, and community engagement within the regional technology sector. The site is professionally designed using Squarespace, with integrations for marketing and analytics tools such as HubSpot, Google Tag Manager, and Datadog. The technical infrastructure is modern and mobile-optimized, though performance is moderate. Security posture is strong with HTTPS and HSTS enabled, but lacks visible privacy and cookie policies, which impacts compliance. The absence of WHOIS data for the domain raises concerns about domain registration transparency, though the website content and partner associations suggest legitimacy. Overall, the site is a credible regional event platform with room for improvement in privacy compliance and domain registration transparency.

N

NNPC Marine Insurance

nnpc.nl

68

NNPC Marine Insurance is a specialized marine insurance provider operating as the only Dutch P&I club, offering global marine insurance and risk solutions with a personal touch. Their services include P&I Mutual, Fixed Premium, FD&D, Crew insurance, Charterers Liability, and Inland Shipping insurance. The website targets marine industry professionals such as ship owners and charterers, positioning itself as a trusted and expert provider in the marine insurance sector. Technically, the website is built on WordPress with a modern tech stack including WPBakery Page Builder, multilingual support via WPML, and analytics tools like Google Tag Manager and Matomo. The site is hosted by Hosting Concepts B.V. and uses HTTPS with a good SSL configuration. Mobile optimization and SEO are well implemented, though accessibility is basic. From a security perspective, the site employs HTTPS and cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and DNSSEC. The WHOIS data shows inconsistencies, notably a domain creation date in the future, which warrants further verification. No WAF or blocking mechanisms were detected, and no critical vulnerabilities were found in the visible content. Overall, the website presents a professional and trustworthy front for NNPC Marine Insurance, but improvements in transparency around security policies, incident response, and domain registration details are recommended to enhance trust and compliance.

K

Outlook

kishpandi.com

57

The website kishpandi.com hosts an Outlook Web Access (OWA) login page, providing users access to Microsoft Exchange email services. The domain is registered since 2011 with a reputable registrar, indicating a stable domain history. However, the website content is minimal, serving solely as a login portal without any business branding, contact information, or policy disclosures. The technical infrastructure relies on legacy Microsoft OWA technologies with basic HTML, CSS, and JavaScript, and no modern web frameworks or CMS detected. Security posture is limited with no visible security headers or HTTPS enforcement details, and no privacy or cookie policies are present. Overall, the site functions as a standard email access portal but lacks transparency and compliance features expected for public-facing business websites.

B

British Marine

britishmarine.com

75

British Marine is a well-established specialist marine insurance provider, founded in 1876 and currently owned by the QBE Insurance Group. The company offers tailored Protection & Indemnity (P&I) and Hull & Machinery insurance products primarily targeting owners of small to medium-sized and specialist vessels. Their market position is strong, supported by a reputation for sector insight, claims support, and financial strength backed by a leading global insurer. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including Bootstrap 5, Google Tag Manager, and OneTrust for cookie consent, hosted on Akamai infrastructure, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in DNSSEC adoption and security headers. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

S

Skuld

skuld.com

64

Skuld is a globally recognized marine insurer with a strong financial position and a presence in 10 countries. The company offers a comprehensive range of insurance products and services tailored to shipowners, charterers, the energy sector, renewables, and aquaculture. Their website reflects a professional and trustworthy brand with clear messaging and extensive content about their services, sustainability commitments, and industry expertise. Technically, the website employs modern technologies including Matomo analytics and Microsoft Application Insights, ensuring good performance and privacy-aware tracking. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved and a formal security policy is absent. Overall, the site is well-designed, accessible, and optimized for mobile users, supporting a positive user experience and strong business credibility.

The website raetsmarine.com appears to be a parked or placeholder domain with minimal original content. The main page content is replaced by an iframe loading an unrelated external domain that serves ads and tracking scripts. There is no visible business information, contact details, or privacy and cookie policies. The domain is registered since 2008 with a reputable registrar but lacks any active business presence or professional content on the site. Technically, the site uses basic JavaScript and Cloudfront CDN for asset delivery but lacks modern security headers, DNSSEC, and HTTPS verification. The security posture is weak due to the absence of standard protections and the presence of potentially suspicious external iframes. Overall, the site is low trust and likely not actively maintained for legitimate business purposes.

K

Kumu Inc.

kumu.io

64

Kumu Inc. operates a SaaS platform focused on enabling users to create relationship and systems maps to organize complex data visually. The company targets social sector leaders, organizations, and communities that require advanced mapping tools to understand networks and systems. Their market position is supported by a strong client base including foundations, universities, and NGOs, with a business model centered on free registration and paid plans. Technically, the website is built on Ruby on Rails, hosted on AWS, and uses modern JavaScript libraries, Typekit fonts, and third-party services like Bugsnag and Fathom Analytics. The site is performant, mobile-optimized, and SEO-friendly. Security posture is solid with HTTPS, CSRF protection, and domain transfer restrictions, though improvements like DNSSEC and security headers are recommended. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the domain registration data aligns well with the business, indicating high legitimacy and trustworthiness.

U

Unity

unity3d.com

67

Unity is a leading real-time development platform company specializing in 3D, 2D, VR, and AR engine technologies. The company provides a comprehensive suite of tools and services that empower creators to build immersive games, applications, and experiences across multiple industries including entertainment, automotive, architecture, and education. Unity holds a strong market position as a mature enterprise with a domain age dating back to 1995, reflecting its longstanding presence in the technology sector. The website demonstrates a professional and consistent brand image with clear navigation and rich content tailored to developers and enterprises.

U

Unity Technologies

tapjoy.com

71

Unity Technologies operates a leading real-time 3D development platform with integrated monetization and user acquisition services, including the Tapjoy Offerwall. The company targets game developers, advertisers, and publishers, providing a comprehensive suite of tools to build, monetize, and grow games and interactive experiences. Their market position is strong as an enterprise-level technology provider with a global footprint and a mature digital presence. The website demonstrates a modern technical infrastructure leveraging React and Next.js frameworks, hosted on Akamai CDN, ensuring fast performance and excellent mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR, reflecting Unity's enterprise credibility and commitment to privacy and security.

U

Unity

ironsrc.com

67

Unity is a leading technology company specializing in real-time 3D development platforms and mobile app marketing solutions. Their website showcases a comprehensive suite of products aimed at helping developers monetize, acquire users, and grow their games and apps. The company holds a strong market position with a large enterprise footprint and multiple subsidiaries such as ironSource, Tapjoy, and Supersonic. Technically, the website is built on modern frameworks like React and Next.js, hosted on Akamai, and optimized for performance and mobile use. Security posture is strong with HTTPS, domain locking, and reputable registrar usage, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is partially addressed with a cookie consent mechanism but lacks visible privacy and terms of service pages on the analyzed content. Overall, the site is professional, trustworthy, and business-focused, with no signs of malicious or adult content.

M

Michal Danko

michaldanko.com

45

Michal Danko operates as a freelance full stack web developer based in Košice, Slovakia, with over 10 years of experience. The website serves as a professional portfolio showcasing his skills in web development technologies including WordPress, WooCommerce, Laravel, and front-end frameworks. The business model is focused on freelance client engagements, targeting clients seeking custom web development and design services. The website is well-structured and presents a clear overview of services and past projects, positioning Michal as an experienced independent developer in the Slovak market. Technically, the website uses a modern tech stack with HTML5, CSS3, Bootstrap, JavaScript, PHP frameworks, and CMS platforms like WordPress and October CMS. Hosting is provided by Websupport, a Slovak hosting provider, with domain registration consistent with the business location. Google Analytics is used for visitor tracking, and Google Fonts are loaded for typography. The site is mobile optimized and performs moderately well, though accessibility features are basic. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, DNSSEC is not enabled, and no security headers were detected, which could improve security posture. There are no privacy or cookie policies present, indicating gaps in GDPR compliance. No vulnerability disclosure or incident response information is provided. Overall, the security posture is moderate but could be enhanced with additional best practices. The overall risk assessment is low to moderate. The site is professional and trustworthy but lacks formal privacy and cookie policies and some security hardening. Strategic recommendations include adding privacy and cookie policies, enabling DNSSEC, implementing security headers, and providing vulnerability disclosure information to improve compliance and security maturity.

T

THQ Nordic GmbH

thqnordic.com

62

THQ Nordic GmbH is a well-established global video game publisher and developer founded in 2011, operating under the parent company Embracer Group. The company targets gamers worldwide, offering a portfolio of video games and related digital content. Their website reflects a professional and consistent brand presence with clear navigation and relevant content focused on their gaming products and services. The business model centers on publishing and developing video games, supported by digital and physical distribution channels. Technically, the website is built on Drupal CMS with modern front-end technologies including Bootstrap and jQuery, and integrates Google Analytics for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, some technical improvements are recommended such as enabling DNSSEC and implementing security headers to enhance security posture. From a security perspective, the site uses HTTPS and has a cookie consent mechanism compliant with GDPR, but lacks a published security policy or incident response contact details. No critical vulnerabilities or suspicious content were detected. WHOIS data is transparent and consistent with the company’s profile, supporting the legitimacy of the domain and business. Overall, the website demonstrates a solid digital presence with room for security enhancements.

K

KlimaPark Kysak

klimapark.sk

50

KlimaPark Kysak is a newly established environmental education center located in eastern Slovakia, offering immersive audiovisual experiences and educational tours focused on environmental awareness. The website serves as a digital portal for visitors and educational groups to learn about the center, view galleries, and make reservations. The business positions itself as a regional leader in environmental education with a focus on interactive and innovative learning experiences. Technically, the website is built on WordPress and leverages modern JavaScript libraries including ArcGIS for mapping, providing a functional and visually appealing user experience. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks advanced security headers and formal privacy or cookie policies, which are important for GDPR compliance. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Remeselnícky inkubátor Gemer is a Slovak regional non-profit organization dedicated to supporting traditional folk craftsmen and folk-art producers in the Košice region. The website serves as a platform to promote cultural heritage through education, certification, and facilitation of sales and exhibitions. It is backed by regional government and cultural institutions, positioning itself as a key regional incubator for crafts. Technically, the website is built on Drupal 10, featuring a modern but basic design with good mobile optimization and clear navigation. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. No visible vulnerabilities or exposed sensitive data were found. Overall, the site is professional and trustworthy but could improve privacy compliance and security transparency.

The analyzed content corresponds to an internal Chrome browser error page, specifically the offline dinosaur game page, served under the 'chrome-error://chromewebdata/' URL. There is no external business or commercial website content available. The page is designed to provide a user experience when the browser is offline, featuring a simple game and error messaging. No privacy, cookie, or terms of service policies are present, nor is there any contact or security information. The technical infrastructure is based on HTML5, JavaScript, and Canvas API, embedded within the Chrome browser environment. Security posture is minimal due to the nature of the page being a local browser resource, with no external hosting or SSL considerations. Overall, this is not a public-facing website but an internal browser page with limited content and no business relevance.

E

European Association for Artificial Intelligence

eurai.org

52

The European Association for Artificial Intelligence (EurAI) is a well-established non-profit organization dedicated to promoting AI research and collaboration across Europe. The website serves as a hub for AI professionals, researchers, and academics, offering information on conferences, awards, membership, and sponsored activities. The association has a strong market position within the European AI community, supported by numerous member societies and reputable events. The business model focuses on community building, education sponsorship, and recognition of excellence in AI research. Technically, the website is built on modern web technologies including Next.js and React, providing a responsive and user-friendly experience. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Hosting and domain registration are managed through reputable providers, with domain security measures such as domain locking in place. Performance is moderate, with no significant technical debt or vulnerabilities detected. From a security perspective, the site uses HTTPS and has domain status protections enabled, but lacks advanced DNS security features like DNSSEC. There are no visible security policies, incident response contacts, or vulnerability disclosure mechanisms, which represent areas for improvement. Privacy compliance is partial; while a cookie consent banner is present, no dedicated privacy or terms of service pages were found. Contact information is limited to a web form, with no direct emails or phone numbers provided. Overall, the website is professional, trustworthy, and safe for general audiences. The main risks relate to compliance gaps in privacy and security policy disclosures. Strategic recommendations include publishing comprehensive privacy and terms policies, enabling DNSSEC, and establishing a vulnerability disclosure process to enhance trust and security posture.

C

Canto

canto.com

74

Canto is a leading enterprise provider of digital asset management (DAM) solutions, offering a comprehensive AI-powered platform designed to streamline the content lifecycle for organizations worldwide. Positioned as a market leader, Canto delivers a suite of services including centralized content hubs, AI-powered search, product information management, and collaborative tools that enhance brand management and marketing efficiency. The company emphasizes innovation with its latest platform generation, Canto XI, integrating AI to accelerate content workflows. Technically, the website is built on a modern Vue.js framework hosted on Netlify, leveraging multiple marketing and analytics tools such as Google Analytics, Hotjar, and Facebook Pixel. The site demonstrates excellent performance, mobile optimization, and SEO practices, reflecting a mature digital infrastructure. Security practices include HTTPS enforcement and published security policies, although some advanced security headers and a security.txt file are absent. From a security perspective, Canto maintains a strong posture with ISO certifications and a vulnerability disclosure policy, indicating a commitment to compliance and incident response readiness. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, Canto presents a trustworthy, professional, and secure online presence suitable for enterprise clients. The lack of WHOIS data is a notable anomaly but does not detract significantly from the site's credibility given the comprehensive business and security information available. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen trust and compliance.

J

JBL

jbl.pr

62

JBL Puerto Rico operates as the official regional e-commerce platform for JBL, a globally recognized audio brand under Harman International. The website offers a comprehensive catalog of premium audio products including speakers, headphones, gaming audio, and automotive/marine sound systems tailored for the Puerto Rican market. The site is professionally designed with consistent branding and provides a Spanish-language user experience with English options, targeting consumers seeking high-quality audio equipment. Technically, the site leverages Salesforce Commerce Cloud as its e-commerce platform, integrating advanced marketing and analytics tools such as Google Tag Manager, Bazaarvoice, Optimizely, and Riskified for fraud prevention. The website demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response information are not fully documented. The WHOIS data is malformed and lacks registrant details, which slightly impacts trust but is mitigated by the official brand presence and valid domain expiry. Overall, the site is a credible, secure, and user-friendly platform for JBL's Puerto Rican customers.

H

Homedics

ellia.com

66

Homedics operates a professionally designed e-commerce website specializing in health, wellness, and relaxation products. The company positions itself as a leading global manufacturer in this sector, targeting a broad consumer audience interested in massage, air quality, spa, and sleep-related products. The website is built on the Shopify platform, leveraging modern technologies and integrations such as Klaviyo, Dynamic Yield, and Microsoft Clarity to enhance marketing, analytics, and user experience. Security posture is strong with HTTPS enforced and multiple security headers present, although explicit privacy and terms policies are not detected in the provided content. The absence of WHOIS data limits domain registration trust analysis but the active and consistent branding, along with Shopify hosting, supports legitimacy. Overall, the site demonstrates good technical maturity and business credibility with room for improvement in privacy compliance and explicit contact information.

H

Homedics

obusforme.com

64

Homedics operates a professional e-commerce website focused on health, wellness, and relaxation products. The company presents itself as a leading global manufacturer and retailer in this sector, targeting consumers seeking home comfort and wellness solutions. The website is built on the Shopify platform, leveraging modern technologies and integrations to provide a smooth user experience. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with GDPR and related regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presence and branding indicate legitimacy. Overall, the site demonstrates a mature digital infrastructure suitable for a large retail business.

H

House of Marley

thehouseofmarley.com

68

House of Marley is an established e-commerce business specializing in eco-conscious audio products such as Bluetooth speakers, headphones, earbuds, and turntables. The brand is closely associated with the Marley family legacy, emphasizing sustainability and quality sound. The website is built on the Shopify platform, leveraging modern technologies and integrations to provide a responsive and user-friendly shopping experience. The company appears to be medium-sized, founded in 2010, and targets consumers who value both music and environmental responsibility. Technically, the site is well-implemented with fast performance, mobile optimization, and good SEO practices. Security posture is solid with HTTPS enforcement and domain protection statuses, though there is room for improvement in DNSSEC and security headers. Privacy compliance is basic, lacking explicit privacy and cookie policies in the analyzed content. Overall, the domain registration data supports the legitimacy and trustworthiness of the business.

T

Three.js Journey — Learn WebGL with Three.js

threejs-journey.com

50

Three.js Journey is a specialized online educational platform offering comprehensive video courses on WebGL and Three.js, targeting developers from beginners to advanced levels. The platform positions itself as a leading resource in the niche of 3D web development education, with a strong user base of over 47,000 students and positive industry testimonials. The business model centers on lifetime access course sales, providing extensive content totaling 93 hours of video tutorials. Technically, the website employs modern web technologies including Three.js, Google Tag Manager, and Google Analytics, hosted via Scaleway SAS with domain registration consistent with the business age and activity. Security posture is solid with HTTPS enabled and domain transfer protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is currently weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism, excellent content quality, and trustworthy business credibility, but should enhance privacy and security transparency to align with best practices.

The domain damagedadvice.com currently serves as a 404 Not Found error page with no active website content. It is used by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. The domain is hosted on Google Cloud Platform and registered via NameCheap, Inc. The technical infrastructure is basic, relying on standard web technologies such as JavaScript, HTML, and CSS, with no advanced frameworks or CMS detected. Security practices are mentioned in the page content, including encryption and certificate rotation, but no detailed security policies or vulnerability disclosures are published. The absence of privacy and cookie policies, contact information, and business details limits the website's credibility and compliance posture. Overall, the site is safe with no adult or questionable content, but the lack of substantive content and policies results in a low trust and quality score.

KOLOC oil, operated by PROTEGO s.r.o., is a regional fuel station operator in the Czech Republic offering a variety of quality fuels including unleaded gasoline and diesel variants, along with premium fuel options. The company also provides convenience store goods, refreshments, parking, and accepts multiple payment cards, positioning itself as a comprehensive service provider for motorists. The website reflects a medium-sized business with consistent branding and a clear focus on customer service. Technically, the website uses standard web technologies such as HTML5, CSS3, JavaScript, and likely Bootstrap and jQuery for UI components. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site employs a Content-Security-Policy header but weakens it by allowing unsafe inline scripts and eval, which could be improved. No privacy or cookie policies were found, indicating potential compliance gaps with GDPR. The WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and contact information appear legitimate and consistent with the business claims. Overall, the site scores well in business credibility and content quality but has room for improvement in privacy compliance and security hardening.

R

Realitní kancelář Pubec

pubec.cz

44

Realitní kancelář Pubec is a Czech real estate agency specializing in property sales and rentals primarily in Plzeň and its surrounding region. Established since 1990, the company offers a comprehensive portfolio including residential and commercial properties, legal services, market valuations, auctions, and mortgage assistance. The website reflects a professional and customer-focused business with strong trust indicators such as high ratings on Google and Firmy.cz, and numerous positive client testimonials. Technically, the website employs modern web technologies and integrates popular analytics and marketing tools like Google Analytics, Google Tag Manager, and Facebook Pixel. However, the absence of WHOIS registration data and explicit privacy and cookie policies indicates areas for improvement in transparency and compliance. Security posture is moderate with HTTPS usage and reCAPTCHA integration but lacks visible security headers and detailed security policies. Overall, the website presents a credible and professional real estate business with room to enhance privacy compliance and security best practices.

The website serves as a private access portal for member entities of the 'Acord Ciutadà', a local government initiative in Barcelona focused on social inclusion and reducing social inequalities. It allows members to update their organizational data, request official seals, and participate in strategic social programs. The site targets non-profit and governmental organizations involved in this agreement. The business model is membership-based, supporting collaboration and data management within a defined community. Technically, the website uses basic HTML, CSS, and JavaScript without advanced frameworks or CMS detected. The design is functional but basic, with limited mobile optimization and accessibility features. No analytics or advertising technologies are present, indicating a focus on privacy and minimal tracking. However, the absence of HTTPS enforcement and security headers is a notable technical gap. From a security perspective, the site uses POST for login but lacks visible protections such as CSRF tokens or security headers. No privacy or cookie policies are present, which is a compliance concern under GDPR. The WHOIS data is unavailable due to .es domain restrictions, but the domain aligns with the local government context, suggesting legitimacy. Overall, the security posture is moderate but requires improvements to meet modern standards. The overall risk is moderate with recommendations to implement HTTPS, add security headers, introduce privacy and cookie policies, and enhance form security. These steps will improve trust, compliance, and protection for users accessing sensitive organizational data.

N

NPAW

youbora.com

64

NPAW Suite is a corporate software platform providing analytics and monitoring services, targeting enterprise and corporate users. The website serves as a secure login portal for authorized users, reflecting a professional and consistent brand identity. The technical infrastructure leverages modern web technologies including React and Material-UI, with integrations of marketing and analytics tools such as HubSpot and Google Tag Manager. The site is mobile optimized and provides a good user experience with clear navigation and responsive design. Security posture is solid with HTTPS enforced and secure form inputs; however, there is room for improvement in implementing security headers and cookie consent mechanisms. WHOIS data for the subdomain is unavailable, which is typical, but the main domain npaw.com is a recognized entity, supporting legitimacy. Overall, the website demonstrates a mature digital presence suitable for its business model.

H

Hitnspin Casino Online Österreich Spielen ᐉ Bonus 800€

hitnspin.com

66

Hitnspin.com is an online casino platform targeting primarily the Austrian market, offering real money gambling services including slots, blackjack, and roulette. The website is presented in German and supports multiple languages via hreflang tags, indicating a multi-regional approach. The business model focuses on online gambling with bonuses and free spins to attract players. The domain was registered in late 2020, consistent with a relatively new entrant in the online casino industry. Technically, the site uses modern web technologies including React-like frameworks, Google Tag Manager, and Hotjar for analytics and user behavior tracking. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. However, DNSSEC is not enabled, and no advanced security headers were detected, indicating room for improvement in security posture. Privacy and cookie policies are not found in the analyzed content, which is a compliance gap especially given the GDPR applicability in Austria. No direct contact or incident response information is visible, which may impact user trust and regulatory compliance. Overall, the site is functional and professionally designed but should enhance transparency and security measures to improve trust and compliance.

D

Domains By Proxy, LLC

20bet.win

51

20bet.win is an online gambling and betting platform that is currently inaccessible due to geographic restrictions, as indicated by the 'Country blocked' message on the landing page. The business targets adult users interested in online betting services. The website uses modern technologies such as React and is hosted behind Cloudflare DNS and Amazon Cloudfront CDN, but the actual content is blocked, limiting visibility into the full service offering and market position. The domain is privacy-protected via Domains By Proxy, which is common in the gambling industry to protect registrant identity. The domain is relatively new, created in late 2021, consistent with a startup or recently launched service.