Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

151154
Websites
130
Industries
113
Countries
52
Avg Score
Page 663 of 1033|Showing 33101-33150 of 51624
tsp.gov favicon

The Thrift Savings Plan (TSP)

tsp.gov

75
GovernmentUnited StateslargeMEDIUM

The Thrift Savings Plan (TSP) website serves as the official online portal for the U.S. federal government's retirement savings and investment plan for federal employees and uniformed service members. Established by Congress in 1986, the TSP offers retirement savings options similar to private sector 401(k) plans. The website provides comprehensive information on plan management, fund options, performance, and withdrawal processes, targeting federal employees and service members. It maintains a strong market position as the authoritative source for TSP-related information and services. Technically, the website is built using modern web technologies including Jekyll as a static site generator, USWDS for design consistency, and integrates Google Analytics and Digital Analytics Program scripts for user behavior insights. The site is well-optimized for mobile devices, accessible, and demonstrates excellent SEO practices. Security is robust with HTTPS enforced, Content Security Policy headers, and anonymized IP tracking in analytics, although additional security headers could enhance protection. From a security perspective, the site shows maturity with no evident vulnerabilities or exposed sensitive data. It includes privacy and vulnerability disclosure policies, reflecting a commitment to compliance and transparency. The absence of WHOIS data is typical for .gov domains and does not detract from the site's legitimacy. Overall, the site is trustworthy, professional, and secure, serving a critical government function. The overall risk is low, with recommendations focusing on enhancing security headers, implementing DNSSEC, and publishing a security.txt file to further improve security posture and transparency.

80
53
35
80
77
85
100
governmentretirementinvestmentfederalemployeesthriftsavingsplan+1 more
Google AnalyticsGoogle Tag ManagerJekylljQuery+2
2025-07-23T13:17:34.883Z
sgr.nl favicon

Stichting Garantiefonds Reisgelden

sgr.nl

62
HospitalityNetherlandsmediumMEDIUM

Stichting Garantiefonds Reisgelden (SGR) operates as a non-profit guarantee fund in the Dutch travel sector, providing financial guarantees for prepaid travel bookings. The organization ensures that travelers are protected in case their travel company faces financial difficulties or bankruptcy, offering either continuation of travel or reimbursement. The website targets both travelers and travel businesses, providing information, claims support, and a searchable database of affiliated travel companies. The market position is that of a trusted and established entity within the Netherlands, supported by official registration and partnerships with related guarantee funds. Technically, the website is built on WordPress with modern SEO and user experience enhancements such as Yoast SEO Premium, Google reCAPTCHA v3, and Google Tag Manager. The site demonstrates good mobile optimization and accessibility, though some advanced security headers are not explicitly detected. Performance is moderate, with a clean and professional design that supports clear navigation and content relevance. From a security perspective, the site uses HTTPS with strong SSL configuration and integrates anti-bot measures via reCAPTCHA. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not present, which could be improved to enhance transparency and trust. No vulnerabilities or suspicious activities were detected in the content or technical setup. Overall, the website presents a high level of trustworthiness and professionalism, with comprehensive privacy and cookie policies aligned with GDPR requirements. The domain registration data is consistent with the organization's identity and location, reinforcing legitimacy. Strategic recommendations include implementing additional security headers, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen security posture and compliance.

25
43
2
85
85
70
100
travelguaranteeconsumerprotectionnon-profitsgr+1 more
WordPressYoast SEO PremiumjQuerySwiper.js+2

Partner Domains:

calamiteitenfonds.nl
partner
www.sgrz.nl
partner
2025-07-23T13:17:19.649Z
lendtech.pl favicon

Fundacja Lendtech

lendtech.pl

41
FinancePolandsmallHIGH

Fundacja Lendtech is a Polish non-profit foundation dedicated to promoting knowledge and best practices in the fintech, BNPL, digital lending, and e-commerce sectors. The foundation organizes key industry events such as the Lendtech Congress and E-commerce Fintech Connect conference, providing a platform for expert dialogue and ecosystem development. Their services include educational workshops, webinars, and publishing detailed reports to support innovation in consumer finance. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery. It employs Google Analytics and Tag Manager for tracking and uses plugins for cookie consent and email subscriptions, reflecting a mature digital infrastructure. The site is mobile-optimized and well-structured, offering good user experience and SEO. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit advanced security headers and visible incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy policies are comprehensive and GDPR compliant, with clear consent on data collection forms. Overall, the website presents a professional and trustworthy digital presence for a fintech-focused foundation. The lack of public WHOIS data is consistent with privacy protection norms in the .pl domain space and does not detract from the site's legitimacy. Strategic improvements in security headers and incident response transparency would further enhance trust and compliance.

15
25
17
70
42
75
-
fintechbnpldigitallendinge-commercepodcast+3 more
WordPress 6.8.2jQuery 3.7.1Bootstrap 4/5 (wp-bootstrap-starter theme)Google Analytics+5

Partner Domains:

algolytics.com
partner
totalmoney.pl
partner

+3 more partners

2025-07-23T13:16:34.326Z
soonly.pl favicon

Soonly

soonly.pl

67
FinancePolandmediumMEDIUM

Soonly.pl is a Polish fintech company positioned as a leader in the consumer finance sector in Poland. The website presents Soonly as a provider of modern financial products and solutions tailored to contemporary customer needs. The business targets modern consumers in Poland seeking consumer finance services. The website content is professional and consistent with fintech industry standards, though explicit privacy and terms of service pages are not found, which is a gap in compliance and transparency. Technically, the website is built on the Webflow platform, utilizing modern web fonts, analytics tools such as Microsoft Clarity and Google Analytics, and a cookie consent management system via Cookiebot. The site is mobile optimized and demonstrates good SEO practices. However, security headers and explicit SSL configuration details are not visible in the provided data, suggesting room for improvement in security hardening. From a security posture perspective, the site uses HTTPS and cookie consent mechanisms, but lacks visible security policies, incident response contacts, or vulnerability disclosure information. The absence of WHOIS data due to privacy protection is common in fintech but limits domain trust verification. Overall, the site appears legitimate but would benefit from enhanced transparency and security documentation. The overall risk assessment is moderate with recommendations to publish privacy and terms policies, add contact information, implement security headers, and maintain regular security audits to strengthen trust and compliance.

30
88
17
85
52
90
100
fintechconsumerfinancepolandcookieconsentanalytics+1 more
WebflowGoogle Fonts (Poppins, Outfit)Microsoft ClarityCookiebot+3
2025-07-23T13:16:18.970Z
pozyczkaplus.pl favicon

nazwa.pl sp. z o.o.

pozyczkaplus.pl

75
FinancePolandsmallMEDIUM

PozyczkaPlus.pl is a Polish-language online platform specializing in providing information and facilitating access to loan products tailored to individual financial needs. The website targets Polish consumers seeking simple and effective loan solutions. The business operates primarily as an online referral and comparison service within the finance sector, leveraging digital marketing and analytics tools to optimize user engagement and conversion. The domain has been active since 2011, indicating a stable presence in the market. Technically, the website is built on WordPress CMS, enhanced with Yoast SEO Premium for search engine optimization. It employs common web technologies including jQuery and integrates multiple third-party services such as Google Tag Manager, Google Analytics, Cookiebot for cookie consent management, and various advertising and retargeting networks. The site demonstrates good mobile optimization and moderate performance, though accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and employs Cookiebot for GDPR-compliant cookie consent. However, no explicit security headers were detected, and there is no visible privacy policy or terms of service in the analyzed content, which are important for compliance and user trust. No incident response or vulnerability disclosure information is provided. Overall, the website presents a moderate risk profile with strengths in digital marketing and compliance with cookie consent regulations but weaknesses in transparency of privacy and security policies. Strategic improvements in publishing comprehensive privacy and security documentation, enhancing security headers, and providing clear contact information would strengthen trust and compliance.

65
100
17
85
65
90
100
financeloanspolandcookieconsentanalytics+1 more
jQueryGoogle Tag ManagerGoogle AnalyticsCookiebot+1
2025-07-23T13:15:48.415Z
niewielkapozyczka.pl favicon

Aventus Group Sp. z o.o.

niewielkapozyczka.pl

64
FinancePolandsmallMEDIUM

Niewielkapozyczka.pl is an online financial service platform operated by Aventus Group Sp. z o.o., specializing in short-term consumer loans up to 8000 PLN with a focus on fast, simple, and affordable lending. The website provides detailed loan conditions, legal disclosures, and cooperative relationships with loan providers Tusumi Sp. z o.o. and Arena Finance Sp. z o.o., positioning itself as a transparent intermediary in the Polish online lending market. The platform targets Polish consumers seeking quick financial solutions with promotional offers such as zero-interest first loans. Technically, the website employs modern front-end technologies including Bootstrap and jQuery UI, integrates multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Google Tag Manager, and implements cookie consent via Cookiebot. The site is mobile-optimized with good navigation and SEO practices, though no CMS or hosting provider is explicitly identified. Performance is moderate with asynchronous loading of scripts enhancing user experience. From a security perspective, the site enforces HTTPS and uses standard tracking scripts responsibly with user consent. However, it lacks explicit security headers and does not publish a dedicated security policy or incident response contacts, which are areas for improvement. No critical vulnerabilities or suspicious patterns were detected. The WHOIS data confirms domain legitimacy and consistency with the business entity. Overall, the website presents a professional and trustworthy online lending service with good compliance to privacy and financial regulations. Strategic enhancements in security policies and headers would further strengthen its security posture and user trust.

50
25
17
85
75
75
100
financeloanonlinelendingconsumercreditpoland
BootstrapjQuery UIGoogle Tag ManagerGoogle Analytics+2

Partner Domains:

pozyczkaplus.pl
partner
aventusgroup.pl
parent
2025-07-23T13:15:38.378Z
lande.finance favicon

LANDE Platform Ltd.

lande.finance

65
FinanceLatviamediumMEDIUM

LANDE Platform Ltd. operates a professional crowdfunding platform specializing in secured agricultural loans, targeting investors interested in diversifying portfolios with agricultural projects. Licensed by the Latvian Financial and Capital Market Supervisory Authority and partnered with Lemon Way for payment processing, LANDE positions itself as a trustworthy European fintech player. The website is well-designed, mobile-optimized, and provides multilingual support, enhancing user experience and accessibility. The platform offers features such as primary and secondary markets, auto-invest strategies, and detailed investment reporting, catering to a sophisticated investor base. Technically, the site uses modern frameworks like Bootstrap and integrates analytics and tracking tools responsibly with cookie consent mechanisms. Security posture is strong with HTTPS, domain locking, and CSRF protections, though DNSSEC is not enabled and explicit security policies are not published. Overall, LANDE demonstrates a mature digital presence with high trustworthiness and compliance, though improvements in transparency around security policies and incident response could further enhance confidence.

50
68
2
75
65
80
100
crowdfundingagricultureinvestmentfinancep2plending+2 more
BootstrapGlide.js (carousel)Google Fonts (Montserrat, Rubik, Roboto)Leaflet.js (mapping)+3

Partner Domains:

lemonway.com
partner
northern.finance
partner
2025-07-23T13:15:13.209Z
kuki.pl favicon

Kuki.pl

kuki.pl

62
FinancePolandmediumMEDIUM

Kuki.pl is an online financial services provider specializing in offering short-term loans up to 7000 PLN through a fully digital platform targeting Polish consumers. The website presents a professional and modern interface built with Vue.js, incorporating essential features such as a loan calculator, user registration, and multiple repayment options. The company positions itself as a convenient and accessible lender in the Polish consumer finance market. Technically, the website employs modern frontend technologies and integrates standard marketing and analytics tools like Google Tag Manager and Zopim Live Chat. The site is well-optimized for mobile devices and demonstrates good accessibility and SEO practices. Security measures include HTTPS enforcement and standard security headers, alongside a GDPR-compliant cookie consent mechanism. While the website lacks publicly available WHOIS data, likely due to privacy protection, its content and security posture suggest legitimacy. However, the absence of a dedicated security policy page and incident response contacts indicates areas for improvement in transparency and security governance. Overall, Kuki.pl presents a solid digital presence with moderate risk. Strategic enhancements in security documentation and incident response readiness would strengthen trust and compliance.

15
40
17
85
77
85
100
financeloanonlinelendingmicroloanpoland+1 more
Vue.jsGoogle Tag ManagerTermsFeed Cookie ConsentZopim Live Chat
2025-07-23T13:15:08.198Z
kasatak.pl favicon

Ferratum Bank p.l.c.

kasatak.pl

56
FinancePolandmediumMEDIUM

Ferratum Bank p.l.c. operates an online lending platform targeting consumers in Poland, offering microloans and installment loans. The business is positioned as a digital financial services provider with a focus on ease of access and minimal formalities. The website currently communicates a suspension of new loan issuance due to economic conditions related to the epidemic, reflecting responsiveness to external factors. The company is part of Multitude Bank p.l.c., based in Malta, which lends credibility and regulatory oversight. Technically, the website is built on Drupal 7, utilizing common web technologies such as jQuery, Bootstrap, and Google Analytics for tracking and optimization. The site is mobile-optimized and includes standard privacy and cookie policies compliant with GDPR. Security posture is adequate with HTTPS enforced and secure login forms, though some modern security headers are not explicitly detected. The absence of WHOIS data publicly reduces transparency but is consistent with privacy protection practices common in financial services. Overall, the site demonstrates a moderate to good level of digital maturity and security hygiene, with clear business information and trust signals such as social media presence and customer reviews. The suspension of credit services is clearly communicated, maintaining transparency with users. Recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and ensuring ongoing CMS security updates.

40
25
17
70
47
75
100
financeloansonlinebankingmicroloanspoland+3 more
Drupal 7jQuery 2.2Google Tag ManagerGoogle Analytics+1

Partner Domains:

help.ferratum.pl
service
campaigns.ferratum.pl
service
2025-07-23T13:15:03.185Z
I

INCREDIT Sp. z o.o.

incredit.pl

54
FinancePolandsmallMEDIUM

INCREDIT Sp. z o.o. operates an online consumer finance platform in Poland, specializing in installment loans ranging from 1000 to 9500 PLN with repayment terms up to 24 months. The company targets Polish consumers seeking quick and minimal-formality loans via internet applications. Currently, the website indicates that the company no longer offers new installment loans but supports existing customers through a client panel and contact email. The business model focuses on digital lending with an emphasis on ease of access and online management. The market position is that of a niche lender with a small company size and a clear focus on the Polish finance sector. Technically, the website employs modern tracking and analytics tools including Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, and Adform, indicating a mature digital marketing infrastructure. The site is HTTPS secured and shows good mobile optimization and SEO practices. However, no CMS or hosting provider details are explicitly detected. Performance is moderate with basic accessibility features. From a security perspective, the site uses HTTPS but lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerability disclosure or security.txt files are found. The absence of WHOIS data for the domain reduces trustworthiness, although the website content and company registration details appear legitimate. The site uses extensive user tracking, which may raise privacy concerns without a clear privacy policy. Overall, the website is professionally designed and functional but would benefit from enhanced transparency regarding privacy, security policies, and domain registration information. The risk assessment is moderate with recommendations to improve security headers, publish privacy and security policies, and clarify domain registration details to enhance trust and compliance.

40
10
2
70
65
75
100
financeloanconsumerloansonlinelendinginstallmentloans+1 more
Google Tag ManagerGoogle AnalyticsFacebook PixelHotjar+2

Partner Domains:

creditline.netcredit.pl
partner
2025-07-23T13:14:58.173Z
comtegra.pl favicon

Comtegra

comtegra.pl

69
TechnologyPolandmediumMEDIUM

Comtegra is a well-established Polish technology company specializing in IT platform integration and maintenance, with over 25 years of experience. The company offers a broad range of infrastructure and sector-specific IT solutions including data management, data protection, cloud computing, cybersecurity, networking, and system maintenance. Their target audience includes businesses, cities, service providers, and supercomputing centers, positioning them as a trusted B2B IT services provider in the Polish market. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies and Google Tag Manager for analytics and marketing. The site is well-structured with good SEO practices, mobile optimization, and accessibility at a basic level. Performance is moderate, with room for improvement in hosting and speed optimizations. From a security perspective, the website enforces HTTPS and includes a Content Security Policy header, indicating a good baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. However, additional security headers and a public security policy could enhance their security maturity. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, Comtegra presents a professional and trustworthy online presence consistent with their business claims. The lack of publicly available WHOIS data is typical for .pl domains and does not detract significantly from their legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, and continuous monitoring of third-party scripts to maintain security and compliance.

60
25
55
70
77
85
100
itservicesdatamanagementcloudcomputingcybersecuritytechnology+2 more
WordPressDivi ThemeGoogle Tag ManagerGoogle Analytics+1
2025-07-23T13:14:02.910Z
mysociety.org favicon

mySociety

mysociety.org

63
Non-profitUnited KingdommediumMEDIUM

mySociety is a UK-based not-for-profit social enterprise focused on empowering citizens through digital technologies in the areas of democracy, transparency, and community engagement. With over 20 years of experience and a presence in more than 40 countries, it operates a suite of popular civic technology services and provides commercial services through its subsidiary SocietyWorks to fund its charitable mission. The website reflects a mature organization with a clear mission and strong market position in the civic tech sector. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Analytics with IP anonymization, and social media integrations. The site is well-structured, mobile-optimized, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and no visible vulnerabilities, but could be improved by adding security headers and explicit cookie consent mechanisms. Security-wise, the organization demonstrates good practices such as anonymizing analytics data and avoiding exposed sensitive information. However, the lack of visible security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in transparency and readiness. The absence of WHOIS data limits domain trust verification but is mitigated by strong business signals on the site. Overall, mySociety presents a trustworthy, professional, and well-maintained online presence with minor gaps in privacy compliance and security transparency. Strategic improvements in cookie consent, security headers, and incident response visibility would enhance its security posture and user trust.

15
53
2
85
85
80
100
civictechnologynon-profittransparencydemocracycommunity+3 more
WordPressjQueryGoogle AnalyticsFacebook SDK+2

Partner Domains:

societyworks.org
subsidiary
2025-07-23T12:10:32.367Z