Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

151130
Websites
130
Industries
113
Countries
52
Avg Score
Page 680 of 1033|Showing 33951-34000 of 51621
virginhotelslv.com favicon

Virgin Hotels Las Vegas

virginhotelslv.com

63
HospitalityUnited StateslargeMEDIUM

Virgin Hotels Las Vegas is a lifestyle-focused hospitality brand operating an upscale hotel, casino, and entertainment venue in Las Vegas, affiliated with Hilton's Curio Collection. The website provides comprehensive information about accommodations, dining, entertainment, and events, targeting leisure and business travelers seeking a modern Vegas experience. The business model centers on hospitality services combined with casino gaming and live entertainment, positioning itself as a premium player in the Las Vegas market. Technically, the website is built on WordPress with a modern tech stack including Google Tag Manager, Adobe DTM, and various tracking pixels, indicating a mature digital marketing infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with fast loading times and professional design. Security posture is good with HTTPS enforced and secure forms, though DNSSEC is not enabled and Content-Security-Policy headers are missing, representing areas for improvement. Privacy compliance is basic but present with privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained, with strong business credibility and marketing sophistication.

20
80
17
60
67
75
100
hospitalityhotelcasinoentertainmentlasvegas+2 more
Google Tag ManagerGoogle AnalyticsFacebook PixelAdobe DTM+5

Partner Domains:

be.synxis.com
partner
vhlv.joingo.com
partner

+2 more partners

2025-07-21T19:53:12.132Z
keepcart.co favicon

KeepCart

keepcart.co

55
E-commerceN/asmallMEDIUM

KeepCart is a SaaS company specializing in protecting e-commerce stores, particularly Shopify merchants, from coupon code leaks and abuse caused by coupon extensions and duplicate customer accounts. Their product suite includes coupon extension blocking, leak alerts, and duplicate customer blocking, aimed at increasing merchant margins by preventing revenue loss. The company positions itself as a cost-effective and more comprehensive alternative to competitors like CleanCart, with a focus on ease of installation and customer support. Technically, the website is built on Webflow CMS and integrates with Shopify, leveraging modern web technologies such as Google Tag Manager and Hotjar for analytics and user behavior tracking. The site is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience with clear navigation and professional design. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and a public security policy or incident response contact, which are areas for improvement. The WHOIS data is privacy protected, which is common for SaaS businesses but limits transparency. No WAF or blocking mechanisms were detected, allowing full content accessibility. Overall, KeepCart presents a professional and trustworthy online presence with strong business credibility and technical maturity. Strategic improvements in privacy compliance mechanisms and security best practices would further enhance their security posture and trustworthiness.

30
53
2
50
62
60
100
e-commercecouponprotectionshopifysaassecurity+2 more
Google Tag ManagerHotjarjQueryWebflow+1
2025-07-21T19:52:31.817Z
autocaris.cz favicon

TEAS spol. s r.o.

autocaris.cz

48
TransportationCzech RepublicmediumHIGH

Autocaris.cz is a Czech Republic-based online automotive classified advertising platform operated by TEAS spol. s r.o., established in 2006. The website aggregates a large inventory of used vehicles from numerous autobazars and private sellers, offering detailed search filters and vehicle origin verification. It holds a strong market position locally with over 28,000 vehicles listed and partnerships with hundreds of autobazars. The platform targets individuals and businesses seeking used vehicles in the Czech and Slovak markets. Technically, the site uses legacy JavaScript libraries such as jQuery 1.7.1, Google Adsense for advertising, Google Tag Manager for analytics, and CookieFirst for cookie consent management. The site is hosted under the REG-INTERNET-CZ registrar with DNS servers ns.forpsi.net and ns.forpsi.it. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks modern security headers and uses outdated JS libraries, which pose potential risks. Privacy compliance is basic with a cookie banner present but no visible privacy policy or terms of service pages. Contact information and company registration details are clearly provided, enhancing business credibility. Overall, the site is functional and professional but would benefit from technical and compliance improvements.

20
25
17
65
72
90
20
automotiveclassifiedsusedcarsczechrepublicvehiclemarketplace
jQuery 1.7.1nouisliderGoogle AdsenseGoogle Tag Manager+1

Partner Domains:

tipcars.com
partner
cebia.cz
partner

+2 more partners

2025-07-17T17:51:52.041Z
bigtimevegas.com favicon

Big Time Gaming Pty Ltd

bigtimevegas.com

58
OtherN/amediumMEDIUM

The website play.bigtimevegas.com/login serves as a login portal for Big Time Gaming's Big Time Vegas online gaming platform. It provides user authentication primarily through OAuth integrations with Facebook and Google, targeting online casino players and gamers. The site branding and footer link to Big Time Gaming Pty Ltd, indicating a legitimate business entity in the online gaming sector. However, the lack of WHOIS data for the subdomain is typical but limits direct verification of domain registration details. The privacy policy is present but basic, and no cookie consent mechanism is implemented, which may impact GDPR compliance. Technically, the site uses a modern frontend stack including Bootstrap 4.6, jQuery, and Google Analytics/Tag Manager for tracking. The site is mobile optimized with basic accessibility and SEO features. Security posture is moderate with OAuth login methods but lacks visible security headers and explicit security policies or incident response contacts. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the security posture is adequate but could be improved by implementing security headers, cookie consent, and clearer contact/security policies. The business credibility is supported by consistent branding and official company references. The site content relates to online gambling, which is age-restricted and thus rated as questionable content safety, suitable for mature audiences. Strategic recommendations include enhancing security headers, adding cookie consent for privacy compliance, publishing security and incident response policies, and conducting security audits of OAuth implementations to strengthen trust and compliance.

15
53
2
60
90
75
100
gamingcasinologinoauthfacebook+3 more
Bootstrap 4.6.0jQuery 3.6.0FitText.jsGoogle Analytics+1

Partner Domains:

bigtimegaming.com
partner
2025-07-17T17:51:06.953Z
accessnewswire.com favicon

ACCESS Newswire

accessnewswire.com

65
MediaN/amediumMEDIUM

ACCESS Newswire operates as a leading global press release distribution and PR platform, offering a comprehensive suite of services including media database access, media pitching, monitoring, and investor relations tools. The company targets businesses, PR professionals, investors, and agencies, providing subscription and non-subscription models to meet diverse client needs. The website demonstrates a strong market position with professional branding and clear service offerings. Technically, the website leverages a modern technology stack including Google Analytics, Microsoft Clarity, Marketo, Facebook Pixel, and service workers for offline support. It is built on the MultiScreenSite CMS platform, optimized for mobile and accessibility, and integrates multiple marketing and analytics tools to support business growth and user engagement. From a security perspective, the site enforces HTTPS, uses reCAPTCHA v3, and includes accessibility compliance features. While explicit security headers are not fully confirmed, no exposed sensitive data or vulnerabilities were detected in the HTML content. The absence of a public vulnerability disclosure policy and WHOIS data transparency are areas for improvement. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. However, the missing WHOIS data and lack of explicit security policies slightly reduce trustworthiness. Strategic recommendations include enhancing WHOIS transparency, publishing a security policy, and ensuring all security headers are implemented and maintained.

50
53
17
70
72
80
100
pressreleaseprplatforminvestorrelationsmediadistributionprofessionalservices+3 more
JavaScriptGoogle Tag ManagerGoogle Analytics (gtag.js)Microsoft Clarity+9
2025-07-17T17:50:11.761Z
I

ITES RACING s.r.o.

ites.cz

59
RetailCzech RepublicsmallMEDIUM

ITES RACING s.r.o. operates the website ites.cz, a Czech e-commerce platform specializing in slot car racing products and accessories. The company offers a range of products including slot cars in various scales, sets, track parts, accessories, and spare parts. The website targets hobbyists and enthusiasts of slot car racing, positioning itself as a niche market leader in the Czech Republic. The business model is retail-focused, leveraging an online storefront powered by the Shoptet e-commerce platform. Technically, the website employs a modern tech stack including jQuery, Google Analytics (GA4), Google Tag Manager, Facebook SDK, and Smartsupp Chat for customer interaction. The site is well-structured with good SEO and mobile optimization, though accessibility features are basic. Performance is moderate, with CDN usage for static assets. The site uses HTTPS with good SSL configuration and standard security headers, though some headers like Content-Security-Policy are not confirmed. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, CSRF protection on login forms, and cookie consent mechanisms aligned with GDPR. However, there is no published security policy or incident response contact information, and no vulnerability disclosure or security.txt file is found. The WHOIS data for the domain is unavailable, which reduces trustworthiness and raises questions about domain registration legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences. The lack of WHOIS data and absence of explicit security policies are notable gaps. Strategic recommendations include verifying domain registration, publishing security and incident response policies, implementing a security.txt file, and enhancing accessibility and security headers. These steps will improve trust, compliance, and security posture.

40
40
17
70
52
75
100
e-commerceslotcarshobbyczechrepublicretail+1 more
jQuery 1.11.3Google Tag ManagerGoogle Analytics (GA4)Facebook SDK+2
2025-07-17T17:49:01.572Z
worldaquatics-singapore2025.com favicon

World Aquatics Championships - Singapore 2025

worldaquatics-singapore2025.com

67
OtherSingaporemediumMEDIUM

The website www.worldaquatics-singapore2025.com serves as the official digital presence for the World Aquatics Championships and World Aquatics Masters Championships scheduled in Singapore in 2025. It provides event information, ticketing, volunteer opportunities, and community engagement details. The site targets aquatic sports enthusiasts, athletes, volunteers, and the general public interested in aquatic sports events. The business model revolves around event hosting and promotion, leveraging Singapore's reputation as a host for major international sports events. Technically, the website employs modern web technologies including React and the Ant Design UI framework, integrated with multiple analytics and tracking services such as Google Analytics, TikTok Pixel, and Facebook Pixel. The site is moderately optimized for performance and mobile responsiveness, with a good user experience and clear navigation. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security best practices. No WHOIS registration data was found, which raises concerns about domain legitimacy, although the professional presentation and official branding suggest authenticity. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, clearer contact information, and improved security headers to strengthen trust and regulatory adherence.

75
35
17
70
100
70
100
sportsaquaticseventsingaporechampionships+3 more
Google Tag ManagerGoogle AnalyticsTikTok PixelFacebook Pixel
2025-07-17T17:48:46.544Z
laneshealth.com favicon

Lanes Health

laneshealth.com

64
HealthcareUnited KingdommediumMEDIUM

Lanes Health is a well-established family-owned healthcare company with over 90 years of experience in manufacturing and distributing OTC medicines, food supplements, natural products, and confectionery. The company maintains a strong market presence in the UK and internationally through a portfolio of trusted brands such as Olbas, Jakemans, Kalms, and others. Their website reflects a professional and consistent brand image, targeting consumers, pharmacists, and retailers seeking quality health and wellbeing products. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Analytics and Tag Manager with privacy-conscious configurations such as IP anonymization. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technical improvements could be made, such as implementing security headers and enhancing accessibility features. From a security perspective, the website uses HTTPS with a strong SSL configuration and includes cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected in the content. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, despite the professional appearance and business information presented. Overall, the website is functional, secure, and compliant with privacy standards, but the domain registration inconsistency warrants further investigation. Strategic recommendations include improving security headers, publishing explicit security and incident response policies, and verifying domain registration details to enhance trust and credibility.

90
73
17
85
82
70
20
healthcarefamilybusinessotcmedicinesnaturalproductssupplements+2 more
HTML5CSS3JavaScriptjQuery+4
2025-07-17T17:48:16.463Z
exostar.com favicon

Exostar

exostar.com

75
TechnologyN/aenterpriseMEDIUM

Exostar operates a secure and compliant collaboration platform targeting regulated industries such as aerospace, defense, healthcare, life sciences, and consumer services. The company provides a broad suite of solutions including cybersecurity, compliance management, supply chain collaboration, and clinical trials management. Their platform supports enterprise customers with secure access management and compliance readiness tools, positioning Exostar as a trusted partner in highly regulated sectors. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating digital maturity and good performance. Security posture is strong with HTTPS enforcement and secure login portals, though explicit security headers and incident response information are not publicly detailed. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the website reflects a professional and trustworthy enterprise business, though the absence of WHOIS data reduces transparency and slightly impacts trust. Strategic recommendations include publishing security headers, incident response contacts, and vulnerability disclosure policies to enhance security posture and trust.

75
80
47
65
67
85
100
securecollaborationcompliancecmmccybersecuritysupplychain+3 more
WordPressYoast SEOjQuerySwiper.js+4

Partner Domains:

myexostar.com
partner
ui.portal.exostar.com
service

+1 more partners

2025-07-17T17:47:51.407Z
bezvasplatky.sk favicon

Home Credit Slovakia, a. s.

bezvasplatky.sk

47
FinanceSlovakiamediumHIGH

The website www.bezvasplatky.sk is an e-commerce platform operated by Home Credit Slovakia, a. s., specializing in the sale of consumer electronics and household products with installment payment options at zero interest. The platform targets Slovak consumers seeking flexible payment solutions for products such as mobile phones, notebooks, tablets, and home appliances. The business model integrates retail sales with financial services, positioning itself as a convenient and accessible online shopping destination in Slovakia. The website demonstrates consistent branding aligned with its parent company, Home Credit Group, and offers a broad product catalog structured for ease of navigation. From a technical perspective, the website leverages the Upgates e-commerce platform, integrates Google Tag Manager for analytics, and uses Google Fonts for typography. The site is mobile responsive and provides a moderate performance experience. However, some accessibility features could be enhanced to improve compliance and user experience. SEO practices are adequately implemented with proper meta tags and structured navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, indicating GDPR awareness. Nonetheless, the absence of explicit privacy policies, terms of service, and security headers such as Content-Security-Policy and X-Frame-Options suggests room for improvement in security and compliance documentation. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website presents a trustworthy and professional online retail presence with moderate technical maturity and security practices. Strategic enhancements in privacy documentation, security headers, and contact transparency would further strengthen its compliance and user trust.

65
10
17
40
72
75
20
e-commerceelectronicsinstallmentpaymentsslovakiahomecredit
Google Tag ManagerGoogle FontsjQuery (implied by bootstrap classes)Bootstrap CSS framework (implied)+1

Partner Domains:

homecredit.sk
parent
2025-07-17T17:47:46.396Z
russellstover.com favicon

Russell Stover

russellstover.com

71
RetailUnited StateslargeMEDIUM

Russell Stover is a well-established chocolate and candy brand operating a professional e-commerce website offering a wide range of products including traditional chocolates, gift baskets, and sugar-free options. The website targets consumers seeking quality confectionery gifts and personalized chocolate boxes. The business operates under the retail and e-commerce sectors and is a subsidiary of Lindt & Sprüngli, a globally recognized chocolate manufacturer. The website demonstrates consistent branding and good content quality, supporting its market position as a trusted chocolate retailer. Technically, the website is built on Magento Commerce with modern JavaScript frameworks and integrates multiple analytics and marketing platforms such as Google Tag Manager, Adobe Experience Cloud, and New Relic for performance monitoring. The site is mobile-optimized and employs standard SEO and accessibility practices, although accessibility could be improved further. Performance is moderate with room for optimization. From a security perspective, the website enforces HTTPS, uses standard security headers, and employs CAPTCHA on forms to mitigate automated abuse. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a publicly available security policy and incident response contact information suggests areas for improvement in transparency and readiness. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligning with GDPR requirements. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. The main risk factor is the lack of WHOIS data, which may be due to privacy protection or query limitations but warrants monitoring. Strategic recommendations include publishing a security policy, enhancing incident response visibility, and improving accessibility compliance to further strengthen trust and security posture.

85
68
2
85
62
85
100
chocolatecandygiftbasketssugarfreee-commerce+2 more
Magento CommerceRequireJSjQueryGoogle Tag Manager+4

Partner Domains:

lindt.com
parent
cj.com
partner

+1 more partners

2025-07-17T17:47:20.533Z
darekprosueryder.cz favicon

Domov Sue Ryder, z. ú.

darekprosueryder.cz

52
Non-profitCzech RepublicsmallMEDIUM

Dárek pro Sue Ryder is a Czech non-profit organization dedicated to supporting seniors and their families by providing dignified elderly care, including advice, personal assistance, and palliative care. The organization has been active since 1998 and maintains a strong market position as a trusted partner in the Czech Republic, including partnerships with notable events such as the Karlovy Vary International Film Festival. The website serves as a campaign and donation platform, featuring clear calls to action and testimonials to build trust. Technically, the website employs modern web technologies including JavaScript, CSS, lazy loading for images, and Google Tag Manager for analytics and marketing. It uses a consent management platform to comply with cookie regulations. The site is mobile optimized and presents a professional design, though some accessibility and SEO optimizations could be improved. No major CMS is detected, suggesting a custom or proprietary solution. From a security perspective, the site enforces HTTPS and provides a cookie consent mechanism, but lacks explicit security headers and detailed security or privacy policies. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the website's claims, supporting legitimacy. Overall, the site is professional, trustworthy, and serves its non-profit mission effectively. Strategic improvements in privacy policy publication, security headers, and incident response transparency would enhance its security posture and compliance.

85
25
17
55
72
65
20
non-profitseniorcaredonationczechrepubliccookieconsent+1 more
JavaScriptCSSGoogle Tag ManagerLazy loading images+1

Partner Domains:

www.sue-ryder.cz
partner
www.neztratitsevestari.cz
partner
2025-07-17T17:46:00.129Z
spolecenskaodpovednost.cz favicon

Asociace společenské odpovědnosti (A-CSR)

spolecenskaodpovednost.cz

50
Non-profitCzech RepublicmediumMEDIUM

Asociace společenské odpovědnosti (A-CSR) is the largest sustainability and ESG initiative in the Czech Republic, operating as a non-profit association. It focuses on promoting the UN Sustainable Development Goals (SDGs), organizing events such as the Global Goals Summit and Giving Tuesday, and providing networking opportunities for its members. The association also publishes newsletters and an online magazine to inform and engage its audience. The target audience includes organizations and individuals interested in sustainability and social responsibility within the Czech market. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Tag Manager, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is well-optimized for mobile devices, accessible, and SEO-friendly, with comprehensive metadata and structured data enhancing search engine visibility. Cookie consent and privacy policies are implemented in compliance with GDPR. From a security perspective, the website uses HTTPS with a strong SSL configuration and employs best practices such as cookie consent and nonce usage in scripts. However, security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found. The absence of WHOIS data is a concern for domain legitimacy, but the professional content and consistent branding support trustworthiness. Overall, the website presents a low risk profile with strong content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving incident response contact visibility to further strengthen security posture and trust.

25
40
17
55
62
80
40
sustainabilityesgnon-profitczechrepublicsocialresponsibility+2 more
jQueryGoogle Tag ManagerGoogle AnalyticsFacebook Pixel+2

Partner Domains:

www.giving-tuesday.cz
partner
www.globalgoalssummit.cz
partner

+3 more partners

2025-07-17T17:45:55.079Z
aijmagazine.co.uk favicon

AIJ Magazine

aijmagazine.co.uk

60
ManufacturingUnited KingdomsmallMEDIUM

AIJ Magazine is a specialized media publication serving the Guild of Architectural Ironmongers and related professionals in the UK construction and manufacturing sectors. The website provides industry news, features, opinions, and digital editions, positioning itself as a niche authoritative source within its market. The business operates under the parent company Atom and has been active since 2020, with consistent branding and good content quality tailored to its professional audience. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WP Rocket, and various JavaScript libraries for enhanced user experience and performance. Hosting is provided by 123-Reg Limited, a reputable registrar and hosting provider. The site demonstrates good mobile optimization, SEO practices, and fast loading times, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses some security plugins but lacks explicit security headers and published security policies. No cookie consent mechanism is present, which may impact privacy compliance. No incident response or vulnerability disclosure information is available, indicating room for improvement in security transparency and readiness. Overall, the website is professional, trustworthy, and well-maintained, with moderate security posture and privacy compliance. Strategic enhancements in security headers, privacy mechanisms, and incident response documentation would strengthen its risk profile and compliance standing.

70
53
2
40
75
60
100
architecturalironmongeryindustrymagazineconstructionguildmedia+1 more
WordPressYoast SEO pluginWP RocketjQuery+5
2025-07-17T17:44:28.944Z
sprintty.com favicon

Sprintty for Sports - Enhance Your Sports Streaming

sprintty.com

65
TechnologyN/asmallMEDIUM

Sprintty.com is a technology platform specializing in sports streaming services, offering high-quality live sports event streaming with advanced monetization and customization features. The website targets sports content providers and distributors seeking a robust platform to deliver and monetize sports video content. The platform appears to be relatively new, founded in 2022, and uses the Tilda CMS platform with integrations for analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The technical infrastructure includes Akamai DNS and CDN services, indicating a focus on performance and reliability. Security posture is moderate; while HTTPS is implied and domain registration is secured with EPP status locks, there is no DNSSEC enabled and no security headers detected in the HTML content. The website lacks explicit privacy, cookie, and terms of service policies, which impacts privacy compliance scores. No contact emails or phone numbers are explicitly provided on the site, limiting direct communication channels. Overall, the site is professionally designed with good user experience and content relevance but would benefit from enhanced security and privacy compliance measures.

25
70
17
85
62
85
100
sportsstreaminglivesportsvideoplatformmonetizationtechnology
jQuery 1.10.2Google Tag ManagerGoogle Analytics (gtag.js)LinkedIn Insight Tag+3
2025-07-17T17:39:30.568Z
tribalfootball.com favicon

Tribal Football

tribalfootball.com

60
MediaN/amediumMEDIUM

Tribal Football operates as a specialized media platform delivering comprehensive football news, transfer rumors, and updates on teams and players worldwide. The website targets football fans and sports enthusiasts, providing timely and relevant content primarily focused on European football leagues and major competitions. The business model appears to be content publishing supported by advertising and possibly affiliate marketing, positioning Tribal Football as a recognized player in the football news media sector. Technically, the website is built using modern web technologies including React, Google Tag Manager, and performance monitoring tools like Lux. It demonstrates good mobile optimization, SEO practices, and moderate performance. The site uses HTTPS exclusively, ensuring secure data transmission, and integrates standard analytics tools for user behavior tracking. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and publicly available security policies or incident response information, which are areas for improvement. The absence of WHOIS data raises questions about domain registration legitimacy, though the website content and structure suggest a professional and trustworthy operation. Overall, Tribal Football presents a solid digital presence with good content quality and technical implementation. The main risks relate to domain registration transparency and the lack of detailed security and incident response disclosures. Addressing these gaps would enhance trust and compliance posture.

30
70
17
40
75
75
100
footballsportsnewstransfersmedia
ReactGoogle Tag ManagerGoogle AnalyticsLux (performance monitoring)+2
2025-07-17T17:39:15.522Z
kulturforschung.ch favicon

Institut für Kulturforschung Graubünden

kulturforschung.ch

62
EducationSwitzerlandsmallMEDIUM

The Institut für Kulturforschung Graubünden (ikg) is an independent research institution based in Chur, Switzerland, focusing on humanities, social sciences, and cultural studies related to the Alpine region, especially Graubünden. The website serves as a platform for disseminating research projects, publications, events, and membership information, targeting academics, researchers, and culturally interested audiences. The business model revolves around research, publication, and community engagement through events and memberships. Technically, the website employs modern web technologies including Google Analytics with IP anonymization, Google Tag Manager, Typekit fonts, and Swiper.js for interactive content sliders. The site is mobile-optimized, accessible, and SEO-friendly, though it lacks some advanced security headers. Performance is moderate, with a professional and consistent design. From a security perspective, the site uses HTTPS with good SSL configuration and respects user privacy with cookie consent mechanisms. However, it lacks explicit security headers and does not provide a public incident response or vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR principles. It effectively supports the institute's mission and audience engagement. Strategic improvements in security headers and transparency around incident response could further enhance its security posture and user trust.

35
53
2
75
62
85
100
researchcultureeducationgraubndenalpenraum+3 more
Google AnalyticsGoogle Tag ManagerTypekit FontsSwiper.js
2025-07-17T17:36:49.894Z
alpinesmuseum.ch favicon

Alpines Museum der Schweiz

alpinesmuseum.ch

54
Non-profitSwitzerlandsmallMEDIUM

ALPS Alpines Museum der Schweiz is a recently established (2023) cultural institution focused on alpine themes, including human interaction with mountains, environment, and culture. It operates as a non-profit museum located in Bern, Switzerland, and offers exhibitions, events, educational programs, and a restaurant. The museum is part of the Museumsquartier Bern, enhancing its cultural significance and partnerships. The website is professionally designed with good content quality, clear navigation, and multilingual support, targeting a broad audience interested in alpine culture and environment. Technically, the website uses modern web technologies including Google Tag Manager, reCAPTCHA v3 for form security, and is likely built on Craft CMS. Hosting is provided by Hostpoint AG, a reputable Swiss hosting provider. The site is mobile optimized and performs moderately well. SEO and accessibility are adequately addressed, though some improvements could be made. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, DNSSEC is not enabled and no explicit security headers were detected, which are areas for improvement. Privacy and cookie policies are present and GDPR compliance is indicated, but no detailed security or incident response policies are published. WHOIS data is consistent with the museum's identity, with privacy protection justified for this type of entity. Overall, the website presents a trustworthy and professional digital presence for the ALPS museum, with moderate technical maturity and a good security baseline. Strategic enhancements in security headers, DNSSEC, and published policies would further strengthen its posture.

20
53
2
85
95
75
20
museumalpinecultureexhibitionsevents+3 more
Google Tag ManagerGoogle reCAPTCHA v3Formie form pluginCustom CSS and JS+1

Partner Domains:

mqb.ch
partner
2025-07-17T17:36:29.858Z