High-risk security reports

E

Europäische Metropolregion Nürnberg

metropolregionnuernberg.de

48

The Europäische Metropolregion Nürnberg website represents a regional alliance of 23 counties and 11 independent cities in Germany, focused on economic development, cultural promotion, sustainability, and infrastructure collaboration. The site is built on TYPO3 CMS with Bootstrap framework, featuring a professional design and structured navigation. It uses Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. Security posture is solid with HTTPS enforced and spam-protected emails, though explicit security headers and privacy policies are missing. Overall, the website is trustworthy and serves as a comprehensive regional information and cooperation platform.

K

Kolping-Bildungswerk im Erzbistum Bamberg e. V.

kolpingbildung.de

45

Kolping-Bildungswerk im Erzbistum Bamberg e. V. is a regional non-profit educational organization operating in Ober- und Mittelfranken, Germany. The organization offers a broad range of educational and social services including language courses, vocational training, integration programs, and services for older generations. It maintains a strong regional presence with multiple physical locations and a focus on practical, sustainable education. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience of learners, social institutions, and companies. Technically, the website employs modern JavaScript libraries such as jQuery, Leaflet for maps, Swiper for sliders, and FilePond for file uploads, alongside a consent management platform (Usercentrics) and Matomo for analytics. The site is mobile-optimized, accessible, and SEO-friendly, hosted with domain control via GoDaddy DNS. While HTTPS is enforced, security headers are not explicitly detected, indicating room for security enhancements. From a security perspective, the site demonstrates good practices including CSRF token usage and privacy compliance with GDPR through clear privacy and cookie policies. No critical vulnerabilities or WAF blocking were detected. The WHOIS data is minimal but consistent with the organization's profile, showing no suspicious patterns. Overall, the site presents a trustworthy and professional digital presence. The risk assessment is low with recommendations to improve security headers and publish a vulnerability disclosure policy. The site is safe for general audiences with no adult or questionable content detected.

K

Katholische Landvolkbewegung Bamberg

klb-bamberg.de

44

The Katholische Landvolkbewegung Bamberg (KLB Bamberg) is a regional non-profit organization focused on serving the rural community within the Erzdiözese Bamberg. Their activities include educational programs, community events, and providing materials related to religious and social concerns. The website reflects a well-structured, content-rich platform targeting members and interested parties in the rural Catholic community. Technically, the site employs a moderate modern tech stack including jQuery, Leaflet, and FontAwesome, with a custom or proprietary CMS. It is mobile-optimized and uses self-hosted Matomo analytics to balance functionality with privacy. Security posture is good with HTTPS enforced and cookie consent managed via Usercentrics, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

K

Katholische Erziehergemeinschaft Bayern e. V. (KEG)

keg-bayern.de

43

KEG Bayern is an independent, overconfessional professional association representing educators and pedagogues across all educational sectors in Bavaria, including kindergartens, schools, and universities. The organization advocates for the educational and professional interests of its members, emphasizing equitable education and upbringing based on Christian social ethics. Their services include tariff negotiations, training and further education, insurance offerings, and personalized advice throughout members' careers. The website reflects a well-structured, professional digital presence built on TYPO3 CMS, integrating modern frontend technologies and social media engagement. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit privacy and terms policies are not found in the provided content. Overall, KEG Bayern presents as a credible and established entity within the education sector in Germany.

K

KAB Bamberg

kab-bamberg.de

49

KAB Bamberg is a regional non-profit organization dedicated to social justice, providing its members with legal advice and representation before labor and social courts. The organization also offers educational events and campaigns focused on social issues. The website is built on TYPO3 CMS, hosted by SchlundTech, and employs Matomo analytics with privacy-conscious configurations. The site demonstrates good technical maturity with responsive design, clear navigation, and comprehensive content relevant to its audience. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though it lacks explicit incident response and security policy documentation. Overall, the site reflects a trustworthy and professional presence for a non-profit entity in Germany.

B

home

bildungshaus-obertrubach.de

49

bildungshaus-obertrubach.de appears to be a small-scale website focused on gambling and casino legal topics, targeting a mature audience interested in gambling. The site content is minimal, with a single main service link labeled 'Casino Legal' and multiple gambling-related trust badges displayed prominently. The technical infrastructure leverages Cloudflare for DNS and CDN services and includes the Swiper.js library for UI elements. However, the site lacks comprehensive content, privacy and cookie policies, and contact information, which limits its professionalism and user trust. Security posture is moderate due to the use of Cloudflare and trust badges but lacks visible security headers and incident response contacts. Overall, the website is functional but basic, with room for significant improvements in content, compliance, and security.

K

Kloster Schwarzenberg

kloster-schwarzenberg.de

40

Kloster Schwarzenberg is a small, non-profit religious community of Franciscan Minorites located in Scheinfeld, Germany. The website serves as a spiritual and informational hub offering details about their community, spiritual services, guest accommodations, and educational programs. The site targets individuals seeking spiritual guidance, pilgrims, and guests interested in retreats and religious education. Technically, the website is built on WordPress using the GeneratePress theme and includes modern web technologies such as jQuery and Yoast SEO. Hosting appears to be managed via kasserver.com. The site is well-structured, mobile-optimized, and includes essential privacy and cookie policies compliant with GDPR. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are absent. Overall, the website is professional, trustworthy, and safe for general audiences.

C

Caritas-Pirckheimer-Haus

cph-nuernberg.de

45

The Caritas-Pirckheimer-Haus (CPH) is a well-established educational and cultural institution based in Nürnberg, Germany, serving over 50,000 adults and youth annually. It offers a broad range of educational programs, events, and projects focused on society, religion, history, politics, ethics, culture, inclusion, and participation. Additionally, it operates a conference center and hotel with 44 rooms, catering to both private and professional guests. The website reflects a medium-sized non-profit organization with a strong community and educational focus. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including JavaScript and CSS, and integrates accessibility features such as font size adjustment and skip links. The site is mobile-optimized and SEO-friendly, with a moderate performance profile. Hosting appears to be managed by a professional provider indicated by the nameservers. From a security perspective, the site enforces HTTPS and uses secure forms but lacks visible security headers and a vulnerability disclosure policy. No cookie consent mechanism was detected, which may impact GDPR compliance. No contact emails or phone numbers are explicitly listed in the HTML, though contact forms and social media channels are available. Overall, the security posture is good but could be improved with additional headers and explicit privacy controls. The website content is safe for general audiences, focusing on educational and cultural topics without any adult or explicit content. The domain registration data is limited but consistent with the website's German educational non-profit identity. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

F

Fenster Koch Gmbh & Co.KG

fenster-koch.de

43

Fenster Koch Gmbh & Co.KG is a well-established German company specializing in manufacturing and servicing windows, doors, sliding doors, and related glass constructions. With over 70 years of experience, the company positions itself as a traditional yet innovative provider offering comprehensive project handling from consultation to implementation. Their market focus includes private homeowners and commercial clients seeking high-quality, secure, and design-oriented building products. The website reflects a professional and consistent brand image with detailed project references and certifications such as the ift logo, enhancing trustworthiness. Technically, the website employs modern JavaScript libraries including jQuery, Lottie animations, and ScrollMagic for enhanced user experience. It integrates Google Analytics and Tag Manager for visitor tracking and marketing insights. Hosting is managed via kasserver.com, and the site is mobile-optimized with good SEO practices. However, explicit CMS or framework usage is not detected. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and includes secure contact forms with privacy consent checkboxes. No explicit security headers or incident response policies are published, which could be improved. No vulnerabilities or exposed sensitive data were detected in the HTML content. Cookie consent is implemented, supporting GDPR compliance. WHOIS data aligns well with the website's claims, indicating a trustworthy domain registration. Overall, Fenster Koch's website demonstrates a solid digital presence with good business credibility and privacy compliance. Strategic enhancements in security headers, incident response transparency, and accessibility would further strengthen their posture. The site is safe for general audiences and free from adult or questionable content.

Wenzelburger KG is a medium-sized German company specializing in the production and supply of high-quality construction materials including transport concrete, aggregates such as gravel, sand, and crushed stone, as well as logistics and earthworks services. With over 60 years of regional presence, the company serves primarily B2B clients in the construction and infrastructure sectors. The website reflects a professional and consistent brand image, providing comprehensive contact information and business details. Technically, the site is built on WordPress using popular plugins and themes, hosted by Hetzner Online GmbH, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and well-maintained, though improvements in security and privacy practices are recommended.

F

Power tools for professional craftsmen | FLEX - FLEX

flex-tools.com

47

The website www.flex-tools.com presents a professional online presence for FLEX, a company specializing in power tools and accessories targeted at professional craftsmen. The site highlights system solutions for renovation, metalworking, automotive, and natural stone work, indicating a focus on manufacturing and industrial sectors. The technical infrastructure leverages modern web technologies such as Next.js and React, with integrations for analytics and consent management, reflecting a moderate level of digital maturity. However, the absence of WHOIS registration data and lack of visible privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate with no detected blocking mechanisms or WAF, but missing security headers and unclear SSL configuration suggest room for improvement. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures to improve trust and risk posture.

R

Romina Mineralbrunnen GmbH

romina.de

48

Romina Mineralbrunnen GmbH is a well-established mineral water bottling company based in Reutlingen-Rommelsbach, Germany, with a strong regional presence primarily in Baden-Württemberg and neighboring regions. The company produces and distributes popular mineral water brands EiszeitQuell and SilberBrunnen, operating multiple production lines and employing around 130 staff. Their business model focuses on manufacturing and regional distribution through beverage and food retail channels, including bio markets and hospitals. The website reflects a professional and consistent brand image with clear navigation and relevant content for their target audience. Technically, the website is built on WordPress using standard JavaScript libraries such as jQuery and Swiper.js. It demonstrates good mobile optimization and SEO practices, though accessibility features are basic. The site uses HTTPS with no detected blocking or WAF challenges, and includes a cookie consent mechanism compliant with GDPR requirements. Analytics tracking via Google Analytics is implemented but disabled by default pending user consent. From a security perspective, the site employs HTTPS and cookie consent best practices but lacks explicit security headers and a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is consistent with the business claims, showing no suspicious patterns and supporting the legitimacy of the domain. Overall, Romina Mineralbrunnen GmbH presents a trustworthy and professional online presence with good compliance and security posture for its business size and sector. Recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and compliance.

L

Lions Club Nürtingen-Kirchheim/Teck

lionsclub-nuertingen-kirchheim.de

45

The Lions Club Nürtingen-Kirchheim/Teck is a local non-profit organization affiliated with the international Lions movement, focusing on community service, fundraising, and social projects in the Nürtingen-Kirchheim/Teck region of Germany. Their website provides information about their activities, supported projects, and club leadership, targeting local community members, donors, and supporters. The club operates through events such as the Entenrennen and Adventskalender, generating funds to support various social initiatives. Technically, the website is built on WordPress using popular plugins like WPBakery Page Builder, Slider Revolution, and Yoast SEO, hosted by webgo.de. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security is adequate with HTTPS enforced, but lacks advanced security headers and explicit security policies. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. However, it lacks a cookie consent mechanism and detailed privacy or security policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent registration. Overall, the website is trustworthy, professionally presented, and serves its purpose well as a community non-profit portal. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

L

Lions Club Nürtingen-Kirchheim/Teck

lcnk.de

45

Lions Club Nürtingen-Kirchheim/Teck is a small, regionally focused non-profit organization affiliated with the international Lions movement. The club engages in charitable activities and fundraising events such as the Entenrennen and Advent calendar to support social, cultural, and educational projects locally and beyond. Their website provides comprehensive information about their mission, activities, and supported initiatives, targeting community members and donors interested in social welfare. Technically, the site is built on WordPress using common plugins like WPBakery, Slider Revolution, and Yoast SEO, hosted by webgo.de. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. No forms or direct data collection are present on the homepage, reducing privacy risks. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

S

Salesianer Don Boscos

donbosco.de

47

The Deutsche Provinz der Salesianer Don Boscos operates as a well-established non-profit religious organization focused on youth education, social work, and pastoral care primarily in Germany but with a global outreach. Their website reflects a mature digital presence with comprehensive content about their mission, services, and community engagement. The organization targets children, youth, families, and potential employees or volunteers, offering a broad range of social and educational services. Technically, the website is built on the eZ Platform CMS, uses Bootstrap for responsive design, and integrates privacy-conscious analytics via Matomo. The hosting is managed by a reputable German provider, Schlundtech, ensuring stable infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements are possible by adding security headers and explicit cookie consent mechanisms. Contact information is transparent and professional, supporting trust and credibility. Overall, the site is safe, professional, and well-aligned with the organization's mission.

F

Frankfurt du bist so wunderbar

frankfurtdubistsowunderbar.de

41

Frankfurt du bist so wunderbar is a local online magazine and blog dedicated to urban life in Frankfurt, Germany. It serves as a cultural and culinary guide, providing curated content for residents and enthusiasts of the city. The website leverages Drupal 10 CMS and modern web technologies to deliver a responsive and visually appealing user experience. It maintains an active social media presence across Instagram, Facebook, Pinterest, and TikTok, enhancing community engagement. However, the site lacks explicit privacy policy and terms of service pages, which are important for compliance and user trust. The cookie consent banner indicates GDPR awareness and usage of Google Analytics for anonymized statistics. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professionally designed, content-rich, and trustworthy, but could benefit from enhanced privacy and security documentation.

S

Stuttgarter Verlagskontor SVK GmbH

svk.de

44

Stuttgarter Verlagskontor SVK GmbH operates as a full-service publishing distributor primarily serving the German book trade and resellers. The company distributes products from over 50 publishers and provides an online order portal and service centers tailored for trade customers and publishers. The website is professionally designed, content-rich, and clearly targeted at its business audience. Technically, the site is built on WordPress with common libraries such as jQuery and Bootstrap, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is partially met with a comprehensive privacy policy but no cookie consent mechanism. Overall, the site is trustworthy and credible with clear contact information and legal disclosures.

T

Technology Fund

technologyfund.ch

44

The Technology Fund is a Swiss-based financial entity focused on supporting innovative climate technology companies through loan guarantees. Their website clearly communicates their mission to reduce greenhouse gas emissions by enabling Swiss companies to access non-dilutive funding. The site features testimonials from industry leaders and partners, enhancing credibility and trust. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. Security measures include HTTPS and Google reCAPTCHA for form protection, though some security headers and explicit policies are missing. Privacy compliance is partially addressed with a privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, well-branded, and targets Swiss climate-tech startups and stakeholders.

The website wegweiser-kita-schule-frankfurt.de serves as an informational portal focused on childcare and school services in Frankfurt am Main. It is a collaborative effort between the city's school authority and a media partner, providing structured listings and search functionalities for parents and residents. The site uses modern web technologies such as Ionic Framework and Angular, ensuring a responsive and user-friendly experience, particularly on mobile devices. However, the site lacks explicit contact information, cookie consent mechanisms, and comprehensive privacy or security policies, which are important for compliance and user trust. Security headers are not detected, indicating room for improvement in security posture. Overall, the site appears legitimate and professionally maintained but could benefit from enhanced privacy and security features.

S

ScalaZ

afrika-junior.de

47

Afrika-Junior is an educational website operated by ScalaZ, targeting children and parents with informative content about Africa. The platform offers a variety of educational materials including articles, media content such as videos and music, quizzes, and interactive games. It positions itself as a niche non-profit educational resource with a focus on African knowledge and culture. The website is hosted on Alfahosting and built using Wolf CMS, indicating a small-scale but functional technical infrastructure. The site demonstrates basic to good digital maturity with a clean design, clear navigation, and a cookie consent mechanism, though mobile optimization and accessibility are basic. Security posture is moderate with HTTPS enabled but lacking advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is safe, trustworthy, and compliant with GDPR requirements, though it could benefit from enhanced security practices and more comprehensive business and incident response information.

Fine Sax is a small German-based live music service specializing in saxophone performances for corporate events, weddings, and private parties. The website presents a professional and consistent brand image with good quality content including testimonials, videos, and references to partner bands. The technical infrastructure uses common web technologies such as Bootstrap, jQuery, and Google Analytics, providing a moderate performance and good mobile optimization. Security posture is moderate with no visible security headers and no explicit cookie consent mechanism, indicating partial GDPR compliance. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts trustworthiness. Overall, the website is functional and professional but would benefit from improved security and privacy practices.

S

Sax & the DJ

sax-and-dj.com

41

Sax & the DJ is a small German-based event entertainment service specializing in live DJ and saxophone performances for private and corporate events. The website presents a professional and engaging user experience with clear descriptions of services, testimonials, and multimedia content to attract event organizers and private clients. Technically, the site uses modern front-end frameworks like Bootstrap and integrates Google Analytics and Tag Manager for tracking, indicating a moderate level of digital maturity. However, the absence of privacy and cookie policies and lack of visible security headers highlight compliance and security gaps. The WHOIS data is missing, which raises concerns about domain legitimacy and trustworthiness. Overall, while the business appears credible and professionally presented, the technical and security posture requires improvements to enhance trust and compliance.

E

Event-Band-buchen.de

event-band-buchen.de

41

Event-Band-buchen.de is a German-language website specializing in direct booking of live music bands and DJs for events across Germany and Austria. The platform offers a curated selection of bands in five main categories including jazz, party, mobile, DJ plus live musicians, and gala bands. The business model focuses on eliminating agency fees by enabling direct contact between clients and bands, targeting event organizers and private customers seeking professional live entertainment. The website features rich content including detailed band descriptions, embedded videos, and an interactive quiz to assist users in selecting the right band for their event. Technically, the website is built with standard HTML5, CSS3, and JavaScript, incorporating Google Analytics for visitor tracking and an embedded third-party quiz tool. The site is mobile-optimized with good navigation and SEO practices, though no CMS or advanced frameworks are detected. Hosting details are limited, with generic name servers noted. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS as implied by canonical URLs but lacks visible security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure mechanisms are present. WHOIS data is minimal and generic, which slightly reduces trustworthiness, but the website content and business presentation are professional and consistent with a small, legitimate event music booking service. Overall, the website presents a trustworthy and functional platform for live band bookings with room for improvement in privacy compliance, security hardening, and transparency regarding data protection.

Petrella is a medium-sized, family-owned German company specializing in the production of cream cheese and plant-based alternatives, with a strong emphasis on freshness, regional sourcing, and sustainability. The company has a history dating back to 1991 and actively engages consumers through recipes, promotions, and a broad social media presence. The website is well-designed, mobile-optimized, and provides comprehensive product and company information. Technically, it is built on the Contao CMS platform using modern JavaScript libraries and includes a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS and session protections, though additional security headers and explicit security policies could enhance trust. No blocking or WAF challenges were detected, allowing full content access and analysis.

V

VUN Vereins- und Unternehmernetzwerk

vereins-und-unternehmernetzwerk.de

38

VUN Vereins- und Unternehmernetzwerk is a small German business and association networking platform focused on organizing regular networking meetings, leisure activities, and providing presentation opportunities for its members. The website targets entrepreneurs and associations primarily in the Hannover region, positioning itself as a local B2B network with low membership fees and no obligations. Technically, the site is built on Joomla CMS using Bootstrap and jQuery, hosted on kasserver.com servers. It features a cookie consent mechanism and social media integration but lacks explicit privacy and terms of service pages. Security posture is moderate with HTTPS enabled but missing security headers and incident response contacts. Overall, the site is functional, professionally designed, and safe for general audiences but could improve privacy compliance and security best practices.

D

Digitales Hannover e.V.

digitaleshannover.de

46

Digitales Hannover e.V. is a non-profit association focused on fostering digital transformation in the Hannover region by connecting stakeholders from business, science, media, culture, and administration. The organization hosts events, promotes projects, and provides a platform for networking and knowledge exchange. Their website reflects a professional and community-oriented approach with clear branding and consistent messaging. Technically, the site is built on WordPress with modern libraries and includes privacy-conscious analytics via Matomo. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and headers could be improved. Overall, the site is trustworthy and well-positioned as a regional digital innovation hub.

W

Werbeagentur Schulz-Design e. K.

schulzdesign.info

47

Werbeagentur Schulz-Design e. K. is a well-established full-service advertising agency based in Laatzen near Hannover, Germany. With over 15 years of experience, the agency specializes in advertising, web design, photography, and image film production, offering comprehensive services from concept to implementation. Their market position is strong within the Hannover region, serving a diverse client base across multiple industries. The website reflects a professional and modern digital presence, leveraging Joomla CMS and integrating advanced multimedia content and consent management tools. Security posture is robust with HTTPS, security headers, and privacy compliance mechanisms in place. No critical vulnerabilities or suspicious activities were detected. Overall, the agency demonstrates a mature digital infrastructure and a trustworthy business profile.

E

EKG zvířat - dlouhodobé měření EKG bez stresu zvířete

ekgzvirat.cz

40

The website ekgzvirat.cz is a Czech veterinary service specializing in long-term EKG monitoring of animals, primarily dogs, for cardiac and neurological health diagnostics. The business operates in a niche healthcare segment, offering preventive and diagnostic cardiac monitoring services with a focus on stress-free measurement. The site is professionally designed using WordPress with Oxygen Builder and includes essential service descriptions, references, and contact information. Technically, the site uses modern web technologies including Google Tag Manager for analytics and Contact Form 7 for user inquiries. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit privacy compliance mechanisms. The domain registration data is consistent with the business profile and location, indicating legitimacy. Overall, the website presents a trustworthy and professional service but could improve privacy compliance and security best practices.

B

bricks

neuroncentrum.cz

40

Neuron Medical Centrum operates as a network of specialized medical clinics in the Czech Republic, offering comprehensive healthcare services including cardiology, physiotherapy, sports medical examinations, neurorehabilitation, nutritional therapy, and psychological care. The website serves as a portal to these services, targeting patients seeking specialized ambulatory care. The business appears to be recently founded in 2023, consistent with the domain registration date, and operates primarily in the healthcare sector with a small organizational size. Technically, the website is built on WordPress using the Bricks theme and several plugins such as Rank Math SEO and Complianz GDPR for SEO and privacy compliance. The site is hosted by Webglobe, indicated by the nameserver data. The website demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate with modern web technologies employed. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is consistent and legitimate, with no privacy protection or suspicious registration patterns. Overall, the website is professional and trustworthy with moderate security posture and privacy compliance. Strategic improvements include adding explicit privacy and security policies, enhancing security headers, and publishing vulnerability disclosure information to strengthen trust and compliance.

S

Svět Dam - magazín pre ženy

svetdam.sk

37

Svět Dam is an online women's magazine based in Slovakia, providing content focused on women, family, health, and advice. The website operates on a WordPress platform using the Newspaper theme and several plugins for newsletter and content management. It targets a regional audience with a niche focus on female readers. The site is relatively new, established in 2021, and hosts advertising content to support its business model. Technically, the site uses modern web technologies including HTTPS, DNSSEC, and Google Analytics for tracking. However, it lacks visible privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS and DNSSEC enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the site is functional and professionally designed but would benefit from enhanced privacy compliance and security best practices.

T

Tikiti.cz s.r.o.

tikiti.cz

49

Tikiti.cz s.r.o. is a small creative and technology studio based in Brno, Czech Republic, specializing in web application development, creative design, event organization, chatbot solutions, and ticketing and parking systems. The company has an established market presence with municipal and commercial clients, demonstrated by their portfolio and long domain registration since 2015. The website is professionally designed with good content quality and clear navigation, targeting businesses and municipalities seeking digital and creative services. Technically, the site uses modern front-end technologies such as Bootstrap, jQuery, and FontAwesome, providing a good mobile experience and moderate performance. However, there is no detected CMS or hosting provider information. Security posture is moderate with HTTPS implied but lacking visible security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the site is safe, professional, and trustworthy but would benefit from improved privacy and security practices.

D

Deutsche Manufakturenstraße Meisterrat Berlin-Brandenburg e.V.

deutsche-manufakturenstrasse.de

46

Deutsche Manufakturenstrasse is a German cultural and manufacturing promotion platform operated by Deutsche Manufakturenstraße Meisterrat Berlin-Brandenburg e.V. The website showcases artisanal manufactories, cultural routes, news, and interviews, targeting consumers interested in German craftsmanship and cultural tourism. It maintains a niche market position focused on promoting traditional and contemporary German manufacturing excellence. Technically, the site is built on WordPress with Bootstrap and WPBakery, employing modern security plugins such as Wordfence and CleanTalk, and a comprehensive cookie consent mechanism ensuring GDPR compliance. The security posture is strong with HTTPS, security headers, and anti-spam measures, though no explicit security policy or incident response page is published. Overall, the website is professional, trustworthy, and well-structured, with good SEO and mobile optimization.

I

IJAB – Fachstelle für Internationale Jugendarbeit der Bundesrepublik Deutschland e.V.

ijab.de

47

IJAB – Fachstelle für Internationale Jugendarbeit der Bundesrepublik Deutschland e.V. is a German non-profit organization dedicated to strengthening and shaping international youth work and youth policy cooperation both in Europe and worldwide. The organization focuses on promoting international exchange, education, participation, and combating xenophobia, racism, and violence. The website is professionally designed, content-rich, and well-structured, targeting youth workers, policymakers, and organizations involved in international youth work. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and is optimized for mobile devices with good accessibility and SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is robust with clear privacy and cookie policies and GDPR adherence. The domain WHOIS data aligns with the organization's identity, indicating legitimacy and transparency.

T

The Twelve

todaythe12.com

45

The Twelve is a small content publishing platform established in 2023, focusing on business, marketing, technology, and creative sectors. The website provides articles and insights targeted at business professionals and creatives primarily in Thailand. The technical infrastructure is based on WordPress with modern frameworks like Bootstrap and SEO optimization via Yoast. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site is legitimate and professionally maintained but could improve security and privacy practices.

2

20 talentů za 20 let JCMM

20za20.cz

44

The website 20za20.cz represents a non-profit initiative celebrating 20 years of JCMM's support for talented students and researchers in the South Moravian Region of the Czech Republic. It highlights key talents and programs aimed at fostering scientific and technical education. The site is well-structured, professionally designed, and compliant with GDPR and cookie regulations, featuring a cookie consent mechanism and detailed privacy policy. Technically, it is built on WordPress with Elementor and uses modern web technologies, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers could be improved. The domain registration date is inconsistent with the claimed 20-year history, which slightly impacts trust but does not undermine the site's legitimacy. Overall, the site is a credible, professional platform for educational outreach and talent promotion.

M

Martin Liesel

parking-sneznik.cz

45

Parking Sněžník is a small local parking service provider operating in the Czech Republic, offering parking spaces for personal vehicles with a clear pricing model and operational rules. The website is professionally designed with good content quality and clear navigation, targeting drivers needing parking near Sněžník. The technical infrastructure is based on standard web technologies including HTML5, CSS, JavaScript, and jQuery, hosted on SuperHosting.cz with Google Fonts integration. The site is mobile optimized and performs moderately well. Security posture is adequate with HTTPS usage but lacks explicit security headers and formal privacy or cookie policies, which are important for GDPR compliance. Contact information is complete and transparent, enhancing business credibility. No tracking or advertising scripts were detected, indicating minimal user data collection.

The website 'Infosystem Kinder- und Jugendhilfe in Deutschland' serves as an educational and informational platform focused on child and youth welfare in Germany. It targets professionals, multipliers, and researchers in the field, providing structured content for seminars, training, and international dialogue. The site is affiliated with reputable German governmental institutions, enhancing its credibility. Technically, the site is built on TYPO3 CMS with modern web standards, offering good mobile optimization and accessibility. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. The absence of WHOIS data limits domain trust assessment, though the content and partner affiliations suggest legitimacy. Overall, the site is professional, trustworthy, and serves a niche educational purpose effectively.

cura familia is a regional non-profit organization based in Germany providing family care and operational support services primarily in the Hohenlohekreis to Bodensee region. Their key offerings include family caregiving, village and operational help, training for caregivers, and charitable support through the Stiftung Regenbogen foundation. The website is professionally designed with clear navigation and relevant content tailored to families in need. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and Owl Carousel, likely running on the REDAXO CMS platform. Performance and mobile optimization are good, though accessibility and SEO are basic. Security posture is moderate with HTTPS in use but lacking explicit security headers and incident response information. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism. Contact information is clearly provided including a central phone number and a contact page. Overall, the website is trustworthy and safe with no adult or questionable content detected.

H

Hohenlohe

hohenlohe.de

49

The website www.hohenlohe.de serves as a regional tourism information portal for the Hohenlohe region in Germany. It provides visitors with details on local attractions, events, accommodations, cycling and hiking tours, and wine tourism opportunities. The site targets tourists and visitors interested in exploring this region, positioning itself as a key resource for regional travel and leisure activities. The business model focuses on promoting tourism and regional culture rather than direct commercial transactions. Technically, the website is built on the Neos CMS platform, leveraging the Flow PHP framework. It uses modern web technologies including web fonts and asynchronous JavaScript loading. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate rather than fast. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism via Cookiebot, indicating awareness of privacy compliance requirements. However, explicit privacy policies, terms of service, and security policies are not found in the provided content. Security headers are not explicitly detected, and no vulnerability disclosure or incident response information is available. The WHOIS data is limited, with Cloudflare name servers and a domain status of 'connect', which reduces transparency but is not uncommon for legitimate sites. Overall, the website presents a professional and trustworthy front for regional tourism promotion but would benefit from enhanced transparency in privacy and security policies, improved security headers, and clearer contact information. These improvements would strengthen compliance and user trust while reducing potential risks.

N

Netzwerk Nachbarschaftshilfe e.V.

netzwerk-nachbarschaftshilfe.de

44

Netzwerk Nachbarschaftshilfe e.V. is a small non-profit organization based in Freiburg, Germany, focused on supporting rural communities in Baden-Württemberg by providing training and support for neighborhood help associations. The organization aims to improve quality of life for elderly and needy residents while empowering local women with work opportunities. The website reflects a professional and consistent brand presence with relevant content including news, events, and downloadable resources. Technically, the site is built on Edith CMS, uses jQuery and Bootstrap, and is hosted on w-commerce.de infrastructure. It employs Matomo analytics with respect for cookie consent, but lacks a visible cookie consent banner and some security headers. The security posture is good with HTTPS enforced and no obvious vulnerabilities, though improvements in security headers and incident response disclosures are recommended. Overall, the site is safe, accessible, and trustworthy, serving its community-oriented mission effectively.

W

Wordpress Developement

fastpress.dev

45

The website fastpress.dev represents a small technology business specializing in WordPress development services. The site is built on WordPress using the Bricks theme and incorporates SEO optimization via the Rank Math plugin. The content is minimal, primarily presenting a single page with limited textual information, indicating a basic online presence. The target audience appears to be businesses or individuals seeking WordPress development expertise. Technically, the site uses modern web technologies and is served over HTTPS, ensuring secure communication. However, the lack of visible security headers and absence of privacy or cookie policies indicate room for improvement in security and compliance. No contact information or forms are present, limiting user engagement and trust signals. Overall, the security posture is moderate with no critical vulnerabilities detected, but the site would benefit from enhanced security practices and transparency. The domain registration data aligns well with the website content, supporting legitimacy. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and providing clear contact channels to improve trust and compliance.

K

Katholische Landvolkbewegung Deutschland

klbdeutschland.de

48

The Katholische Landvolkbewegung Deutschland (KLB Deutschland) is a German non-profit organization dedicated to education and advocacy in the rural and church communities. Their website serves as a platform for disseminating information, campaigns, and news related to agriculture, environment, family, and church matters. The organization maintains a clear presence with active content updates and official contact information, positioning itself as a trusted voice in its sector. Technically, the website is built on WordPress 6.8.3 with common plugins such as Contact Form 7 and Bootstrap for responsive design. The hosting is managed via rzone.de, and the site uses HTTPS with a cookie consent mechanism, indicating compliance with GDPR. While the site performs moderately well and is mobile-optimized, there is room for improvement in security headers and explicit security policies. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX calls, but lacks advanced security headers like CSP or HSTS. There is no visible security.txt or incident response contact, which could be enhanced to improve trust and readiness. No vulnerabilities or malware indicators were detected, and the site is fully accessible without WAF blocking. Overall, the website is a well-maintained, trustworthy platform for a small non-profit organization with good content quality and privacy compliance. Strategic improvements in security posture and explicit policy disclosures would further strengthen its credibility and resilience.

W

WirLandWirten Media

badische-bauern-zeitung.de

49

WirLandWirten Media operates as a specialized regional media publisher focusing on agricultural professionals in the Baden region of Germany. Their flagship publication, the Badische Bauern Zeitung, has been a trusted weekly source of agricultural news, market updates, and policy information since 1948. The company offers subscription services including digital e-paper editions and classified ads, catering specifically to the diverse needs of farmers and agribusinesses in southern Baden. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and Masonry for responsive design and user experience. Hosting appears stable with nameservers linked to established providers. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is consistent with the hosting environment and shows no suspicious patterns, supporting the legitimacy of the domain and business. Overall, WirLandWirten Media presents a trustworthy and professional online presence with solid content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and enhanced accessibility could further strengthen their security posture and user trust.

L

Landesverband Württemberg im Bund deutscher Baumschulen e.V.

wuerttemberger-baumschulen.de

43

The Landesverband Württemberg im Bund deutscher Baumschulen e.V. is a professional association representing tree nurseries in the Württemberg region of Germany. The website serves as an information hub for members and interested parties, offering details about the association, a cooperative trading platform called Baumschulbörse Württemberg eG, and current news and events. The target audience includes nursery producers, horticulture professionals, and regional stakeholders. The business model is non-profit and cooperative, focusing on regional collaboration and trade facilitation. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins such as Gravity Forms for contact forms and Yoast SEO for search optimization. It uses modern web technologies including Google Fonts and Google Maps API. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS and employs standard form validation. However, it lacks explicit security headers and does not publish privacy or cookie policies, which are important for GDPR compliance. No vulnerability disclosure or incident response information is provided, indicating room for improvement in security transparency. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its risk posture and user trust.

Q

QS Landwirtschaftliche Qualitätssicherung Baden-Württemberg GmbH (QSBW)

qsbw.de

48

QS Landwirtschaftliche Qualitätssicherung Baden-Württemberg GmbH (QSBW) is a specialized service provider focused on agricultural quality assurance and certification in the Baden-Württemberg region of Germany. With over 30 years of experience, the company supports agricultural producers in meeting certification standards through various programs such as QS-Prüfsystem Tierhaltung and Bio Baden-Württemberg. The website reflects a professional and well-structured digital presence, targeting agricultural stakeholders seeking certification and quality assurance services. The business model centers on providing neutral, independent certification and consulting services to agricultural enterprises.

ObjektplanAgrar GmbH is a specialized planning and consulting firm focused on accelerating construction projects in rural and agricultural settings in Germany. Their services encompass comprehensive project analysis, planning, building permit applications, tendering, contract awarding, and construction supervision. The company emphasizes neutrality, independence, and customer orientation, targeting agricultural businesses and rural clients seeking sustainable and efficient construction solutions. The website presents a professional image with detailed team qualifications and clear service descriptions, reinforcing their niche market position. Technically, the website uses a simple tech stack centered around jQuery 3.4.1 and static HTML/CSS. While the site is accessible and well-structured, it lacks modern security headers, cookie consent mechanisms, and advanced SEO or accessibility features. No analytics or tracking scripts are present, indicating minimal user tracking. Mobile optimization and accessibility are basic but functional. From a security perspective, the site uses HTTPS (assumed though not explicitly confirmed), but no advanced security headers or policies are detected. There is no visible incident response or vulnerability disclosure information. The WHOIS data is minimal but not suspicious, with DNS hosted on reputable German providers. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk is low given the nature of the business and content, but improvements in privacy compliance, security headers, and mobile accessibility are recommended to enhance trust and compliance with GDPR and modern web standards.

S

Service und Marketing Gesellschaft Landesbauernverband Baden-Württemberg mbH

lbv-smg.de

49

The Service und Marketing Gesellschaft Landesbauernverband Baden-Württemberg mbH (SMG) operates as a subsidiary of the Landesbauernverband Baden-Württemberg e.V., providing exclusive discounts and partner offers to its agricultural members in Baden-Württemberg. The website clearly targets LBV members, offering benefits in automotive, energy, household, and retail sectors. The company has a regional niche market position with a focused business model centered on member services and partnerships. Technically, the website is built on TYPO3 CMS, hosted on Hetzner servers, and employs modern web technologies including Bootstrap and JavaScript. The site is mobile-optimized with good SEO and accessibility basics. Google Analytics is used for visitor tracking with appropriate cookie consent mechanisms in place. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and legitimate, supporting the trustworthiness of the site. Overall, the website presents a professional and trustworthy digital presence with good privacy compliance and business credibility. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

A

Arbeitskreis für die Inventarisierung und Pflege des kirchlichen Kunstgutes in den deutschen (Erz-)Bistümern

deutsche-bistuemer-kunstinventar.de

39

The website deutsche-bistuemer-kunstinventar.de represents a specialized non-profit working group dedicated to the inventory and care of ecclesiastical art in German (arch)dioceses. It serves as a professional platform for cultural heritage professionals, offering guidelines, publications, and networking opportunities. The site is built on Joomla CMS with a Sparky framework and uses standard web technologies like jQuery and Bootstrap. It is hosted on servers associated with kasserver.com and enforces HTTPS for secure communication. The website demonstrates good content quality, clear navigation, and mobile optimization, though it lacks explicit contact information and detailed security policies. Privacy compliance is addressed via a cookie consent banner and a privacy policy page. No advertising or tracking beyond essential scripts is detected, indicating a privacy-conscious approach. WHOIS data aligns well with the website's mission and origin, supporting legitimacy and trustworthiness.

B

Borromäusverein e.V.

borromaeusverein.de

46

Borromäusverein e.V. is a German non-profit umbrella organization supporting Catholic public libraries (except Bavaria). The website provides extensive literature reviews, event information, and educational resources primarily targeting library professionals and readers interested in Catholic literature. The organization maintains a consistent and professional web presence using TYPO3 CMS, with modern technologies such as Matomo analytics configured for privacy and Usercentrics for cookie consent management. The website is well-structured, mobile-optimized, and content-rich, though it lacks explicit privacy policy and terms of service pages. Security posture is good with HTTPS and privacy-conscious analytics but could be improved by adding security headers and publishing security policies. WHOIS data aligns with the website's legitimacy, showing consistent domain registration and hosting. Overall, the site is trustworthy, safe, and professionally maintained, serving a specialized non-profit sector.