Security Directory

W

WebsiteOut

websiteout.net

49

WebsiteOut is a French web hosting provider established since 1999, offering comprehensive hosting services including domain registration, free SSL certificates, email hosting, and CMS installation support. The company targets individuals, small businesses, and professionals seeking affordable and quality web hosting solutions. The website is professionally designed with clear navigation and good content relevance, primarily in French. Technically, the site uses Apache, PHP, MySQL, and Cloudflare DNS, with a Revolution Slider framework for UI elements. Performance and mobile optimization are moderate to good. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is limited to a contact form with no direct emails or phone numbers visible. Overall, the site is trustworthy and safe, with no adult or questionable content detected.

K

Kirsten Roschanski

kirsten-roschanski.de

56

Kirsten Roschanski operates a professional personal website showcasing expertise in module development and web design for the Open Source CMS Contao. The site targets web developers and technology enthusiasts, positioning her as a niche expert in CMS-related services. The business model is service-oriented, focusing on development and consulting within the technology sector, primarily in Germany. The website is well-structured, professionally designed, and provides comprehensive information about experience, skills, and interests. Technically, the site uses a modern tech stack including PHP, JavaScript, Contao CMS, and various development tools and frameworks. Hosting is provided by netcup, a reputable German hosting provider. The site is mobile-optimized and uses self-hosted Matomo analytics to ensure privacy compliance. Performance is moderate with good SEO and accessibility basics. From a security perspective, HTTPS is enforced, and privacy compliance is strong with GDPR-aligned cookie consent mechanisms. However, explicit security headers are missing, and no formal security or incident response policies are published. No vulnerabilities or suspicious patterns were detected. Overall, the security posture is good but could be improved with additional headers and documented policies. The overall risk is low given the nature of the site as a personal professional portfolio with no sensitive transactions or data collection beyond standard contact forms and analytics. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to sustain compliance and trust.

The website infoskophost.de is currently inaccessible, returning a 403 Forbidden error page indicating that access to the resource is denied. Due to this restriction, no meaningful content, metadata, or business information is available for analysis. The domain uses standard UI-DNS nameservers, suggesting legitimate hosting infrastructure, but no registrant details or business claims are present to verify. The lack of accessible content prevents assessment of the company's business model, services, or market position. Technically, the site runs on an Apache server but lacks visible security headers or SSL configuration details. The security posture cannot be evaluated due to blocked access. Overall, the site appears inactive or restricted, resulting in a low AI score and limited insights.

The website at henkel-na.com currently serves only a default cPanel placeholder page indicating no active business content or services. The domain WHOIS data is suspicious with a creation date set in the future (February 2025), which undermines trust and suggests the domain is either inactive or misconfigured. No privacy, cookie, or terms of service policies are present, and the only contact information is a generic webmaster email address. Technically, the site uses Apache and cPanel hosting but lacks HTTPS and security headers, exposing it to security risks. Overall, the website is not operational and provides no meaningful business or security information.

Genossenschaft Haus Oslo Ateliers is a small cooperative likely focused on providing atelier spaces or community services for artists and creatives in Switzerland. The website is primarily informational, presented in German, and built on the CraftCMS platform. The technical infrastructure is moderate with HTTPS enabled and hosted on an Apache server, but lacks advanced security headers and privacy compliance features. No contact or policy information is provided, which limits user trust and compliance with regulations such as GDPR. The site does not employ analytics or advertising technologies, indicating a minimal digital footprint. Overall, the website serves its niche audience but requires improvements in privacy, security, and contact transparency to enhance credibility and compliance.

E

Elios Suite S.r.l.

elios-suite.it

49

Elios Suite S.r.l. is a specialized Italian company providing modular and scalable healthcare management software solutions tailored for laboratories, clinics, hospitals, and multisite healthcare facilities. Their product suite includes RIS, PACS, HIS, and other healthcare-specific management tools, positioning them as a niche player in the healthcare IT sector. The website reflects a professional and consistent brand image with clear descriptions of their offerings and target audience. Technically, the website is built on a modern LAMP stack with popular frameworks like Bootstrap and jQuery, supported by ViDa CMS. It is mobile-optimized and uses standard web technologies, ensuring moderate performance and good SEO practices. Analytics and marketing tools such as Google Analytics and Facebook Pixel are implemented with a cookie consent mechanism, indicating attention to privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks explicit security headers and published security or incident response policies. No vulnerabilities or suspicious content were detected. WHOIS data aligns well with the website's claims, supporting legitimacy and trustworthiness. Overall, the website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and incident response transparency could further enhance their security posture and trust.

V

Váš Hosting s.r.o.

vas-hosting.eu

68

Váš Hosting s.r.o. is a Czech-based technology company specializing in providing virtual servers (VPS), dedicated servers, managed servers, webhosting, and domain registration services. With over 15 years of experience, the company manages a substantial infrastructure of more than 1,900 servers and 19,800 domains, serving a diverse clientele including notable businesses such as Rohlík.cz and Auto Palace. The website is professionally designed, offering clear navigation and comprehensive service information, including customer testimonials and case studies that reinforce its market credibility. Technically, the website employs modern technologies such as PHP 8+, Nginx, Apache, and Docker, alongside a custom VPS administration platform. It integrates Google Tag Manager for analytics and uses Bootstrap for responsive design, ensuring excellent performance and mobile optimization. Security practices include HTTPS enforcement, Anti-DDoS protection, 24/7 monitoring, and cookie consent mechanisms, although some security headers and incident response disclosures could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, although the business presence and content quality mitigate this concern. Overall, Váš Hosting presents a trustworthy and mature hosting service provider with a solid technical foundation and customer trust. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to strengthen trust further.

A

AeroHosting.cz

aerohosting.cz

48

AeroHosting.cz is a Czech webhosting and domain registration provider with a professional online presence targeting small to medium businesses and individuals in the Czech Republic. The company offers a range of hosting services including PHP, MariaDB, ASP.NET, MSSQL support, free SSL certificates via Let's Encrypt, and domain registration primarily focused on .CZ domains. The website reflects a mature business with claims of 20 years of experience, supported by daily backups and DNSSEC security features. Technically, the site uses a mix of Linux and Windows hosting platforms, with older but functional technologies such as jQuery 1.10.1 and AnythingSlider for UI elements. While the site is accessible and well-structured, it lacks modern privacy and cookie policies, and the WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency. Security practices are decent with HTTPS and DNSSEC support, but there is room for improvement in security headers and incident response disclosures. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and updated technical components.

The website moret.xyz currently serves an access forbidden error page (HTTP 403), indicating that the content is blocked or the directory is read-protected. There is no accessible business content, metadata, or structured data to analyze. The domain is registered since 2015 with a reputable registrar, Infomaniak Network SA, but no DNSSEC is enabled. The website runs on an Apache server but lacks HTTPS information and security headers. No privacy, cookie, or terms of service policies are present, and the only contact information is a webmaster email address. Due to the lack of accessible content and security best practices, the overall risk is elevated and the site cannot be fully assessed for business or security posture.

Z

Zen Ventures, LLC

zencart.com

63

Zen Cart is an established open source e-commerce software project operated by Zen Ventures, LLC, providing a flexible and unrestricted shopping cart platform for businesses. The website serves as a hub for downloads, community support forums, documentation, and newsletters, targeting businesses and developers seeking a customizable e-commerce solution. The platform emphasizes freedom, built-in functionality, and extensibility through free and commercial plugins. Technically, the site uses PHP, MySQL, Apache, and the vBulletin CMS, with integrations including Google Analytics and MailChimp for marketing and analytics. The site is secured with HTTPS and employs client-side MD5 hashing for login passwords, but lacks some modern security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly impacts trust but is mitigated by external trust signals such as BBB accreditation and SourceForge hosting. Overall, the site is professional, content-rich, and trustworthy, with room for improvement in privacy compliance and security best practices.

R

Rolands Umbrovskis

umbrovskis.lv

53

Rolands Umbrovskis operates as a self-employed web developer and WordPress programmer based in Latvia, with a professional focus on PHP and digital media project management. The website presents a clear personal brand with detailed descriptions of services, technical skills, and a long history dating back to 2004. The business model is freelance and consulting-oriented, targeting clients needing web development and content marketing expertise. Technically, the site uses a modern stack including PHP, WordPress, CodeIgniter, Node.js, and Flutter, with integration of analytics tools like Google Analytics and Matomo. The site is mobile optimized and SEO friendly, though accessibility features could be improved. Security posture is adequate with HTTPS enabled but lacks visible security headers and formal privacy or cookie policies. No WHOIS data was available due to query limits, but the site content and contact information suggest legitimacy and professionalism. Overall, the site is well-structured and trustworthy for its niche.

The website at vzkk.lv currently displays a default cPanel placeholder page indicating that the domain is either not configured properly or the hosting setup is incomplete. There is no accessible business content, branding, or service information available. The only contact detail is a generic webmaster email address. The lack of WHOIS data due to query limits further restricts the ability to verify domain ownership or legitimacy. Technically, the site uses Apache and cPanel but lacks HTTPS and security headers, indicating a minimal security posture. Overall, the site is inaccessible for meaningful analysis and presents a high risk due to lack of content and security controls.

Computer Tyme is a small, niche web hosting provider specializing in free speech hosting and advanced spam and virus filtering services. The company targets politically sensitive and consumer rights websites, emphasizing legal expertise and a commitment to free expression. Their business model includes various email hosting options and front-end spam filtering solutions. Technically, the website and services rely on a traditional Linux-based stack with Apache, MySQL, PHP4, and open-source spam and virus filtering tools. However, the website lacks modern security features such as HTTPS and security headers, and it does not provide privacy or cookie policies, which impacts compliance and trust. The WHOIS data for the domain is missing, raising concerns about domain registration status despite the website's claims of long operational history. Overall, the security posture is weak, and the site would benefit from modernization and improved compliance documentation.

J

Junk Email Filter Inc.

junkemailfilter.com

45

Junk Email Filter Inc. operates a hosted spam filtering and virus blocking service targeting businesses and organizations that require email security without modifying their existing email infrastructure. The company leverages proprietary technology, notably the Evolution Spam Filter, to provide highly accurate spam detection and virus filtering. Their business model is subscription-based, charging customers based on the volume of good emails received, and offers a risk-free trial to encourage adoption. The website content is comprehensive and clearly communicates the service benefits, technical details, and privacy stance, emphasizing ease of setup and reliability. Technically, the website is built on older technologies such as Joomla! CMS and PHP4, running on a Linux-based stack with Apache, MySQL/MariaDB, and Exim mail servers. While the infrastructure supports encrypted connections and integrates open source tools like ClamAV and SpamAssassin, the website lacks modern security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. Performance and mobile optimization are basic, reflecting the dated technology stack. From a security perspective, the service demonstrates strong operational security practices by filtering spam and viruses at the mail exchange level and supporting encrypted connections. However, the absence of published security policies, incident response contacts, and vulnerability disclosure mechanisms limits transparency. The missing WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and business claims appear consistent and professional. Overall, Junk Email Filter Inc. presents a specialized, niche service with a solid technical foundation in email security but would benefit from modernizing its web presence, enhancing privacy and security disclosures, and resolving domain registration transparency issues to improve trust and compliance.

P

Pavel Leonidov

pavel-leonidov.de

51

Pavel Leonidov operates as a freelance software and web developer based in Stuttgart, Germany, specializing in custom software solutions and web development primarily for small businesses and non-profit organizations. The website serves as a professional portfolio showcasing skills, certifications, and open-source projects, emphasizing affordable and tailored solutions. The business model is focused on individual freelance services with continuous client support and hosting. Technically, the website employs a modern technology stack including PHP, Java, JavaScript, and popular CMS platforms like TYPO3 and WordPress. Hosting is managed via domaincontrol.com nameservers, likely GoDaddy, with AWS mentioned for hosting infrastructure. The site is mobile-optimized and uses Google Analytics with privacy-conscious settings such as IP anonymization and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and includes a cookie consent banner compliant with GDPR. However, it lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The site demonstrates good privacy compliance but could improve by adding security policies and vulnerability disclosure information. Overall, the website is professional, trustworthy, and well-structured with a good balance of content quality, technical implementation, and privacy compliance. The risk level is low, with recommendations focusing on enhancing security headers and formalizing security policies to further strengthen the security posture.

The website secured-pixel.com currently serves an HTTP 403 Access Forbidden error page, indicating restricted or blocked access to content. The domain is recently registered in 2023 with a standard registrar and uses Cloudflare DNS and analytics services. No business information, privacy policies, or contact details beyond a webmaster email are available, suggesting the site is either under development or access is intentionally restricted. The technical infrastructure includes Apache web server behind Cloudflare, but no HTTPS or security headers details are provided. The lack of accessible content and policies results in a low trust and security posture assessment.

The website certified.co.nz currently serves a default cPanel hosting placeholder page indicating that the site is not configured or has been moved. The domain is registered to Sitetech Solutions Ltd T/A SiteName, a hosting provider based in New Zealand, with a domain age dating back to 2000. There is no active business content, marketing information, or services presented on the site. The only contact information is a webmaster email address at the domain. From a technical perspective, the site uses Apache and cPanel technologies with DNS hosted on Cloudflare name servers. The page is basic and minimally optimized for mobile devices, with no detected CMS or advanced frameworks. There are no scripts, analytics, or tracking technologies present. Performance is moderate but limited by the lack of actual content. Security posture is weak due to the absence of HTTPS enforcement and security headers. The site exposes a default placeholder page which may leak information about server configuration. No privacy, cookie, or terms of service policies are present, indicating poor compliance with data protection regulations. No incident response or vulnerability disclosure information is available. Overall, the site represents an inactive or misconfigured domain with low trustworthiness and minimal business credibility. Strategic recommendations include properly configuring the website with HTTPS, removing default placeholder pages, implementing security best practices, and publishing privacy and cookie policies to improve compliance and user trust.

Too Much Media is a specialized software company based in Central New Jersey, focusing on affiliate marketing and membership site management software solutions. Their flagship product, NATS, is widely recognized and trusted by affiliates globally, positioning the company as a niche leader in affiliate program management software. The company maintains an active online presence with regular product updates and client support resources, targeting internet businesses and affiliate marketers. Technically, the website employs a traditional LAMP stack (PHP, Apache, MySQL) hosted on Amazon AWS infrastructure, with integration of common analytics and marketing tools such as Google Analytics and Facebook Pixel. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and modern web standards compliance. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks advanced security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. No incident response or security policy information is published, indicating potential gaps in formal security governance. Overall, the website is professional and credible but would benefit from enhanced privacy compliance, improved security posture, and better transparency regarding data protection and incident response to reduce risk and strengthen user trust.

S

SIA DB Risinājumi

weberp.lv

63

SIA DB Risinājumi is a Latvia-based IT company specializing in the development and maintenance of web-based information systems, primarily serving businesses in the logistics and transport sectors. With over 17 years of experience, the company offers tailored IT solutions focusing on maritime and land transport digitalization. Their business model centers on delivering customized web applications using open-source technologies, targeting Latvian enterprises requiring specialized logistics and business process systems. Technically, the website employs a modern technology stack including Yii2, PHP, MySQL, and front-end libraries such as jQuery and AJAX. The infrastructure appears to be Linux and Apache based. The site design is professional with good navigation and mobile optimization, though some accessibility and SEO aspects could be improved. Google Analytics is used for visitor tracking, but no visible cookie consent or privacy policies are present, indicating gaps in privacy compliance. From a security perspective, the site uses HTTPS (assumed but not explicitly confirmed), but lacks visible security headers and published security policies. No WHOIS data was retrievable due to query limits, limiting domain trust verification. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the security posture is moderate but could be enhanced by adding security headers, privacy policies, and incident response information. The overall risk is moderate with no critical issues detected. Strategic recommendations include improving privacy compliance, implementing security headers, publishing security and incident response policies, and enhancing WHOIS transparency to build greater trust and compliance.

The website for isurvey-group.com is currently inaccessible and displays a default cPanel error page indicating server or DNS misconfiguration. The domain is registered since 2010 with Domeneshop AS, but no active website content or business information is available. The only contact information found is a webmaster email address. The lack of HTTPS, security headers, privacy policies, and any business-related content suggests the site is either abandoned or improperly configured. This severely limits the ability to assess the company's market position, services, or technical maturity. From a security perspective, the absence of HTTPS and security best practices poses risks if the site were operational. Overall, the website's digital presence is minimal and non-functional, resulting in a low trust and credibility score.

The website apek.ee is currently inaccessible, returning a 503 Service Unavailable error indicating maintenance or capacity issues. Due to this, no business content, metadata, or contact information is available for analysis. The domain is registered since 2016 with Zone Media OÜ, a reputable Estonian registrar, suggesting legitimacy of the domain ownership. The technical infrastructure is basic, running on an Apache server hosted by Zone Media OÜ. Security posture is weak as no security headers or policies are detected, and the site lacks privacy and cookie policies. Overall, the site is not currently functional for end users, which severely limits its business and security effectiveness.

C

Control Web Panel

centos-webpanel.com

52

Control Web Panel (CWP) is a free Linux web hosting control panel designed to simplify server management for dedicated and VPS servers without requiring extensive SSH console use. The website positions itself as a niche open-source alternative to commercial control panels, offering a broad feature set including web server management, PHP configuration, user and DNS management, email services, security features, and database administration. The business model includes free software with optional paid PRO support and additional services such as AntiDDoS Proxy and Service Monitoring. The site has an active social media presence and a long-standing domain registration dating back to 2013, supporting its legitimacy. Technically, the website runs on WordPress 4.9.23 with various plugins and uses technologies like Apache, Nginx, Varnish, PHP, and Postfix for backend services. The site includes Google Analytics for tracking and has moderate performance and basic mobile optimization. SEO practices are good with proper meta tags and structured navigation. However, some components like WordPress and jQuery are outdated, posing potential security risks. From a security perspective, the site uses HTTPS and displays a SiteLock badge indicating PCI compliance and malware scanning. It implements several security best practices such as ModSecurity with OWASP rules, CSF Firewall, and user-level security limits. However, DNSSEC is not enabled, and no explicit HTTP security headers were detected in the HTML content. The absence of a cookie consent mechanism and outdated software versions are notable compliance and security gaps. Overall, the website is functional, professional, and moderately secure but would benefit from updates to software components, enhanced security headers, and improved privacy compliance mechanisms. The domain registration data is consistent with the website's claims, supporting its trustworthiness. Strategic improvements in security and privacy compliance will enhance the site's credibility and reduce risk.

The website epicenter.ee is currently inaccessible due to an HTTP 403 Forbidden error, indicating that access to the site's content is blocked or restricted by server configuration or security policies. As a result, no metadata, structured data, contact information, or business content is available for analysis. The domain is registered to Zone Media OÜ since 2012, which suggests a legitimate and established presence in Estonia. However, the lack of accessible content severely limits the ability to assess the company's business model, services, or compliance posture. Technically, the site runs on an Apache server hosted by Zone Media OÜ, but no further technology stack details or security headers are visible due to the access restriction. Security posture cannot be evaluated beyond the presence of HTTPS (implied by port 443) and the 403 error. Overall, the site scores very low on content quality, technical implementation, security, privacy compliance, and business credibility due to the blocked content.

The website corporatelife.ie currently displays a default cPanel error page indicating that the site is inaccessible due to server misconfiguration or DNS/IP address issues. No actual business content, branding, or services are presented, making it impossible to assess the company's market position or offerings. The only contact information available is a generic webmaster email address likely related to hosting support. From a technical perspective, the site is hosted on a cPanel environment with Apache server technology. The page is mobile responsive but lacks any meaningful content or SEO optimization. There is no evidence of HTTPS or SSL configuration, and no security headers or policies are present. No analytics or tracking technologies are detected. The security posture is weak due to the absence of HTTPS, security headers, and any published security or incident response policies. The site is effectively non-functional for end users, which poses a significant risk to business credibility and trust. Without proper configuration and content restoration, the site cannot serve its intended purpose. Overall, the site is currently non-operational and presents critical risks related to accessibility, security, and compliance. Immediate remediation is required to restore service, secure the site with HTTPS, and publish necessary policies to meet basic compliance and trust standards.

The website at emp.com currently serves only a default cPanel holding/error page indicating that the site is inaccessible due to possible IP address changes, server misconfiguration, or server migration. There is no actual business content, branding, or service information available on the site. The only contact information is a generic webmaster email address. The technical infrastructure appears to be based on Apache with cPanel hosting, but no modern CMS or frameworks are detected. The site lacks HTTPS and security headers, which significantly impacts its security posture. No privacy or cookie policies are present, indicating poor compliance with data protection regulations. Overall, the site is not operational as a business website and presents a high risk due to lack of security and transparency.

The website pharmacarepremium.net currently serves only a generic placeholder page provided by cPanel, indicating that the site is either down, misconfigured, or inactive. There is no business content, branding, or service information available, and the only contact information is a generic webmaster email address. The lack of HTTPS and security headers further reduces the site's trustworthiness and security posture. Technically, the site is hosted on a cPanel environment but lacks any modern web technologies or CMS. Overall, the site is not operational as a business website and provides no value to visitors or customers.

A

AskApache

askapache.com

71

AskApache is a specialized web development resource focusing on advanced topics such as Apache server configuration, .htaccess rules, Linux administration, PHP programming, and security. The site targets technical audiences including server administrators, WordPress bloggers, programmers, and security enthusiasts. It offers detailed tutorials, code examples, and online tools to support its community. The business model relies on content publishing combined with advertising revenue and providing useful developer utilities. Technically, the site is built on WordPress, uses modern web technologies like jQuery, Google Tag Manager, and Google Adsense for monetization. The site is well-structured, mobile-optimized, and includes comprehensive SEO and accessibility features. Security posture is good with HTTPS enabled and no visible vulnerabilities, though explicit security policies and incident response contacts are not found. Privacy compliance is strong with a detailed cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site is trustworthy and professionally maintained, serving a niche but dedicated technical audience.

F

Festival Krapoldi

krapoldi.at

40

The KRAPOLDI Festival website represents a well-established cultural event based in Innsbruck, Austria, focusing on international ensembles in clownery, new circus, and street theater. The festival offers a mix of free and ticketed performances, aiming to be accessible and engaging for a diverse audience including families and local residents. The site demonstrates a strong market position within the regional cultural landscape, supported by numerous sponsors and partners. Technically, the website is built on WordPress with a modern tech stack including Apache, jQuery, and various plugins for SEO, performance, and multimedia content. The site is mobile-optimized, fast-loading, and SEO-friendly, with multilingual support for German, English, and Italian. Security posture is adequate with HTTPS and valid SPF records, but could be improved by enabling HSTS, OCSP stapling, and adding DMARC. Privacy compliance is well addressed with a comprehensive privacy and cookie policy and a consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and well-maintained, though some security enhancements are recommended.

T

The Storebrand Group

storebrand.com

77

The Storebrand Group is a well-established financial services company operating primarily in the Nordic region, specializing in long-term savings, insurance, asset management, and occupational pensions. With a domain age of over 28 years and a strong market position as Norway's largest asset manager, the company demonstrates maturity and trustworthiness. The website content is professionally presented, targeting both private and corporate customers with clear navigation and relevant business information. Technically, the site uses modern web technologies including Apache, jQuery, and Google Tag Manager, hosted on Google Cloud infrastructure, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced, appropriate security headers, and a valid SSL certificate covering multiple related domains. Privacy compliance is evident with a comprehensive privacy and cookie policy and consent mechanisms in place. Overall, the site reflects a high level of digital maturity and business credibility.

S

Schlüsselbauer Technology GmbH & Co KG

schluesselbauer.com

40

Schlüsselbauer Technology GmbH & Co KG is an Austrian-based medium-sized manufacturing company specializing in special machine construction for the concrete industry, sustainable building materials production, and environmental technology consumables. The company holds a strong international market position as a leading complete provider in its sector, targeting B2B customers in construction and environmental industries. Their website reflects a professional and consistent brand image with clear contact channels and social media presence. Technically, the website is built on an Apache server with a CMS likely to be Redaxo, using standard web technologies and Bootstrap for responsive design. However, the site lacks a valid SSL certificate, which significantly impacts its security posture. Security headers are minimal, and no advanced security policies or incident response information is publicly available. Privacy compliance is supported by a cookie consent mechanism and a comprehensive privacy policy hosted on a related corporate domain. Overall, the website is functional and professional but requires urgent improvements in SSL implementation and security best practices to enhance trust and compliance.

A

Alpine Brands GmbH & Co KG

goal.at

40

GOAL is an established Austrian beverage brand specializing in fruit-based refreshing drinks with reduced sugar content and added vitamins. The company targets consumers seeking healthier alternatives to traditional soft drinks, positioning itself as a trusted brand with a history dating back to 1929. The website effectively communicates product details, brand history, and contact information, supporting a positive market presence in retail and C&C sectors. Technically, the website is built on WordPress using the GeneratePress theme and Kadence Blocks, leveraging modern JavaScript libraries such as jQuery and Flickity for interactive elements. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in loading speed and technical optimizations. From a security perspective, the site uses HTTPS with modern TLS protocols but lacks advanced security headers and features like HSTS and OCSP stapling. Cookie consent mechanisms are implemented in compliance with GDPR, and privacy policies are clearly presented. However, there is no visible incident response or vulnerability disclosure information, which could be enhanced to improve trust. Overall, the website presents a professional and trustworthy digital presence with minor technical and security improvements recommended to strengthen its posture and user trust.

H

Honigmayr Honigmanufaktur

honigmayr.at

40

Honigmayr is a medium-sized Austrian honey manufacturer and retailer specializing in high-quality honey products sourced from the best regions worldwide. The company emphasizes product traceability through its Beetracker system and offers a diverse product range including classic, organic, and specialty honey editions. The website is built on WordPress with a modern tech stack and demonstrates strong digital maturity with multilingual support, SEO optimization, and mobile responsiveness. Security posture is adequate with HTTPS and no critical vulnerabilities detected, though improvements in security headers and OCSP stapling are recommended. Privacy compliance is robust with a comprehensive privacy policy and cookie consent mechanism. Overall, the business presents a trustworthy and professional online presence with clear contact information and active social media engagement.

A

ALPINE BRANDS GmbH & Co KG

auer-waffeln.at

40

Auer is a well-established Austrian brand specializing in gourmet waffle products since 1920, operated by ALPINE BRANDS GmbH & Co KG. The company offers a range of premium waffle specialties and confectionery products targeting consumers who appreciate high-quality gourmet foods. The website reflects a mature digital presence with a WordPress CMS enhanced by Elementor and optimized with WP Rocket. It includes comprehensive metadata, structured data, and social media integration, supporting good SEO and user engagement. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though improvements such as HSTS and additional security headers are recommended. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, providing clear contact information and business legitimacy.

E

Energieberatung Burgenland GmbH

eb-bgld.at

40

Energieberatung Burgenland GmbH operates a professional and product-neutral energy consulting service focused on the Burgenland region in Austria. The company provides free energy advice, funding guidance, and support for energy communities, targeting local residents and municipalities. The website is built on WordPress with caching and social media integration, delivering a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and basic headers but lacks advanced protections like HSTS and OCSP stapling. Privacy compliance is partial due to absence of cookie consent mechanisms despite usage of Google Tag Manager. Overall, the domain registration and DNS data align well with the business claims, indicating legitimacy and trustworthiness.

B

Betty Barclay

bettybarclay-group.com

50

Betty Barclay Group is a well-established fashion retail company specializing in exclusive women's clothing and managing multiple fashion brands. The website serves as a corporate portal presenting the group's brands, corporate information, and links to online shops and B2B services. The target audience primarily includes women interested in fashion and retail partners. The company maintains a strong market position in the retail sector in Germany with a large operational size. Technically, the website is built on a modern stack including PHP 8.2, Apache, and Shopware CMS, enhanced with various marketing and analytics tools such as Google Tag Manager, Econda, and 8select. The site demonstrates good performance, mobile optimization, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS with secure cookie attributes and no detected vulnerable cipher suites. However, it lacks HSTS and OCSP stapling, which are recommended for enhanced security. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligning with GDPR requirements. Overall, the website presents a professional, trustworthy, and secure digital presence with minor areas for improvement in security headers and accessibility. The domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

PDW Logistik GmbH operates as a logistics and delivery service provider specializing in the distribution of print media within Austria. As part of the Mediaprintkonzern, it manages the home delivery of approximately 475,000 daily print media items and supports self-service sales through dedicated devices. The website targets print media distributors, delivery partners, and customers, emphasizing recruitment of delivery partners and service information. The business model focuses on logistics services within the media sector, positioning PDW as a key player in Austrian print media distribution. Technically, the website employs a traditional Apache server with a frontend built on Bootstrap 4.5.2, jQuery, and FontAwesome Pro. While the site is mobile optimized and uses modern libraries, it lacks HTTPS support, which is a significant security and trust concern. Performance metrics are unavailable or incomplete, but the site structure and navigation are clear and professional. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented via Didomi. From a security perspective, the absence of a valid SSL certificate and HTTPS support critically undermines the site's security posture. No advanced security headers or vulnerability disclosure policies are present. Cookies are set with HttpOnly flags, but the lack of encryption exposes users to potential risks. The domain registration data is consistent with the business identity, indicating legitimacy, but the security gaps pose risks to user trust and data protection. Overall, PDW Logistik GmbH's website is professionally designed and content-rich but requires urgent security improvements, particularly the implementation of HTTPS and enhanced security headers. Strengthening these areas will improve user trust, compliance, and overall digital maturity.

Bharat Fritz Werner Ltd. (BFW) is a well-established Indian manufacturer specializing in Vertical Machining Centers (VMCs) and CNC machine tools, boasting over 60,000 global installations. The company targets industrial manufacturing sectors and offers an online platform for machine enquiries and purchases. The website reflects a professional and consistent brand presence with clear contact details and social media integration. Technically, the site uses a modern JavaScript and CSS stack including jQuery, Bootstrap, and FontAwesome, hosted on GoDaddy infrastructure. However, the absence of a valid SSL certificate and HTTPS significantly undermines the security posture. While forms implement CSRF tokens and OTP verification, the lack of HTTPS and security headers exposes users to risks. Privacy compliance is minimal, with no cookie consent mechanism despite cookie usage. Overall, the site is functional and business-focused but requires urgent security improvements to protect user data and enhance trust.

S

SCHLÜSSELBAUER Ecotechnic GmbH & Co KG

ecotechnic.at

23

SCHLÜSSELBAUER Ecotechnic GmbH & Co KG is an Austrian medium-sized company specializing in environmental technology, focusing on innovative water management solutions such as rainwater utilization, treatment, and infiltration, alongside concrete product manufacturing. The company serves both domestic and international markets with a B2B business model. The website presents a professional and consistent brand image with clear business and contact information, targeting customers interested in sustainable water and construction technologies. Technically, the website uses Apache server and UIkit framework but lacks a valid SSL certificate, resulting in no HTTPS support and weak security posture. The absence of modern TLS protocols and security headers further reduces the security score. Privacy compliance is partially addressed with a cookie consent mechanism and privacy policy, but GDPR compliance is not fully evident. Overall, the site is functional and informative but requires significant security improvements to protect user data and enhance trust.

S

SCHLÜSSELBAUER Geomaterials GmbH

geomaterials.eu

24

SCHLÜSSELBAUER Geomaterials GmbH operates a website focused on sustainable insulation materials made from recycled glass, targeting the construction and infrastructure sectors primarily in Austria. The company offers products such as Schaumglas, Blähglas, and RED Blähglasschotter, emphasizing environmental sustainability and technical performance. The website presents detailed product information, reference projects, and downloadable technical and safety documents, supporting a professional business presence. Technically, the site uses Apache server technology, the UIkit framework, and likely the REDAXO CMS platform. However, the website lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. Other security features such as HSTS, DMARC, DNSSEC, and CAA records are missing, reducing the overall security posture. Privacy compliance is partially addressed with a cookie consent mechanism and a privacy policy page, but GDPR compliance indicators are limited. Contact information is clearly provided, including phone, email, and physical address, alongside active social media channels. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

S

SIAT

siat.com

40

SIAT S.p.A is a medium-sized Italian manufacturing company specializing in secondary packaging machinery. The company offers a broad range of products including taping machines, case erectors, wrapping machines, strapping tools, and flexographic printing machines, supported by after-sales service and spare parts. The website reflects a professional and consistent brand presence targeting industrial clients requiring reliable packaging solutions. Technically, the site is built on WordPress with a modern front-end stack including Bootstrap and jQuery, and integrates Google Analytics and Iubenda for privacy compliance. Security posture is adequate with valid SSL and several security headers, but the absence of modern TLS protocols and OCSP stapling indicates room for improvement. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is well-structured, trustworthy, and serves its business purpose effectively.

The Kverneland Group's website at kvgportal.com currently serves as a simple notification page informing partners that the partner portal has moved to a new URL. The content is minimal and primarily targeted at existing partners, providing multilingual links and instructions to update bookmarks. The business is positioned as a manufacturing entity with a partner network, but the website itself does not provide detailed business information or services beyond portal access guidance. Technically, the site is hosted on an Apache server with basic DNS configuration but lacks a valid SSL certificate and modern TLS support, resulting in an insecure HTTP-only connection. Security headers are partially implemented but insufficient to ensure robust security. No privacy, cookie, or terms of service policies are present, and no contact information or forms are available on the site. Overall, the website's digital maturity is low, with poor SEO, accessibility, and performance characteristics. The security posture is weak due to missing HTTPS and lack of DNSSEC. The domain registration appears consistent and legitimate, but the absence of critical security controls and policies poses risks. Strategic improvements in SSL deployment, security headers, and privacy compliance are recommended to enhance trust and security.

E

ENVASES Group

minikeg.blog

30

The MiniKEG Blog is operated by the ENVASES Group, a medium-sized German manufacturing company specializing in innovative packaging solutions, particularly 5-liter party kegs. The company holds a strong market position as a world leader in party keg production and packaging innovation. The website serves as an online magazine targeting beverage industry professionals and consumers interested in party kegs, providing product news, quality insights, and customer stories. Technically, the site is built on WordPress with the Divi theme and uses common plugins for cookie consent and newsletter management. However, the site suffers from a critical security flaw: the SSL certificate is invalid or missing, resulting in no HTTPS support and no modern TLS protocols enabled, which significantly impacts security posture. Privacy compliance is addressed with a privacy and cookie policy and consent mechanism, but no terms of service or security policies are published. Contact information is clearly provided, enhancing business credibility. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect users and business reputation.

C

ConSol* Consulting & Solutions Software Poland Sp. z o.o.

consol.pl

74

ConSol* Consulting & Solutions Software Poland Sp. z o.o. is a reputable IT service provider specializing in custom IT solutions, software architecture, web application development, and managed services. The company serves a diverse range of industries with a focus on digital transformation and technological excellence. Their market position is reinforced by notable clients and an ISO 27001 certification, indicating a strong commitment to information security. Technically, the website is built on TYPO3 CMS with modern frameworks and libraries, ensuring good performance, mobile optimization, and accessibility. Security measures include robust HTTP headers, valid SSL certificates, and no detected vulnerabilities, although enabling OCSP stapling and enhancing HSTS settings could improve security further. Privacy compliance is well addressed with comprehensive privacy and cookie policies, consent mechanisms, and moderate user tracking via Matomo analytics. Overall, the website demonstrates high professionalism, trustworthiness, and technical maturity, supporting the company's credibility and business goals.

C

ConSol Consulting & Solutions Software GmbH

consol.com

75

ConSol Consulting & Solutions Software GmbH is a medium-sized, owner-managed IT service provider founded in 1984 in Germany. The company specializes in delivering customized IT solutions, supporting clients throughout the entire software lifecycle with a focus on agility, innovation, and technical excellence. Their offerings include IT consulting, software engineering, cloud and platform engineering, AI, automation, and product solutions based on open-source technologies. The company maintains strong partnerships with industry leaders such as Red Hat, AWS, SUSE, and others, reinforcing its market position. Technically, the website is built on TYPO3 CMS with modern front-end frameworks like Bootstrap and utilizes various JavaScript libraries for enhanced user experience. Analytics are implemented via Matomo and Google Tag Manager, with a comprehensive cookie consent mechanism ensuring GDPR compliance. The site is well-optimized for performance, mobile responsiveness, and accessibility. From a security perspective, the site uses HTTPS with a valid SSL certificate but lacks modern TLS protocol support and full HSTS implementation. Security headers are present but could be enhanced. No critical vulnerabilities or exposures were detected. The company demonstrates compliance with data protection regulations, supported by ISO 9001 and ISO 27001 certifications. Overall, ConSol presents a professional, trustworthy, and technically mature online presence with strong business credibility and a good security posture. Strategic improvements in SSL/TLS configuration and security header enhancements are recommended to further strengthen their security stance.

N

NewMotoAsset GmbH

drivebeem.at

40

drivebeem is an Austrian company specializing in electric vehicle subscriptions, offering all-inclusive monthly plans that cover vehicle costs, insurance, maintenance, and charging solutions. The company targets both private customers and businesses, providing flexible subscription durations and additional services such as wallbox installations and photovoltaic energy solutions. The website is professionally designed with clear navigation and comprehensive content, including detailed FAQs and legal documentation. Technically, the site uses modern frameworks like Next.js and React, with content managed via a WordPress headless CMS. However, the website lacks a valid SSL certificate and proper HTTPS configuration, which significantly impacts its security posture. Security headers are partially implemented, but critical TLS protocols and certificate transparency are missing. Privacy compliance is generally good with a clear privacy policy, though no cookie consent mechanism was detected. Contact information is clearly presented, enhancing business credibility. Overall, the site is functional and informative but requires urgent security improvements to protect user data and build trust.

A

A1 Telekom Austria AG

befunkt.at

37

BE.funkt is a telecommunications service provider offering affordable mobile and internet tariffs primarily targeting consumers in Austria. The business operates as a joint project between Burgenland Energie and A1 Telekom Austria AG, leveraging the A1 network to provide 5G mobile services, eSIM options, and hardware sales such as smartphones and 5G webcubes. The website presents a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Swiper.js, ensuring good mobile optimization and user experience. However, the absence of a valid SSL/TLS certificate is a critical security flaw, exposing users to insecure connections. The site implements a cookie consent modal indicating some privacy compliance efforts, but lacks a visible privacy policy page and security policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to protect user data and trust.

A

Abzorba Games

abzorbagames.com

24

Abzorba Games is a medium-sized technology company specializing in mobile social casino games, founded in 2011 in Greece. The company offers multiplayer casino titles and B2B partnership opportunities to leverage brand presence in the social gaming market. The website is built on WordPress with Elementor and targets mobile social casino players and industry partners. Technically, the site uses standard web technologies but lacks HTTPS, which is a critical security gap. The cookie consent mechanism is implemented via OneTrust, indicating awareness of privacy compliance. However, no explicit security or incident response policies are present. Overall, the site presents a professional business image but requires urgent security improvements to protect user data and enhance trust.

I

Interlink

interlink.mr

27

Interlink is a medium-sized technology company based in Mauritania, specializing in AI-powered digital solutions for businesses and government institutions. With 15 years of experience, they offer services in e-governance, e-health, software development, messaging, geolocation, and cybersecurity. The website is built on modern technologies like Next.js and React, providing a professional and user-friendly experience. However, technical issues such as missing DNS records and an invalid SSL certificate undermine the security posture. No privacy or cookie policies are present, indicating compliance gaps. Contact information is clearly provided, supporting business credibility. Overall, the site demonstrates solid business presence but requires urgent security and technical improvements.

M

Mediaprint Zeitungs- und Zeitschriftenverlag Gesellschaft m.b.H. & Co KG

mediaprint.at

38

Mediaprint Zeitungs- und Zeitschriftenverlag Gesellschaft m.b.H. & Co KG is a leading Austrian media company operating prominent brands such as Kronen Zeitung and KURIER. The company offers a broad range of media-related services including corporate publishing, printing, logistics, marketing, and subscription management, positioning itself as a market leader in Austria's media sector. The website reflects a professional and consistent brand image targeting both consumers and business clients within Austria. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, FontAwesome Pro, and integrates Google Tag Manager and Didomi for analytics and consent management. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Privacy and cookie policies are well implemented with consent mechanisms, aligning with GDPR requirements. Overall, the site demonstrates good content quality and business credibility but requires urgent security improvements to meet modern standards.

Kombi Terminal Schkopau, operated under the HOYER GmbH brand, is a specialized logistics terminal focusing on container handling, hazardous goods storage, and rail transport connections. The website presents a professional and consistent brand image with clear service descriptions targeting logistics and transport businesses. The technical infrastructure is based on TYPO3 CMS running on Apache with Debian, employing modern security headers and HTTPS protocols, though some security configurations like HSTS are not fully enabled. The site uses tracking and consent management tools indicating moderate privacy compliance. No critical security vulnerabilities or blocking mechanisms were detected, but contact information is sparse on the main service page. Overall, the website reflects a medium-sized transportation business with a solid digital presence but could improve in security and privacy transparency.