Cyber Risk Compare from Cyber Tzar: the Enterprise Supply Chain Risk Management platform.

Select Domains or Companies
for when a domain name isn't in our directory of domain names
Primary Focus Domain/Company Name Type Actions
    Cyber Risk Compare: Your Gateway to Smarter Cyber Risk Management

    Understanding and managing cyber risks is critical for business success in today's digital landscape. Cyber Risk Compare empowers you with actionable insights to protect your organisation by comparing the cyber risk of your suppliers or competitors.

    Our platform makes cyber risk analysis effortless. Simply search for a domain name or organisation, and we will scan and profile it for potential cybersecurity vulnerabilities. Each vulnerability is assessed for its potential impact and likelihood using the Cyber Risk Quantification process developed by Cyber Tzar. This process delivers a clear and comprehensive Cyber Risk Score to allow you to compare up to six organisations (up to many thousands in the platform itself).

    We gather this data using Open Source Intelligence (OSINT), publicly available information from external-facing web applications, websites, and infrastructure, and from other external data sources on breach checks, companies' house, and security accreditation sites.

    Inspired by the visionary work of Brewster Kahle and Bruce Gilliat at Alexa Internet, Cyber Security Compare builds on their legacy by providing cutting-edge tools for today’s cybersecurity challenges.

    Cyber Risk Compare from Cyber Tzar: the Enterprise Supply Chain Risk Management platform.

    Please note: Learn more about OSINT and Alexa Internet on Wikipedia. Links open in new tabs.

    Popular Collections I
    No. ▲ Collection
    1 UK Premier League Football Clubs
    2 UK Major Government Suppliers
    Popular Collections II
    No. ▲ Collection
    1 UK Political Parties
    2 UK Academic Institutions
    Most recent scans
    No. ▲ Domain Organisation
    1 comstratgroup.com Communications Strategy Group Inc
    2 honda.az Honda Azerbaijan
    3 umrowing.com University Of Massachusetts Men's Rowing Association
    4 flipagram.com Flipagram
    5 specialcommunications.com
    Most requested domains
    No. ▲ Domain Organisation
    1 facebook.com Facebook
    2 youtube.com Youtube
    3 google.com Google
    4 twitch.tv Twitch
    5 reddit.com Reddit, Inc.
    Highest scoring Industry sectors
    No. ▲ Industry Average Score
    1 Fund Raising 898.50
    2 Paper & Forest Products 880.00
    3 Outsourcing/Offshoring 876.00
    4 Government Relations 840.50
    5 International Affairs 817.00
    6 Printing 814.20
    7 Research 814.00
    8 Textiles 811.33
    9 Venture Capital & Private Equity 807.33
    10 Media Production 806.00
    Lowest scoring Industry sectors
    No. ▲ Industry Average Score
    1 Dairy 520.67
    2 Arts And Crafts 658.00
    3 Packaging And Containers 660.00
    4 Warehousing 660.00
    5 Individual & Family Services 674.67
    6 Sporting Goods 684.50
    7 Utilities 688.50
    8 Civil Engineering 689.75
    9 Railroad Manufacture 693.00
    10 Shipbuilding 693.67
    Most common Issues
    No. ▲ Issue Risk Family Risk Group Potential Impact Severity Likelihood Probability Count
    1 Timestamp Disclosure - Unix Information Disclosure 24 Very Low Personal Data (Privacy) impact Unlikely 1,517,219
    2 Cross-Domain JavaScript Source File Inclusion Cross-Site Scripting (XSS) 13 Medium Cyber Attack (Technical) impact Possible 456,683
    3 Base64 Disclosure Information Disclosure 24 Very Low Personal Data (Privacy) impact Unlikely 315,451
    4 Absence of Anti-CSRF Tokens Web Security 18 Low Cyber Attack (Technical) impact Possible 274,901
    5 Retrieved from Cache Information Disclosure 24 Very Low Personal Data (Privacy) impact Unlikely 274,182
    6 Strict-Transport-Security Header Not Set Web Security 14 Low Cyber Attack (Technical) impact Likely 233,283
    7 X-Content-Type-Options Header Missing Web Security 18 Low Cyber Attack (Technical) impact Possible 224,180
    8 Sec-Fetch-User Header is Missing Web Security 25 Very Low Cyber Attack (Technical) impact Rare/Remote 198,535
    9 Storable and Cacheable Content Web Security 24 Very Low Cyber Attack (Technical) impact Unlikely 193,728
    10 Timestamp Disclosure - Unix Information Disclosure 24 Very Low Personal Data (Privacy) impact Unlikely 169,330
    Most common serious Issues
    No. ▲ Issue Risk Family Risk Group Potential Impact Severity Likelihood Probability Count
    1 Cross-Domain JavaScript Source File Inclusion Cross-Site Scripting (XSS) 13 Medium Cyber Attack (Technical) impact Possible 456,683
    2 Strict-Transport-Security Header Not Set Web Security 14 Low Cyber Attack (Technical) impact Likely 233,283
    3 Sub Resource Integrity Attribute Missing Web Security 6 Medium Cyber Attack (Technical) impact Very Likely 148,817
    4 Insufficient Site Isolation Against Spectre Vulnerability Web Security 8 High Cyber Attack (Technical) impact Possible 141,781
    5 Sub Resource Integrity Attribute Missing Web Security 6 Medium Cyber Attack (Technical) impact Very Likely 116,249
    6 Content Security Policy (CSP) Header Not Set Content Security Policy (CSP) 14 Low Cyber Attack (Technical) impact Likely 71,392
    7 Server Leaks Version Information via "Server" HTTP Response Header Field Information Disclosure 14 Low Personal Data (Privacy) impact Likely 60,729
    8 Cross-Domain Misconfiguration Cross-Origin Resource Sharing (CORS) 8 High Cyber Attack (Technical) impact Possible 60,530
    9 Cross-Domain Misconfiguration Cross-Origin Resource Sharing (CORS) 8 High Cyber Attack (Technical) impact Possible 49,807
    10 Content Security Policy (CSP) Header Not Set Content Security Policy (CSP) 14 Low Cyber Attack (Technical) impact Likely 36,570