indexo.dev

bankwithbos.com

.com crawl

First seen 2026-05-06 · Last seen 2026-05-12 · ok HTTP/1.1 200 2690 ms crawled 2026-05-12

US · 199.96.4.104 · AS19065 Levi, Ray & Shoup, Inc.

Reputation 100/100

sector finance type homepage

HTML metadata

Title
Bank of Springfield | Bank Boldly
Description
Bank Boldly! BOS branches offer retail and business banking, financial planning, and insurance services. Routing Number 071108559.
Language
en
Canonical
https://www.bankwithbos.com

Open Graph

url
https://www.bankwithbos.com
title
Bank of Springfield
locale
en_US
site name
Bank of Springfield
description
Bank of Springfield has financial solutions for everyone. Work with BoS to manage your personal checking and savings accounts as well as your business's loans..

Technology

Analytics
  • Google Tag Manager
Fonts
  • Font Awesome
  • Google Fonts
Third-party hosts loaded (9)
  • fonts.googleapis.com×2
  • web5.secureinternetbank.com×2
  • cdnjs.cloudflare.com×1
  • code.jquery.com×1
  • fonts.gstatic.com×1
  • kit.fontawesome.com×1
  • plugin-dev.antilles.chat×1
  • use.fontawesome.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
2600 Stevenson Dr., 62703, Springfield, IL

Registration

Registrar
GoDaddy.com, LLC
Created
2007-09-20
Expires
2026-09-20 124 days left
Updated
2023-09-15
Name servers
  • ns31.domaincontrol.com
  • ns32.domaincontrol.com

DNS records live

NS
  • ns31.domaincontrol.com
  • ns32.domaincontrol.com
MX
  • 10 us-smtp-inbound-1.mimecast.com
  • 10 us-smtp-inbound-2.mimecast.com
TXT
  • cisco-ci-domain-verification=479b53053fb33b2aec70e6a77f617b536c615fc04970b43c7b45357dcaba9fab
  • apple-domain-verification=fM4VXVDHcc7wDkYA
  • bigtsk2j32t6vr3bn49pohcmub

Email authentication strong

SPF
v=spf1 ip4:149.72.198.89 ip4:208.93.26.28 ip4:216.8.90.14 ip4:166.73.7.20 ip4:208.93.26.27 ip4:208.235.248.20 ip4:208.93.24.0/21 ip4:50.58.9.15 ip4:50.58.9.15 ip4:198.37.157.170 ip4:198.37.157.178 ip4:50.31.62.125 ip4:50.31.62.131 ip4:209.182.248.78 ip4:209.182.249.78 include:spf.lrswebsolutions.com include:us._netblocks.mimecast.com include:spf.cashedge.com include:gateways.firstdata.com include:mailgun.org include:amazonses.com ip4:167.89.11.238 -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:42197156bf21418@rep.dmarcanalyzer.com; ruf=mailto:42197156bf21418@for.dmarcanalyzer.com; ri=86400; sp=reject; fo=1
policy: reject (enforced) · sp=reject
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMWPlOAJVA6yeMDBk2i9/ez013PHbQhVnRlbwSW0HnkilFPQYVVnMY+DCNNQrYmzeteYzB1tsUQbBca5Wh…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+sI08ARKooSr5Km9QZcp85MnUGNaWdmwwLAA+cI6kjTiI0Nvy76fjdAw+ZR+dx1WAZiNoQEYzm7s1gl+n+…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2025-10-14 to 2026-10-12
Expires in 147 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.bankwithbos.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src 'self' data: * https://071108559.securebanksolutions.com https://www.google-analytics.com https://www.googletagmanager.com https://bankwithbos.com https://www.bankwithbos.com web5.secureinternetbank.com web6.secureinternetbank.com https://spreadsheets.google.com/ https://api.mapbox.com/ https://a.tiles.mapbox.com https://b.tiles.mapbox.com; worker-src 'self' blob: ; child-src blob: ; img-src 'self' data: blob: https://071108559.securebanksolutions.com https://www.google-analytics.com *; style-src 'unsafe-inline' 'self' blob: * https://reports.hrmdirect.com/employment/default/sm/settings/dynamic-embed/dynamic-iframe-embed-css.php; script-src 'unsafe-eval' 'unsafe-inline' 'self' * https://www.google-analytics.com https://ssl.google-analytics.com https://www.googletagmanager.com web5.secureinternetbank.com web6.secureinternetbank.com s.yimg.com/wi/ytc.js sp.analytics.yahoo.com https://reports.hrmdirect.com/employment/default/sm/settings/dynamic-embed/dynami
strict-transport-security
max-age=31536000

Links to (14)

Linked from (2)