buildtestsolutions.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-07 · ok HTTP/1.1 200 1710 ms crawled 2026-05-07

DE · 63.176.8.218 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Build Test Solutions
Description: Build Test Solutions offer building diagnostics, air leakage testing, thermal performance testing/monitoring, and U-value measurement equipment in the UK.
Language: en-GB
Canonical: https://www.buildtestsolutions.com

Open Graph

url: https://www.buildtestsolutions.com
title: Build Test Solutions
description: Build Test Solutions offer building diagnostics, air leakage testing, thermal performance testing/monitoring, and U-value measurement equipment in the UK.

Technology

CDN: Netlify
CMS: Nuxt

Third-party hosts loaded (2)

cdn.sanity.io×17
snap.licdn.com×1

Social

Contact

Email

enquiries@buildtestsolutions.com

Phone

+443334442870

Address

st Solutions LtdRegistered in England and Wales, company no. 09910

Registration

Registrar

Dynadot Inc

Created

2015-12-09

Expires

2027-12-09 567 days left

Updated

2025-07-31

Name servers

salvador.ns.cloudflare.com
sarah.ns.cloudflare.com

DNS records live

NS

salvador.ns.cloudflare.com
sarah.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Apple
Atlassian
Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:shops.shopify.com include:spf1.opencrm.co.uk ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificates

Loading certificate

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.buildtestsolutions.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
permissions-policy: fullscreen=(self "https://*.google.com" "https://*.youtube.com")
x-content-type-options: nosniff
content-security-policy: base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: cdn.sanity.io cdn.shopify.com *.googletagmanager.com *.google-analytics.com *.google.co.uk *.youtube.com *.ytimg.com *.linkedin.com; object-src none; script-src-attr 'none'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' *.googletagmanager.com *.youtube.com *.licdn.com; upgrade-insecure-requests; default-src 'self'; child-src 'self' *.google.com *.youtube.com *.doubleclick.net; connect-src 'self' *.sanity.io build-test-solutions.myshopify.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.google.co.uk *.youtube.com *.doubleclick.net *.linkedin.com;
strict-transport-security: max-age=31536000; includeSubDomains; preload;
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: same-origin

Links to (12)

Linked from (1)

sustainableenergyassociation.com×2