GeneralInformation

Hostnames	mots.go.th node-1dy.ll-118-174.static.totisp.net
Domains	mots.go.th totisp.net
Country	Thailand
City	Rayong
Organization	thalad sao,Lop Buri Province
ISP	TOT Public Company Limited
ASN	AS131293

WebTechnologies

JavaScript frameworks

JavaScript libraries

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443 8010

-1984879341 | 2024-05-17T11:27:02.844533

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Fri, 17 May 2024 11:27:02 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://118.174.23.6/
Strict-Transport-Security: max-age=31536000; includeSubDomains

-1209943924 | 2024-05-17T11:31:14.766643

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Fri, 17 May 2024 11:31:14 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2697
Connection: keep-alive
X-Powered-By: Next.js
ETag: "a89-CUrJ5+9wnFPZUpQsAViFOTkYnzs"
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            69:20:23:b5:21:c5:8a:ec:bd:0c:bd:79
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=AlphaSSL CA - SHA256 - G4
        Validity
            Not Before: Oct 25 02:47:37 2023 GMT
            Not After : Nov 25 02:47:36 2024 GMT
        Subject: CN=*.mots.go.th
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:ed:23:62:38:5d:0c:2d:7f:81:01:e6:8e:1e:
                    8e:10:ee:a2:53:7f:e2:1a:53:f3:22:71:03:29:7a:
                    58:80:6d:07:f6:c6:b5:13:3c:94:8d:38:59:b8:cb:
                    cd:25:af:16:66:13:b2:be:e8:4b:3c:65:2f:7d:c1:
                    13:03:06:df:3b:b6:c3:30:9d:99:56:77:dd:92:c9:
                    fb:fa:04:cb:cd:d0:be:25:71:2d:51:ef:0f:91:41:
                    2a:02:58:5f:6e:ee:48:71:a4:9d:b1:1f:54:35:93:
                    16:c9:84:5a:44:ad:e4:0c:2e:72:7c:26:f9:08:0d:
                    ba:5a:b9:65:ad:b8:ab:c2:4f:e0:3b:b6:1a:ec:01:
                    63:04:ec:8f:eb:ed:df:f2:5a:b0:d4:ef:d0:87:3c:
                    97:3a:be:1e:6f:5a:0b:3b:b1:37:9f:3b:49:6c:ed:
                    5e:58:14:7a:8c:aa:f0:30:4a:a5:65:99:0f:05:d3:
                    99:4b:59:80:0b:e9:ab:fc:92:4d:f5:d5:50:b3:43:
                    3f:11:a5:ad:cb:54:c1:d2:f0:39:1c:59:0e:f9:15:
                    7a:02:41:98:9e:f2:73:15:93:46:88:cb:7d:2f:a2:
                    c1:c2:b6:7c:c6:fd:07:7a:ee:35:4c:61:a6:58:79:
                    65:6d:43:1a:9a:3d:0d:df:a3:35:6f:41:2d:01:e2:
                    9c:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/alphasslcasha256g4.crt
                OCSP - URI:http://ocsp.globalsign.com/alphasslcasha256g4
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.4146.10.1.3
                  CPS: https://www.globalsign.com/repository/
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/alphasslcasha256g4.crl
            X509v3 Subject Alternative Name: 
                DNS:*.mots.go.th, DNS:mots.go.th
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                4F:CB:AC:A8:C2:EF:AB:DD:83:6F:6B:BF:CE:98:3D:5C:58:25:76:15
            X509v3 Subject Key Identifier: 
                0C:D4:51:BE:49:16:1A:81:56:C0:7D:2D:EE:B6:8C:34:CE:1D:F0:CF
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 25 02:47:38.212 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:66:EF:97:31:EA:9A:7D:C8:70:3F:B6:30:
                                88:CF:ED:59:7F:59:11:4A:08:25:B4:2E:86:4D:66:9F:
                                A1:72:50:F9:02:21:00:E3:F6:DE:06:C7:75:C4:5C:0D:
                                8B:2F:03:6C:92:CA:C8:90:3B:1F:99:E9:BA:83:A0:13:
                                30:65:AA:37:B4:34:13
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct 25 02:47:38.234 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:5C:63:1A:48:C7:0E:B8:7B:B1:1A:BA:3F:
                                DF:D4:14:1F:F2:3F:78:82:E3:E7:2C:73:33:0F:84:3C:
                                29:EC:AF:69:02:20:53:47:FC:B7:71:7D:F4:AC:08:8E:
                                73:A8:C4:28:EB:31:7B:DE:F4:8C:77:FF:91:E2:A2:F5:
                                4A:BE:24:CA:21:E0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 25 02:47:38.261 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AE:60:D4:58:F0:BA:76:7D:18:40:06:
                                77:E4:31:99:B7:56:C7:1E:DD:0C:75:0A:80:FA:CC:51:
                                02:0E:00:70:98:02:20:2C:F2:DA:97:3C:EF:92:B7:7E:
                                C9:07:30:AB:BC:61:38:9B:B9:2D:B8:9E:0D:01:77:44:
                                F6:1B:E3:7D:04:68:7D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3d:b5:4a:73:bf:16:39:24:9d:b3:dd:27:90:58:f2:95:a1:87:
        da:c0:c8:97:18:da:78:3f:ea:f6:f5:bd:c1:e2:08:04:03:7e:
        db:65:17:41:31:ea:97:f0:0d:d0:10:f0:2d:c0:2d:c7:79:10:
        a9:a7:c1:32:e0:fc:b8:ee:80:18:89:ac:1b:79:ef:45:af:bf:
        41:34:61:0b:79:e1:f7:2e:7d:d4:4d:34:20:0f:bc:d9:ee:37:
        64:91:29:b8:37:3d:19:fb:9c:02:12:e4:9b:dc:b7:a0:15:e6:
        08:1e:b1:d8:90:5a:fb:ca:49:9d:72:ef:72:bf:a5:46:cc:9d:
        16:8a:ac:da:5e:4a:28:62:c4:e0:c6:66:cc:0a:9a:10:36:41:
        25:b3:fb:9a:28:ec:56:88:91:ae:51:41:29:25:27:1e:71:90:
        6e:1f:52:2f:31:17:12:5a:5d:8d:20:69:3f:ad:82:8d:3a:5f:
        32:ab:ac:d6:d2:dd:25:ed:a1:c6:1e:7e:7a:d8:77:af:82:27:
        f6:f9:32:a3:79:1e:e8:d4:f7:bd:6e:e2:d5:e4:6c:7e:80:3c:
        96:c8:ac:13:2a:12:f7:08:20:8c:95:c1:d3:88:82:09:83:6e:
        2c:08:4e:96:82:db:3d:04:94:82:82:9d:3e:ec:b0:04:6a:db:
        48:95:85:d5

118.174.23.6

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1984879341 | 2024-05-17T11:27:02.844533
80 / tcp

nginx1.16.1

-1209943924 | 2024-05-17T11:31:14.766643
443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

118.174.23.6

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1984879341 | 2024-05-17T11:27:02.844533 80 / tcp

nginx1.16.1

-1209943924 | 2024-05-17T11:31:14.766643 443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

-1984879341 | 2024-05-17T11:27:02.844533
80 / tcp

-1209943924 | 2024-05-17T11:31:14.766643
443 / tcp