# Ministry of Defense (Ministry of War and Patriotic Defense)
**Sector:** Military / Defense
**Date:** 2026-03-03
**Source:** THOT Domain Intel + Manual Recon

## Domains
| Domain | Status |
|--------|--------|
| `defense.gov.bf` | UP |
| `www.defense.gov.bf` | UP (canonical) |

## Hosting & Infrastructure
- **IP:** Unknown (WhatWeb could not resolve — may indicate CDN or rotating IPs)
- **Server:** Apache (version hidden)
- **PHP:** 7.3.31 (exposed via X-Powered-By header)
- **WHOIS Registrant:** SIG (Service d'Information du Gouvernement)
- **Domain Created:** 2025-03-11 (very new — less than 1 year old)
- **Nameservers:** Custom Mooré-language names:
  - `ntoo.gouv.bf`
  - `wobgo.gouv.bf`
  - `oubri.gouv.bf`

## Tech Stack
### CMS / Framework
- **TYPO3 CMS** (confirmed via meta generator tag and `Powered by TYPO3`)
- PHP 7.3.31

### Frontend / JavaScript
- Bootstrap
- HTML5, Open Graph Protocol
- Content-Language: `fr` (French)

### Analytics
- **Google Analytics:** UA-144182518-5
- **Google Tag Manager:** same account

### Security Headers (STRONG)
- **HSTS:** max-age=31536000; includeSubDomains; preload (1 year, full preload)
- **X-Frame-Options:** SAMEORIGIN
- **X-XSS-Protection:** 1; mode=block
- **X-Content-Type-Options:** nosniff
- **Content-Security-Policy:** `default-src: 'self'`
- **X-UA-Compatible:** IE=edge

## Interesting Findings
- **TYPO3 CMS** — same platform as securite.gov.bf, sig.gov.bf (shared gov CMS infrastructure)
- **PHP 7.3.31** — EOL version (PHP 7.3 reached end of life Dec 2021), no security patches
- **Domain only 1 year old** (created 2025-03-11) — ministry website is brand new
- **SIG registrant** — Service d'Information du Gouvernement manages the domain (government press office)
- **Mooré-language nameservers** — ntoo, wobgo, oubri are Mooré words (indigenous Burkinabè language)
  - This is a cultural/linguistic OSINT signal — indicates locally managed DNS infrastructure
- **Google Analytics UA-144182518** series — same GA account prefix as securite.gov.bf (UA-144182518-30)
  - **Confirms shared web management infrastructure** across security ministries
- **Only 1 subdomain** found (www) — very tight subdomain posture for defense ministry
- **Redirect chain:** defense.gov.bf → https → www → /accueil (home page)

## Emails Discovered
- `infos@defense.gov.bf` (from web scraping — generic contact email)
- No personal emails found

## Security Assessment
- **Best security headers** of all BF gov sites analyzed — CSP, HSTS preload, all protections enabled
- PHP 7.3.31 is a significant concern — 4+ years past EOL
- TYPO3 on EOL PHP = potential unpatched vulnerabilities
- Very new domain suggests recent standup — possibly rushed deployment
- IP not resolvable by WhatWeb suggests potential CDN or access control

## TODO
- [ ] TYPO3 version fingerprinting (check /typo3/ admin path)
- [ ] Check for TYPO3 extension vulnerabilities
- [ ] Map shared GA account UA-144182518 across all gov sites
- [ ] Shodan/Censys passive lookup
- [ ] DNS full enumeration on gouv.bf nameservers
- [ ] Google dorking: site:defense.gov.bf filetype:pdf