AWS - MQ Unauthenticated Enum

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Public Port

RabbitMQ

In case of RabbitMQ, by default public access and ssl are enabled. But you need credentials to access (amqps://.mq.us-east-1.amazonaws.com:5671). Moreover, it's possible to access the web management console if you know the credentials in https://b-<uuid>.mq.us-east-1.amazonaws.com/

ActiveMQ

In case of ActiveMQ, by default public access and ssl are enabled, but you need credentials to access.

Public URL template

https://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:8162/
ssl://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:61617

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

PreviousAWS - Media Unauthenticated Enum NextAWS - MSK Unauthenticated Enum

Last updated 4 months ago