HackTricks CloudAWS - MQ Unauthenticated Enum
Reading time: 1 minute
tip
Learn & practice AWS Hacking:
HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: 
HackTricks Training GCP Red Team Expert (GRTE)
Support HackTricks
- Check the subscription plans!
- Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
- Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.
Public Port
RabbitMQ
In case of RabbitMQ, by default public access and ssl are enabled. But you need credentials to access (amqps://.mq.us-east-1.amazonaws.com:5671). Moreover, it's possible to access the web management console if you know the credentials in https://b-<uuid>.mq.us-east-1.amazonaws.com/
ActiveMQ
In case of ActiveMQ, by default public access and ssl are enabled, but you need credentials to access.
Public URL template
https://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:8162/
ssl://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:61617
tip
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Support HackTricks
- Check the subscription plans!
- Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
- Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.