hacktricks-cloud/src/pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-mq-unauthenticated-enum.md

# AWS - MQ Unauthenticated Enum

{{#include ../../../banners/hacktricks-training.md}}

## Public Port

### **RabbitMQ**

In case of **RabbitMQ**, by **default public access** and ssl are enabled. But you need **credentials** to access (`amqps://.mq.us-east-1.amazonaws.com:5671`​​). Moreover, it's possible to **access the web management console** if you know the credentials in `https://b-<uuid>.mq.us-east-1.amazonaws.com/`

### ActiveMQ

In case of **ActiveMQ**, by default public access and ssl are enabled, but you need credentials to access.

### Public URL template

```
https://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:8162/
ssl://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:61617
```

{{#include ../../../banners/hacktricks-training.md}}