gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2025-12-27 05:03:31 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
bee34f3c05224a1b60f8d143d8e662434c2c1a33
hacktricks-cloud/src/pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-mq-unauthenticated-enum.md
Carlos Polop 716aa06779 translate 2
2025-01-01 23:55:27 +01:00

762 B
Raw Blame History

AWS - MQ Unauthenticated Enum

{{#include ../../../banners/hacktricks-training.md}}

Public Port

RabbitMQ

In case of RabbitMQ, by default public access and ssl are enabled. But you need credentials to access (amqps://.mq.us-east-1.amazonaws.com:5671). Moreover, it's possible to access the web management console if you know the credentials in https://b-<uuid>.mq.us-east-1.amazonaws.com/

ActiveMQ

In case of ActiveMQ, by default public access and ssl are enabled, but you need credentials to access.

Public URL template

https://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:8162/
ssl://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:61617

{{#include ../../../banners/hacktricks-training.md}}

Reference in New Issue View Git Blame Copy Permalink