MQTTack
MQTT Security Testing
Install / Use
/learn @souravbaghz/MQTTackREADME
NOTE:- This script only made for MQTT Service Port on 1883(Insecured). I will be not responsible if any user performs malicious activities using this script. Use it for Learning purpose only.
Installation Requirements :
sudo apt-get install mosquitto-client
git clone https://github.com/souravbaghz/MQTTack
cd MQTTack && chmod +X src/MqttExploit
Usage:
bash mqttack.sh host_IP
bash mqttack.sh 127.0.0.1
Available Options Are:
- [1] Scan for MQTT Service
- [2] Subscribe to All Topics
- [3] Subscribe to a Single Topic
- [4] Publish a Message
- [5] DOS Attack - CVE-2017-7651(Mosquitto Ver 1.4.14)
- [6] DOS Attack - CVE-2018-12543(Mosquitto Ver 1.5 to 1.5.2)
- [7] Password Bruteforce Attack
- [8] Login and Subscribe to Topics
- [0] Exit
For Password Bruteforce Attack, You will need to keep your username and password list separately into user.txt & pass.txt inside 'src' directory.
If you love my work then you can buy me a Coffee here.
<a href="https://www.buymeacoffee.com/souravbaghz" target="_blank"><img src="https://cdn.buymeacoffee.com/buttons/default-orange.png" alt="Buy Me A Coffee" height="41" width="174"></a>
<br>🤝 Connect with me
Related Skills
node-connect
350.8kDiagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps
frontend-design
110.4kCreate distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.
openai-whisper-api
350.8kTranscribe audio via OpenAI Audio Transcriptions API (Whisper).
qqbot-media
350.8kQQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。
