LinuxCommandLibrary

impacket-mqtt_check

simple tool that checks if an MQTT broker allows connections, optionally

TLDR

Check MQTT broker for anonymous access

$ impacket-mqtt_check [192.168.1.100]
copy
Check MQTT on a specific port
$ impacket-mqtt_check [192.168.1.100] -port [1883]
copy
Check MQTT with credentials
$ impacket-mqtt_check [192.168.1.100] -user [username] -password [password]
copy

SYNOPSIS

impacket-mqtt_check [-h] [-port PORT] [-user USERNAME] [-password PASSWORD] target

DESCRIPTION

impacket-mqtt_check is a simple tool that checks if an MQTT (Message Queuing Telemetry Transport) broker allows connections, optionally testing for anonymous access. MQTT is a lightweight messaging protocol commonly used in IoT devices and applications.
The tool attempts to connect to the specified broker and reports whether the connection succeeds, helping identify misconfigured brokers that allow unauthenticated access.

PARAMETERS

-port PORT

MQTT broker port (default: 1883)
-user USERNAME
Username for MQTT authentication
-password PASSWORD
Password for MQTT authentication

CAVEATS

Only tests connection capability, does not enumerate topics or messages. MQTT over TLS (port 8883) may require additional configuration. Some brokers may allow connection but restrict actions based on ACLs.

HISTORY

Part of the Impacket library by SecureAuth. Added to address the growing security concerns around IoT protocols, particularly MQTT brokers exposed to the internet without proper authentication.

SEE ALSO

> TERMINAL_GEAR

Curated for the Linux community

Copied to clipboard

> TERMINAL_GEAR

Curated for the Linux community