impacket-mqtt_check

Check MQTT broker for anonymous access

$ impacket-mqtt_check [192.168.1.100]

$ impacket-mqtt_check [192.168.1.100] -port [1883]

$ impacket-mqtt_check [192.168.1.100] -user [username] -password [password]

impacket-mqtt_check [-h] [-port PORT] [-user USERNAME] [-password PASSWORD] target

impacket-mqtt_check is a simple tool that checks if an MQTT (Message Queuing Telemetry Transport) broker allows connections, optionally testing for anonymous access. MQTT is a lightweight messaging protocol commonly used in IoT devices and applications.
The tool attempts to connect to the specified broker and reports whether the connection succeeds, helping identify misconfigured brokers that allow unauthenticated access.

-port PORT

MQTT broker port (default: 1883)

Username for MQTT authentication

Password for MQTT authentication

Only tests connection capability, does not enumerate topics or messages. MQTT over TLS (port 8883) may require additional configuration. Some brokers may allow connection but restrict actions based on ACLs.

Part of the Impacket library by SecureAuth. Added to address the growing security concerns around IoT protocols, particularly MQTT brokers exposed to the internet without proper authentication.

mosquitto_sub(1), mosquitto_pub(1), nmap(1)