Moxie is a bash script designed for penetration testing MQTT IoT devices. It provides functionalities to test MQTT service on a given target, scan the target for open ports, and perform brute-force attacks for authentication.
- MQTT Service Check: Checks if MQTT service is accessible on a specified IP address and port.
- Advanced Scan: Performs an advanced scan using Nmap to gather detailed information about the MQTT service.
- Brute-force Attack: Attempts to brute-force the authentication of the MQTT service using provided username and password wordlists.
./moxie.sh <option> [ip] [port]-c, --check: Check MQTT service.-s, --scan: Perform advanced scan.-b, --bruteforce: Conduct brute-force attack.-h, --help: Display help message.
- Clone the repository:
git clone https://github.com/aravind0x7/Moxie.git
cd Moxie- Make the script executable:
chmod +x moxie.sh- Checking MQTT service:
./moxie.sh -c 192.168.1.100 1883- Performing advanced scan:
./moxie.sh -s 192.168.1.100 1883- Conducting brute-force attack:
./moxie.sh -b 192.168.1.100 1883- Created by aravind0x7
This project is licensed under the MIT License - see the LICENSE file for details.