Mitmproxy Mqtt Script – Inspect MQTT over TLS traffic with ease!
This script is ad-hoc solution for inspecting MQTT over TLS traffic. As far as I know Wireshark solves this problem but obtaining TLS master keys from IoT device might be a pain. Also you can log MQTT topics, just uncomment lines at the bottom of the mqtt_message.py
.
Table of Contents
Usage
Run mitmproxy as mitmproxy --mode transparent --tcp-hosts '.*' -s mqtt_message.py
. Messages will be displayed at the event log (press shift + e
).
Of course before that you have to prepare a target device and your host running mitmproxy:
If server requires x509 client authentication --set client_certs=cert.pem
mitmproxy’s option might be useful.
Roadmap
Credits
Read more here: Source link