id: apache-activemq-detect
info:
name: Apache ActiveMQ Detection
author: pussycat0x
severity: info
description: |
Apache ActiveMQ is an open source message broker written in Java together with a full Java Message Service client. It provides "Enterprise Features" which in this case means fostering the communication from more than one client or server.
metadata:
verified: true
max-request: 1
shodan-query: product:"Apache ActiveMQ"
tags: network,activemq,oss,detect,apache,detection,tcp
tcp:
- inputs:
- data: "HELP\n\n\u0000"
host:
- "{{Hostname}}"
port: 61613
matchers-condition: and
matchers:
- type: word
words:
- "Unknown STOMP action"
- "norg.apache.activemq.transport.stomp"
# digest: 4b0a00483046022100e860de12aca3042ee12b0044a7598dc2d8de8d88a5fe47d271d8ae3d45c05d370221009768489cc1cb212cbeab2c19ba5a885168aa9f634d0d745687b303085855c2cf:922c64590222798bb761d5b6d8e72950
