Published on September 19th, 2019 📆 | 2215 Views ⚑
0Securing AEM webapps by hacking them
Convert Text to Speech
Recorded at #adaptTo() 2019
https://adapt.to/2019/en/schedule/securing-aem-webapps-by-hacking-them.html
Securing AEM webapps by hacking them
- Mikhail Egorov
AEM is complex, and securing it could be really tough. Security issues may allow potential attacker to extract sensitive information or achieve remote code execution. Thus, proper security testing of AEM webapp by pentesting/appsec team is vital.
However, there are not so many methodologies and tools available that can be used in practice by security specialists. Author performed research and gathered known vulnerabilities and security misconfigurations as well as discovered new ones.
He created testing methodology and open source automation tool called "AEM hacker toolset". In the talk he will cover most common and severe security issues specific for AEM webapps, and how to test for them.
source
Gloss