Skip to content
Adobe Experience Manager Vulnerability Scanner
Branch: master
Clone or download
yelouardi and Raz0r Features/add new check paths (#1)
* add new paths to check
Latest commit 5f0c9c0 Feb 19, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
aemscan
.gitignore
.travis.yml add Travis CI Jul 12, 2018
LICENSE Create LICENSE Jul 12, 2018
MANIFEST.in
README.md add Travis CI Jul 12, 2018
setup.py

README.md

Build Status

aemscan

Adobe Experience Manager Vulnerability Scanner

https://raz0r.name/releases/adobe-experience-manager-vulnerability-scanner/

Features

  • Default credentials bruteforce
  • Info leak via default error page
  • WebDav support check (WebDav OSGI XXE CVE-2015-1833)
  • Version detection
  • Useful paths scanner

Installation

$ python setup.py install

Usage

$ aemscan <url>

TODO

  • CVE-2016-0956 "Apache Sling Framework 2.3.6 Information Disclosure"
  • CVE-2018-5006, CVE-2018-12809 "Adobe Experience Manager Server-Side Request Forgery"

Links

You can’t perform that action at this time.