In the previous chapter, we learned about performing a penetration test on the JBoss Application Server (JBoss AS). Let's now look at another technological platform, known as Apache Tomcat. The Apache Tomcat software was developed in an open and participatory environment and released under Apache License version 2. Apache Tomcat is a Java servlet container that implements multiple core enterprise features, including Java servlets, Java Server Pages (JSP), Java WebSocket, and Java Persistence APIs (JPA). Many organizations have in-house, Java-based applications that are deployed on Apache Tomcat. Vulnerable Apache Tomcat software is a goldmine for threat actors, given that a plethora of payment gateways, core banking applications, and Customer Relationship Management (CRM) platforms, among many other things, run...
Germany
Slovakia
Canada
Brazil
Singapore
Hungary
Philippines
Mexico
Thailand
Ukraine
Luxembourg
Estonia
Lithuania
Norway
Chile
United States
Great Britain
India
Spain
South Korea
Ecuador
Colombia
Taiwan
Switzerland
Indonesia
Cyprus
Denmark
Finland
Poland
Malta
Czechia
New Zealand
Austria
Turkey
France
Sweden
Italy
Egypt
Belgium
Portugal
Slovenia
Ireland
Romania
Greece
Argentina
Malaysia
South Africa
Netherlands
Bulgaria
Latvia
Australia
Japan
Russia