OPEN TALK: How Your Applications Are under Attack - Struts2 Vulnerability Workshop


Austin Becker
Sonatype, Solutions Engineer

I am passionate about development and growth, both individually and with whatever team I am a part of. I strive for a deeper understanding of problems to establish unique, innovative, and win-win solutions. I am a technology enthusiast who is always curious as to what will come next. I am currently a Solutions Engineer at Sonatype and love helping people in the digital transformation.


This session will include information about how popular open source has become and how it is driving innovation for enterprises in today's market. Open source allows enterprises to get value to market faster, and ensure the survival of many businesses. But open source software (OSS) has recently been an attack vector and focus for cybercrime syndicates. How can you protect yourself? What are you up against? We will also cover how the Struts2 vulnerability, a common java OSS component, led to the attack and breach of several financial institutions. In this workshop, we will set up the Struts2 application and walk through not only how to exploit it, but also how to protect yourself from this attack.