The AEM Dispatcher is not just a caching engine and load balancer, is the first line of defense for your AEM application. That's why it's so important to ensure your Dispatcher is configured to be secure. Unfortunately, many Dispatcher installations are not configured to block some critical services and endpoints, leaving applications vulnerable. To help you secure your AEM installation, I have documented and developed a tool to check 77 services and endpoints you should be blocking at the Dispatcher: Try the AEM Dispatcher Scanner