diff --git a/misconfiguration/aem/aem-bg-servlet.yaml b/misconfiguration/aem/aem-bg-servlet.yaml
new file mode 100644
index 0000000000..3fa1629768
--- /dev/null
+++ b/misconfiguration/aem/aem-bg-servlet.yaml
@@ -0,0 +1,23 @@
+id: aem-bg-servlet
+
+info:
+  author: DhiyaneshDk
+  name: AEM BG-Servlets
+  severity: info
+  reference: https://www.slideshare.net/0ang3el/hunting-for-security-bugs-in-aem-webapps-129262212
+  tags: aem
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/system/bgservlets/test.css'
+
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+
+      - type: word
+        words:
+          - '<br/>Flushing output<br/>'
\ No newline at end of file
diff --git a/misconfiguration/aem/aem-login-status.yaml b/misconfiguration/aem/aem-login-status.yaml
new file mode 100644
index 0000000000..d8446f7869
--- /dev/null
+++ b/misconfiguration/aem/aem-login-status.yaml
@@ -0,0 +1,24 @@
+id: aem-login-status
+
+info:
+  author: DhiyaneshDk
+  name: AEM Login Status
+  severity: info
+  reference: https://www.slideshare.net/0ang3el/hunting-for-security-bugs-in-aem-webapps-129262212
+  tags: aem
+
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/system/sling/loginstatus.css'
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+
+      - type: word
+        words:
+          - 'CREDENTIAL_CHALLENGE'
+        condition: and