SAP Slapping (DeepSec)

JavaScript is disabled in your web browser

For full functionality of this site it is necessary to enable JavaScript. Instructions how to enable JavaScript in your web browser.

Dave Hartley recently presented “SAP Slapping” at the DeepSec security conferences.

The talk provides a high level overview of common SAP system vulnerabilities and misconfigurations. Dave also demoed a number of the Metasploit auxiliary and exploit modules that were developed whilst researching SAP insecurities.