Uncovering SAP Vulnerabilities - Dissecting and Breaking the Diag Protocol

Uncovering SAP Vulnerabilities - Dissecting and Breaking the Diag Protocol

BruCON Security Conference via YouTube Direct link

Previous work on Diag protocol

4 of 19

4 of 19

Previous work on Diag protocol

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Uncovering SAP Vulnerabilities - Dissecting and Breaking the Diag Protocol

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Agenda
  3. 3 Introduction
  4. 4 Previous work on Diag protocol
  5. 5 Motivation
  6. 6 SAP Netweaver architecture
  7. 7 Relevant concepts and components
  8. 8 SAP Protocols layout
  9. 9 Dissecting and understanding the Diag protocol
  10. 10 Diag protocol security highlights
  11. 11 Packet dissection - SAP plugin for Wireshark
  12. 12 Packet crafting - pysap
  13. 13 Fuzzing approach
  14. 14 Vulnerabilities found
  15. 15 Attack scenarios
  16. 16 Recent changes
  17. 17 Defenses and countermeasures
  18. 18 Conclusion
  19. 19 Future work

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.