Completed
Fuzzing approach
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Uncovering SAP Vulnerabilities - Dissecting and Breaking the Diag Protocol
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Agenda
- 3 Introduction
- 4 Previous work on Diag protocol
- 5 Motivation
- 6 SAP Netweaver architecture
- 7 Relevant concepts and components
- 8 SAP Protocols layout
- 9 Dissecting and understanding the Diag protocol
- 10 Diag protocol security highlights
- 11 Packet dissection - SAP plugin for Wireshark
- 12 Packet crafting - pysap
- 13 Fuzzing approach
- 14 Vulnerabilities found
- 15 Attack scenarios
- 16 Recent changes
- 17 Defenses and countermeasures
- 18 Conclusion
- 19 Future work