(Update) Sapyto SAP pentest version 1.0 available

7 June 2009

SAPYTO is a SAP Penetration Testing Framework. It enables security professionals to perform security assessments of different components of SAP R/3 deployments. Presented at Blackhat Europe 2007, it was shipped with many plugins to analyze the security of the RFC interface implementation of SAP systems. The plugin-based architecture enables users to develop their own plugins, extending functionality and allowing the framework to detect new vulnerabilities.

Changes :

Windows support! Now sapyto runs on Windows 2000/2003/XP/Vista.
Automatic connector discovery and target configuration.
The so-far-missing sapyto’s User Guide.
Vulnerability reporting and analysis.
Improved CLI with autocompletion, better help and presentation.
Architecture changed quite a bit, in order to support for upcoming
releases (GUI).
New plugins for discovering SAP Application Servers, assess
SAP/Oracle implementations and more ...

Post scriptum

Download

Compliance Mandates

Application Scanner :
PCI/DSS 6.3, SOX A12.4, GLBA 16 CFR 314.4(b) and (2), HIPAA 164.308(a)(1)(i), FISMA RA-5, SA-11, SI-2, ISO 27001/27002 12.6, 15.2.2

Application Scanner	10 May 2010 : SQLNinja v0.2.5 released! 1 May 2010 : WhatWeb just updated to v0.4.2 29 April 2010 : WhatWeb v0.4.1 - released 28 April 2010 : NSIA (Network System Integrity Analysis) v0.8.99 released 26 April 2010 : Acunetix WVS v6.5 build 20100419 released
Sapyto	7 June 2009 : (Update) Sapyto SAP pentest version 1.0 available 10 December 2008 : Sapyto SAP pentest updated to v0.98 4 April 2007 : Sapyto SAP R/3 Pentest Tool

(Update) Sapyto SAP pentest version 1.0 available

Post scriptum

Compliance Mandates

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU