ERPScan has been invited to BlackHat event to present the latest research in business application security. We will present the talk “SSRF vs. Business-critical applications” held by Alexander Polyakov and Dmitry Chastukhin. In this presentation, they are going to describe a new architectural vulnerability found in J2EE virtual machine, which especially target SAP applications and allows bypassing a lot of SAP security restrictions even in secure landscapes. Don’t miss the chance to visit this epic presentation at 5:00 PM on July 26 in the Palace I room.
ERPScan are also pleased to invite you to visit our booth on pedestal #4 near the OWASP. We will demonstrate our new version of ERPScan Security Scanner for SAP – an innovative product for continuous monitoring, standard compliance and vulnerability assessment of SAP platform. The system enables conducting complex security assessments while scanning SAP servers for software vulnerabilities, misconfigurations, segregation of duties (SOD), ABAP source code issues and backdoors and performs assessments for compliance to current standards and best practices including SAP best practices.