The Onapsis Research Labs has developed Bizploit, the industry’s first open source ERP Penetration Testing framework as well as the Onapsis Integrity Analyzer for SAP.
Onapsis Bizploit assists security professionals in the discovery, exploration, vulnerability assessment and exploitation phases of specialized SAP penetration testing.
Onapsis Bizploit currently ships with many plugins to assess the security of SAP Business Platforms. Additional plugins are available for broader platform support including Oracle.
Onapsis Integrity Analyzer for SAP
The Onapsis Integrity Analyzer for SAP was developed to help SAP customers protect their systems from unauthorized modifications of ABAP programs. If undetected, these modifications can be used to inject backdoors and rootkits in an SAP system, which would enable attackers to manipulate critical business processes, steal sensitive information remotely and deploy advanced threats against business-critical applications.
Make sure to read the product's User Guide in the "doc" folder, to understand the necessary installation requirements.