Content from 2019
- SAP Situation Report 2019
Project “ARSAP” is a semi-automatic mechanism, which main goal was to detect and register all the SAP systems that are exposed to the Internet, extracting the system’s metadata, and cataloging the assets in base of their geo-location, system type, version, installed components and potential risk. (For this last point, it is important to clarify that NO active probes were executed on any of the detected systems. The collected information was obtained, by just analyzing the systems’ metadata)
This knowledge, enabled us to create the first SAP cyber-security situation report, allowing the SAP customers to have a clear and unbiased analysis of the current status of the Internet facing SAP systems in the market.