Download the presentation here.

Dave Hartley delivered his “SAP Slapping” presentation at the CRESTCon and BSides London security conferences recently.

The talk provides a high level overview of common SAP system vulnerabilities and misconfigurations.

At the BSides London conference Dave also demoed a number of the Metasploit auxiliary and exploit modules that were developed whilst researching SAP insecurities.