Re: Sap proxy

[Richard Barrell <rbarrell () sentryware com>]

Hi Peter,

It may not be exactly pen-testing, but a couple of weeks ago I had to
map a bunch of web applications using the SAP portal, for which I
used the spider function of Paros 3.2 daisy-chained through the BURP
proxy to capture the HTTP transactions.

It's not 100% but at least it gave me an idea of what I was facing!

Good luck,

Rich

-----------------
ssd> Hello,

ssd> Has anyone tested spa proxy and sap portal? If so what tools were used and
ssd> could you share any findings on the two?

ssd> Regards

ssd> Peter




---------------------
Richard Barrell

www.sentryware.com