Penetration Testing mailing list archives
SAP ERP Audits
From: cribbar <crib.bar () hotmail co uk>
Date: Tue, 8 Jan 2013 07:54:45 -0800 (PST)
If any of you utilise SAP ERP (ECC6 specifically) applications in your network, or if you have come up against them in your external assessments, are there any common vulnerabilities you come across which you could detail or would recommend looking ojut for? Also to check for weak or default passwords, which table are the hashes stored in? And are there any free tools to run dictionary or word list type audits against the hash values? Any input most welcome... -- View this message in context: http://old.nabble.com/SAP-ERP-Audits-tp34873785p34873785.html Sent from the Penetration Testing mailing list archive at Nabble.com. ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- SAP ERP Audits cribbar (Jan 08)