SAPPIN’ the Enterprise: Breaking What No One Else Pentests

No ratings

Presented at BSides London 2025 by

Jonathan Pake

SAP powers critical enterprise functions like finance, HR, and supply chain, yet it often falls outside the scope of traditional penetration testing due to its complexity and steep learning curve. This talk will demonstrate how attackers exploit overlooked SAP weaknesses to gain access, escalate privileges, and compromise sensitive enterprise data.