PowerSAP

PowerSAP is a simple powershell re-implementation of popular & effective techniques of all public tools such as Bizploit, Metasploit auxiliary modules, or python scripts available on the Internet. This re-implementation does not contain any new or undisclosed vulnerability.

PowerSAP allows to reach SAP RFC with .Net connector 'NCo'.

Credit

All credit goes to:

Onapsis - Mariano, Jordan…
ERPScan (@_chipik)
ERPSEC - Joris van De Vis (@jvis)
Chris John Riley (@ChrisJohnRiley)
Agnivesh Sathasivam and Dave Hartley (@nmonkee)
Martin Gallo (@MartinGalloAr)

What is this repository for?

Quick summary: Powershell SAP assessment tool
Version: 0.1
Dependencies: .Net connector "NCo" https://websmp201.sap-ag.de/public/connectors
Configuration: Copy sapnco.dll & sapnco_utils.dll in NCo_x86/NCo_x64 folders.

Examples

Test your .Net Connector 'NCo':

PS C:\PowerSAP\Standalone> .\Get-NCoVersion.ps1

NCo Version: 3.0.13.0 Patch Level: 525 SAP Release: 720

How to run testis:

Invoke PS scripts in the Standalone folder.

Contributions

Feel free to contribute and add features.

Screenshots

Simple bruteforce attack on SAP RFC

READ_TABLE RFC function module call through SOAP request

About

安全审计工具Powershell SAP assessment tool https://github.com/airbus-seclab https://websmp201.sap-ag.de/public/connectors

https://github.com/airbus-seclab/powersap

Other

Languages

Language:PowerShell 100.0%