Jordan Santarsieri
Mr Santarsieri is a founder partner at Vicxer where he utilizes his 12+ years of experience in the security industry, to bring top notch research into the ERP (SAP / Oracle) world. He is engaged in a daily effort to identify, analyze, exploit and mitigate vulnerabilities affecting ERP systems and business-critical applications, helping Vicxer's customers (Global Fortune-500 companies and defense contractors) to stay one step ahead of cyber-threats. Jordan has also discovered critical vulnerabilities in Oracle and SAP software, and is a frequent speaker at international security conferences such as Black-Hat DC, Hacker Halted, OWASP US, 8dot8 and Ekoparty. Jordan-Santarsieri_Vicxer_SAP-Incident-Response-Real-Life-Examples-on-How-to-Attack-and-Defend-v04_AusCERT2018

SAP Incident Response, How to Attack and Defend!

SAP is a core part of the business-critical infrastructure of 95% of the biggest companies in the world, these companies rely on SAP to perform their most sensitive daily operations such as processing employees payroll and benefits, managing logistics, managing suppliers / customers, material management, releasing payments to providers, credit cards processing, business intelligence, etc. Due to its complexity, broad attack surface and the fact that most security audit trails do not come activated by default, SAP its quickly becoming a highly desired target for malicious attackers that are looking to exploit several security issues to perform espionage, sabotage and fraud attacks. Join me on this completely new and highly technical talk on which I’m going to explain trough several live demos, how attackers are compromising SAP security platforms, how they backdoor these platforms and how you can apply different forensic techniques to determine if your platform has been compromise and what information has been accessed.