title | displaytext | layout | tab | order | tags |
---|---|---|---|---|---|
pysap |
Pysap |
true |
5 |
cbas |
Version 0.1.20.dev0 (XXX 2022)
SAP Netweaver and SAP HANA are technology platforms for building and integrating SAP business applications. Communication between components uses different network protocols and some services and tools make use of custom file formats as well. While some of them are standard and well-known protocols, others are proprietaries and public information is generally not available.
pysap is an open source Python 2 library that provides modules for crafting and sending packets
using SAP's NI
, Diag
, Enqueue
, Router
, MS
, SNC
, IGS
, RFC
and HDB
protocols. In addition, support for creating and parsing different proprietary file formats is included. The modules are built on top of Scapy and are based on information acquired at researching the different protocols, file formats and services.
-
Dissection and crafting of the following network protocols:
- SAP Network Interface (
NI
) - SAP
Diag
- SAP
Enqueue
- SAP
Router
- SAP Message Server (
MS
) - SAP Secure Network Connection (
SNC
) - SAP Internet Graphic Server (
IGS
) - SAP Remote Function Call (
RFC
) - SAP HANA SQL Command Network (
HDB
)
- SAP Network Interface (
-
Client interfaces for handling the following file formats:
- SAP
SAR
archive files - SAP Personal Security Environment (
PSE
) files - SAP SSO Credential (
Credv2
) files - SAP Secure Storage in File System (
SSFS
) files
- SAP
-
Library implementing SAP's
LZH
andLZC
compression algorithms. -
Automatic compression/decompression of payloads with SAP's algorithms.
-
Client, proxy and server classes implemented for some of the protocols.
-
Example scripts to illustrate the use of the different modules and protocols.
To install pysap simply run:
$ python -m pip install pysap
pysap is compatible and tested with Python 2.7. A Python 2/3 compatible version is in the workings but it's not finalized yet.
Documentation is available at Read the Docs.
This library is distributed under the GPLv2 license. Check the COPYING file for more details.
The tool was initially designed and developed by Martin Gallo while working at SecureAuth's Innovation Labs team, with the help of many contributors. The code was then contributed by SecureAuth to the OWASP CBAS Project in October 2022.