Black Hat USA shares the latest in research, development and trends and evaluates a broad range of security products and solutions. After our debut at Black Hat Europe in 2007, Onapsis has maintained our commitment to sharing SAP cybersecurity research at conferences across the world to help our customers secure their systems.
Business-critical systems like SAP and Oracle are at the core of every organization, but securing them can be complicated without the right solution in place. Learn more about including business-critical application security in your overall IT security strategy so your critical systems and business applications stay secure, compliant and available.
Hear from our technical gurus, meet with our thought leaders, or join our rocking party.
Meet With Us
Have questions about how SAP Application Security fits into your organization’s business strategy and risk posture?
Set up time with one of our business application security experts while you’re at the show.
Hear From Our SAP Security Experts
Internal Server Error: Exploiting Inter-Process Communication in SAP's HTTP Server
Martin Doyhenard | Security Researcher, Onapsis
Date: Wednesday, August 10 | 1:30pm-2:10pm
Format: 40-Minute Briefings
This talk will demonstrate how to leverage two memory corruption vulnerabilities found in SAP's proprietary HTTP Server, using high-level protocol exploitation techniques. Both techniques, CVE-2022-22536 and CVE-2022-22532, were remotely exploitable and could be used by unauthenticated attackers to completely compromise any SAP installation on the planet.
Add it to your scheduleSeeing Is Believing: Attacks On SAP Business-Critical Applications
JP Perez-Etchegoyen | CTO
Date: Thursday, August 11 | 11:30am - 12:20pm
Tracks: Application Security, Risk, Compliance and Security Management
Location: Mandalay Bay L
Take a closer look at real-world attacks on SAP, including active exploitation attempts against three existing and previously patched SAP vulnerabilities. We shine a light on the reality of active, ongoing, and pervasive global attack activity targeting SAP instances.
Add it to your scheduleJust Looking To Party?
Don't miss the hottest party at Black Hat!
Kick off your conference week with fellow security leaders and industry peers at the iconic House of Blues at Mandalay Bay on August 8th.
Featuring a special live performance from The Heavy Hours and a full hosted bar, this is THE can’t-miss event for this year’s conference attendees.
Register Here