About Onapsis Research Labs
The Onapsis Research Labs is a team of security experts who combine in-depth knowledge and experience to deliver security insights and threat intel affecting business-critical applications from SAP, Oracle, Salesforce and others.
They have discovered over 800 zero-day vulnerabilities and multiple critical global CERT alerts have been based on their novel research.
A Cooperative Approach
The Onapsis Research Labs continuously analyzes and investigates developments in mission-critical applications to discover and identify new vulnerabilities. The team works closely with SAP and Oracle product security teams to responsibly disclose this information so the issues can be appropriately patched.
Further, Onapsis reports the most critical vulnerabilities to the US-CERT, part of the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), and other global agencies to increase the reach of disclosure and ensure timely patching to systems supporting critical infrastructure.
Powering The Onapsis Platform
All Security AdvisoriesThe findings from the Onapsis Research Labs form the foundation of The Onapsis Platform. To date, the Onapsis Research Labs has responsibly disclosed hundreds of SAP and Oracle vulnerabilities and security advisories. Alerts and protections for these vulnerabilities have made The Onapsis Platform a proven solution for protecting business-critical applications. In September 2020, The Onapsis Platform officially became an SAP Endorsed App.
Value to Customers
Onapsis automatically updates its products with the latest threat intelligence and other security guidance from the Onapsis Research Labs. This provides customers with advanced notification on critical issues, comprehensive coverage, improved configurations and pre-patch protection ahead of scheduled vendor updates. The ongoing discoveries from the Onapsis Research Labs keeps The Onapsis Platform ahead of ever-evolving cybersecurity threats.
Threat Reports
Stay informed on the latest threats to business-critical applications, understand the risk and get the information you need to keep your organization protected.
All Threat ReportsBlogs
Stay up to date with the latest research from the team, including SAP Security Notes Patch Day analysis, in-depth on the latest vulnerabilities and more.
All Blog PostsSAP Security In-Depth Publications
These publications aim to fully introduce and explain security issues and aspects inherent in SAP applications.
All Publications