{"id":13650791,"url":"https://github.com/OWASP/pysap","last_synced_at":"2025-04-22T18:32:48.770Z","repository":{"id":15411306,"uuid":"18143392","full_name":"OWASP/pysap","owner":"OWASP","description":"pysap is an open source Python library that provides modules for crafting and sending packets using SAP's NI, Diag, Enqueue, Router, MS, SNC, IGS, RFC and HDB protocols.","archived":false,"fork":false,"pushed_at":"2024-02-16T21:24:50.000Z","size":44703,"stargazers_count":211,"open_issues_count":9,"forks_count":62,"subscribers_count":39,"default_branch":"master","last_synced_at":"2024-05-01T11:53:19.485Z","etag":null,"topics":["cbas","python","sap","scapy"],"latest_commit_sha":null,"homepage":"https://owasp.org/www-project-core-business-application-security/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/OWASP.png","metadata":{"files":{"readme":"README.md","changelog":"ChangeLog.md","contributing":null,"funding":null,"license":"COPYING","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2014-03-26T15:37:07.000Z","updated_at":"2024-04-29T17:08:27.000Z","dependencies_parsed_at":"2023-01-11T20:23:17.726Z","dependency_job_id":"10d19285-e997-44c1-8431-c7918824615c","html_url":"https://github.com/OWASP/pysap","commit_stats":null,"previous_names":["secureauthcorp/pysap"],"tags_count":17,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2Fpysap","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2Fpysap/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2Fpysap/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2Fpysap/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/OWASP","download_url":"https://codeload.github.com/OWASP/pysap/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223502361,"owners_count":17155938,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cbas","python","sap","scapy"],"created_at":"2024-08-02T02:00:41.111Z","updated_at":"2024-11-10T01:31:09.325Z","avatar_url":"https://github.com/OWASP.png","language":"Python","readme":"pysap - Python library for crafting SAP's network protocols packets\n===================================================================\n\n[![Build and test pysap](https://github.com/OWASP/pysap/workflows/Build%20and%20test%20pysap/badge.svg)](https://github.com/OWASP/pysap/actions?query=workflow%3A%22Build+and+test+pysap%22)\n[![Latest Version](https://img.shields.io/pypi/v/pysap.svg)](https://pypi.python.org/pypi/pysap/)\n[![Documentation Status](http://readthedocs.org/projects/pysap/badge/?version=latest)](http://pysap.readthedocs.io/en/latest/?badge=latest)\n\nVersion 0.1.20.dev0 (XXX 2023)\n\n:information_source: [Python 3 port project](#Python3portproject)\n\n\nOverview\n--------\n\n[SAP Netweaver](https://www.sap.com/platform/netweaver/index.epx) and\n[SAP HANA](https://www.sap.com/products/hana.html) are technology platforms for\nbuilding and integrating SAP business applications. Communication between components\nuses different network protocols and some services and tools make use of custom file\nformats as well. While some of them are standard and well-known protocols, others\nare proprietaries and public information is generally not available.\n\n[pysap](https://www.secureauth.com/labs/open-source-tools/pysap)\nis an open source Python 2 library that provides modules for crafting and sending packets\nusing SAP's `NI`, `Diag`, `Enqueue`, `Router`, `MS`, `SNC`, `IGS`, `RFC` and `HDB`\nprotocols. In addition, support for creating and parsing different proprietary file\nformats is included. The modules are built on top of [Scapy](https://scapy.net/) and are\nbased on information acquired at researching the different protocols, file formats\nand services.\n\n\nFeatures\n--------\n\n* Dissection and crafting of the following network protocols:\n\n    * SAP Network Interface (`NI`)\n    * SAP `Diag`\n    * SAP `Enqueue`\n    * SAP `Router`\n    * SAP Message Server (`MS`)\n    * SAP Secure Network Connection (`SNC`)\n    * SAP Internet Graphic Server (`IGS`)\n    * SAP Remote Function Call (`RFC`)\n    * SAP HANA SQL Command Network (`HDB`)\n\n* Client interfaces for handling the following file formats:\n\n    * SAP [`SAR` archive files](https://www.iana.org/assignments/media-types/application/vnd.sar)\n    * SAP Personal Security Environment (`PSE`) files\n    * SAP SSO Credential (`Credv2`) files\n    * SAP Secure Storage in File System (`SSFS`) files\n\n* Library implementing SAP's `LZH` and `LZC` compression algorithms.\n\n* Automatic compression/decompression of payloads with SAP's algorithms.\n\n* Client, proxy and server classes implemented for some of the protocols.\n\n* Example scripts to illustrate the use of the different modules and protocols.\n\n\nInstallation\n------------\n\nTo install pysap simply run:\n\n    $ python -m pip install pysap\n\npysap is compatible and tested with Python 2.7.\n\n\nRoadmap\n-------\n\n### Python 3 port project\n\n:warning: For legacy reasons, the project is only Python 2 compatible. There were some [initial efforts](https://github.com/OWASP/pysap/tree/python2-3) to port the project to be Python 2 and 3 compatible, but those were never completed.\n\nAs time passed, and Python 2 started to loss relevance, we decided to start a new effort to complete the project and move the project to be Python 3 only compatible. The main reason is to avoid the introduction of backwards compatibility libraries that add complexity to the code and are not relevant in the current state of the Python project.\n\nThis project is actively being worked on right now by the OWASP CBAS project as part of the [master-0.2 branch](https://github.com/OWASP/pysap/tree/master-0.2)and tracked as a [project](https://github.com/OWASP/projects/12).\n\n### Further efforts\n\nThe document \n\n\n\nDocumentation\n-------------\n\nDocumentation is available at [Read the Docs](https://pysap.readthedocs.io/en/latest/).\n\n\nLicense\n-------\n\nThis library is distributed under the GPLv2 license. Check the [COPYING](COPYING)\nfile for more details.\n\n\nAuthors\n-------\n\nhe tool was initially designed and developed by Martin Gallo wile working at\n[SecureAuth's Innovation Labs](https://www.secureauth.com/labs/) team, with the\nhelp of many contributors. The code was then contributed by SecureAuth to the\nOWASP CBAS Project in October 2022.\n\n### Contributors ###\n\nContributions made by:\n\n  * Florian Grunow ([@0x79](https://twitter.com/0x79))\n  * Scott Walsh ([@invisiblethreat](https://github.com/invisiblethreat))\n  * Joris van de Vis ([@jvis](https://twitter.com/jvis))\n  * Victor Portal Gonzalez\n  * Dmitry Yudin ([@ret5et](https://github.com/ret5et))\n  * Hans-Christian Esperer ([@hce](https://github.com/hce))\n  * Vahagn Vardanyan ([@vah13](https://github.com/vah13))\n  * Mathieu Geli ([@gelim](https://github.com/gelim))\n  * Yvan Genuer ([@iggy38](https://github.com/iggy38))\n  * Malte Heinzelmann ([@hnzlmnn](https://github.com/hnzlmnn))\n  * Albert Zedlitz\n  * [@cclauss](https://github.com/cclauss)\n  * [@okuuva](https://github.com/okuuva)\n  * Dmitry Chastuhin ([@_chipik](https://twitter.com/_chipik))\n  * fabhap\n  * Andreas Hornig\n  * Jennifer Hornig ([@gloomicious](https://github.com/gloomicious))\n\nDisclaimer\n----------\n\nThe spirit of this Open Source initiative is to help security researchers,\nand the community, speed up research and educational activities related to\nthe implementation of networking protocols and stacks.\n\nThe information in this repository is for research and educational purposes\nonly and is not intended to be used in production environments and/or as part\nof commercial products.\n\nIf you desire to use this tool or some part of it for your own uses, we\nrecommend applying proper security development life cycle and secure coding\npractices, as well as generate and track the respective indicators of\ncompromise according to your needs.\n\n\nContact Us\n----------\n\nWhether you want to report a bug, send a patch, or give some suggestions\non this package, drop a few lines to\n[OWASP CBAS' project leaders](https://owasp.org/www-project-core-business-application-security/#leaders).\n\nFor security-related questions check our [security policy](SECURITY.md).\n","funding_links":[],"categories":["Tools"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FOWASP%2Fpysap","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FOWASP%2Fpysap","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FOWASP%2Fpysap/lists"}