Skip to main content

Offline Security Client

Project description

Offline Security Client

You definitely haven't seen such approach before! Suitable for those who would like to protect his SAP systems and don’t want to pay a lot. Or maybe you are only interested in Compliance topic. So, Offline Security is cloud based application which is intended to assess security aspects of SAP systems. All needed information for our security reports/analytics you gather yourself (or you can easily automate it using any RPA solution). Then you send us all gathered information (using cli tool). Important: All sensitive information (SAPSIDs, IP addresses, server names, and so on) is masked. And we don’t request any identity data of our clients. It means that NOBODY – our administrators, developers or external hacker can’t link this information with particular client, particular system or particular company. Finally, we produce analysis on server side and issue for you report which can download only you (client application that sent all data).

Advantages

  • Quick start: Only you need to install client tool using one cli command
  • Full Transparency. All configurations files are open. The source code of client application is available to read as well
  • You don't need to invest money to SAP Solution Manager consultants or buy expensive products like Onapsis or SecurityBridge
  • Don't need to create user account in target SAP systems. Don't need to install any ABAP code
  • Possibility of customisation. Based on predefined check list you can create your own checks (probably even not related to Information Security)
  • Our database is regularly updated. Always base checks are available out-of-box. Even you can see what configurations are used by other clients
  • Cool reports, easy to use with predefined filter options

Table of contents

Installation

Python installation

Install last version of Python 3.x from here
We support only Python 3.x!

Published version installation (recommended)

pip3 install offlinesec_client

or

python3 -m pip install offlinesec_client

Check the installation script output. if you see the following message: WARNING: The scripts offlinesec_get_reports, offlinesec_inverse_transform, offlinesec_sap_notes, offlinesec_sap_params and offlinesec_sap_roles are installed in '/Users//Library/Python/3.8/bin' which is not on PATH.

Then add Python folder to the PATH variable:

export PATH="$PATH:/Users/<username>/Library/Python/3.8/bin"

Installation last version from the repository on github.com

git clone https://github.com/offlinesec/offlinesec-client.git
python3 -m pip install --upgrade pip
pip3 install setuptools wheel
python3 setup.py bdist_wheel
python3 -m pip install dist\offlinesec_client-1.0.8-py3-none-any.whl

The Version could be different! Please verify generated wheel name.

Upgrade to last published version

pip3 install --upgrade offlinesec_client

Check what version is installed

pip3 show offlinesec_client

Quick Start

How to discovery missed SAP Security Notes:

  1. Prepare text file with installed SAP software component versions (details)
  2. Download CWBNTCUST table (details)
  3. Check kernel version and kernel patch
  4. Send files to the server (optional you can set SAP system name):
offlinesec_sap_notes -f "software_components.txt" -s "Demo System" -k 721 -p 402 -c "cwbntcust.xlsx"
  1. Wait aprox 5 minutes (Depends on server load)
  2. Download your report:
offlinesec_get_reports
  1. Find your downloaded report in Downloads folder. Enjoy.

Use Cases

  1. SAP Security Notes Analysis (Vulnerabilities Check)
  • How to prepare data and request report
  • Report example
  • Our knowledge base is constantly updated and contain all SAP security notes released in 2015-2023. You can find the date of last loaded SAP Security Note in your report.
  • since version 1.0.29 SAP Business Object systems are supported
  • since version 1.0.30 SAP JAVA systems are supported
  • since version 1.1.0 Offlinsec tool supports multi-system scan
  • since version 1.1.0 Offlinesec tool supports last patch day scan
  • since version 1.1.2 the API to integrate with SIEM or VM is available in Offlinesec tool
  1. Profile Parameters/Compliance Analysis (SAP Security Baseline Checks) (Available since version 1.0.12)
  • How to generate report
  • Report Example
  • All sensitive information is excluded from the upload file (SAPSIDs, server names, ...)
  • Please remember you can create your own check variants. The details are available here
  1. Roles/Critical Privileges Analysis (Available since version 1.0.15)
  1. Transport Request Analysis (Available since version 1.1.8)
  1. Insecure RFC Connections (Available since version 1.1.20): RFC connections without encryption, RFC connection with SAP_ALL, RFC connections from development to production and other use cases.
  1. SAP Security Audit Log Analysis, ICF services, Users with critical authorizations
  • Will be available in next releases

Each time do not forget to download your report from the server:

offlinesec_get_reports

If you need more - email me info@offlinesec.com.

Important Notes:

  1. We don't collect any client identity like email address, SAP SIDs, company, ip addresses. All Checks are performed fully anonymously.
  2. The reports aren't stored on server side. Once you have downloaded the report it's deleted.
  3. All data transferred to server are encrypted with HTTPS protocol.
  4. The report could download only the person who has token (Random String generated on first start).
  5. You can download reports within 10 days after it was requested.
  6. Review the source code. You can be 100% confident what happening on client side with your data and how it is processed.

Additional documentation is available here

Known Issues

  1. SSL issue when communicate with the server NotOpenSSLWarning: urllib3 v2.0 only supports OpenSSL 1.1.1+, currently the 'ssl' module is compiled with 'LibreSSL 2.8.3'.
pip3 install urllib3==1.26.15
  1. During installation WARNING: The scripts offlinesec_get_reports, offlinesec_inverse_transform, offlinesec_sap_notes, offlinesec_sap_params and offlinesec_sap_roles are installed in '/Users//Library/Python/3.8/bin' which is not on PATH.
export PATH="$PATH:/Users/<username>/Library/Python/3.8/bin"

Uninstall

python3 -m pip uninstall offlinesec_client

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

offlinesec_client-1.1.26.tar.gz (32.7 kB view details)

Uploaded Source

Built Distribution

offlinesec_client-1.1.26-py3-none-any.whl (48.4 kB view details)

Uploaded Python 3

File details

Details for the file offlinesec_client-1.1.26.tar.gz.

File metadata

  • Download URL: offlinesec_client-1.1.26.tar.gz
  • Upload date:
  • Size: 32.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.0.0 CPython/3.10.7

File hashes

Hashes for offlinesec_client-1.1.26.tar.gz
Algorithm Hash digest
SHA256 cd508ecb22f868925739b0cf2b78722d260f55668d8cef4c722033cd3edaad8d
MD5 269cc9949e8da98938b467e54bd10f15
BLAKE2b-256 adc93b663b90257a3742ae03778050f5b2f488bd19c35e9dcdd4651923eae04b

See more details on using hashes here.

File details

Details for the file offlinesec_client-1.1.26-py3-none-any.whl.

File metadata

File hashes

Hashes for offlinesec_client-1.1.26-py3-none-any.whl
Algorithm Hash digest
SHA256 147259da72e082e3701a2fc60e5effaec0c921e5889ff926e42bdcd4fdffad33
MD5 8954c255b5485ec41e7c5772a37bb808
BLAKE2b-256 7786ce1a55599e9593ca6f4fd21176c5e88f14465108fba06c9625ab77bdcda5

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page