Andreas Wiegenstein

Heidelberg, Germany

English, German

Andreas Wiegenstein is engaged in SAP cyber security since 2003. He discovered quite a number of zero-day vulnerabilities in SAP software and supported development of a market leading static code analysis tool for the business programming language ABAP. He has spoken at more than 70 conferences world-wide about SAP security, including Black Hat, DeepSec, Hack In The Box, IT Defense, RSA, SAP TechEd and Troopers (alphabetical order). His current research is focused on SAP malware and supply chain attacks.

IKT Sicherheitskonferenz 2024

September 16, 2024

Vienna

800 attendees

Discussing living off the land attacks for SAP -> the destructive power of an ABAP malware

CDRT

May 27, 2025

Frankfurt

4 hours of SAP security mechanisms, security features, risks and good practices.

secIT

March 19, 2025

Hannover

IT Defense 2025

February 13, 2025

Leipzig

DeepSec 2024

November 21, 2024

Vienna

Hack In The Box

August 29, 2019

Singapore

The Digital Society Conference 2017: Reliability Reloaded

November 20, 2017

Berlin

Troopers 16

March 16, 2016

Heidelberg

iqnite

April 29, 2015

Düsseldorf

Troopers14

March 19, 2014

Heidelberg

Troopers13

March 13, 2013

Heidelberg

SAPience.be Tech Day 2012

November 8, 2012

Brussels

Hack In The Box (Europe)

May 20, 2011

Amsterdam

SAP Tech Ed

September 14, 2006

Las Vegas

SAP Tech Ed

September 28, 2005

Boston

SAP TechEd

August 6, 2004

San Diego

Talk about the attack potential of an ABAP-based malware.

An overview of cool SAP vulnerabilities from the last 20 years of research together with my colleague Xu Jia.

SAP Security basics, risks and best practices

CLUE Forum

November 7, 2024

Zurich

A (successful) demonstration of an attack from the SAP backend against an OT system.

Techniques to build vulnerabilities into software that can't be detected by static code scanners.

A talk about common risks in SAP landscapes

A talk about a MITM vulnerability related to SAP patch downloads.

A talk about the results of a statistical analysis of vulnerabilities in ABAP custom code on 200+ SAP installations.

An analysis of SAP attacks across a hosting provider. Together with Xu Jia.

A talk about a former 0-day that allowed to remote-control user sessions in SAP ABAP servers. Together with Xu Jia.

IT Defense 13

February 1, 2013

Berlin

A proposal how to prevent data leakage caused by insecure ABAP applications at the code level.

Talk abour efficent attack vectors against SAP systems& defense capabilities.

RSA

March 1, 2012

San Francisco

An overview of common risks related to custom SAP development

Talk about the feasability of SQL Injection attacks against SAP Systems.

Black Hat Briefings

March 17, 2011

Barcelona

An overview of risks related to SAP's business programming language ABAP

Talk about the most common and critical security risks in SAP development.

A risk-oriented talk about vulnerabilities in SAP Frontend applications

Talk about common flaws in (SAP) Web application programming and some good practices for defense

Andreas Wiegenstein

About

Speaking Topics & Expertise

Connect

Experience Level

Featured Talks

SAP als Cyberwaffe (SAP as a cyber weapon)

Speaking History

2025

SAP Cyber Security Awareness

SAP als Cyberwaffe (SAP as a cyber weapon)

20 Jahre SAP Sicherheit (20 years of SAP security)

2024

SAP Cyber Security 101

2019

SCARE - Static Code Analysis Recognition Evasion

2017

SAP Security

2016

Patch me if you can

2015

The ABAP Quality-Benchmark - An Analysis of 200+ SAP Installations

2014

Risks of Hosted SAP Environments

2013

Ghost In The Shell

2012

Breaking your SAP System in 60 seconds

2011

SQL Injection with ABAP

2006

The Top Five Application Security Threats

2005

Web Applications - Security Risk #1

2004

Writing Secure Web Applications

SAP als Cyberwaffe (SAP as a cyber weapon)

Detecting Data Leaks in SAP -The Next Level of Static Code Analysis

Final Call - ABAP Security

The ABAP Underverse