Skip to main content
SAP Pentest Playbook
Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Back to homepage
  2. /
  3. Other SAP Solutions
  4. /
  5. SAP HANA DB
  6. /
  7. Service discovery & enumeration
Edit page

Service discovery & enumeration

Description

The HANA Database SQL client port of the systems index server provides access to the SQL/MDX functionality of the database via JDBC/ODBC. Database clients for administration and development need access to this service. The encrypted communication can be configured using TLS. Wide exposure to administrative database services comes with inherent risks. Specifically weak passwords, insufficient TLS configuration, and hardening and patching of the HANA system can expose an attached surface for various exploit scenarios.

Common used Network Ports:

  • 3XX15

Options

  • Nmap:
    • nmap -sV -R -p30015 -Pn <Target Address(es)/Domain Name>
    • nmap -sSVC -n -Pn -p30015 --datadir . <Target Address(es)/Domain Name> (NMAP ERPscan probes)