Automated security analysis of your ABAP™ applications

Most SAP® customers develop own ABAP™ programs. Developers from the company work together with external consultants to enhance existing functionality or create completely new applications. How can SAP® customers ensure that their ABAP™ programs adhere to best practices and do not introduce security weaknesses to their business systems?

The answer is automated source code analysis for all ABAP™ programs (e.g. reports, BSP, Web Dynpro applications) provided by CodeProfiler by Virtual Forge. CodeProfiler is the 1st product worldwide that provides such automated testing for ABAP™ source code. The tests are based on a database with patterns of relevant insecure coding practices that result from a decade of experience in code review and security research.

This database and a unique approach to analyze data flows in ABAP™ programs  allow CodeProfiler to find known insecure coding practices in ABAP™ programs with a very high reliability. Besides security checks performed by CodeProfiler the code can also be analyzed for compliance, performance, and quality, each of the four areas constituting an important pillar in ensuring custom ABAP™ code and the business processes and data is reliable.

CodeProfiler is SAP® Certified.