RedRays Security Platform for Penetration testers
If you’re a penetration tester, the RedRays Security Platform is worth considering. With its comprehensive security measures, this platform can help you conduct your assessments with greater ease and confidence. Trust in the quality of this platform to help you achieve your desired results.
Please note that the current release has been specifically tailored for bug bounty testers. As a result, any proof of concept for SAP systems that has been released within the past three months may not be visible, although they will be detected.
Once the purchase is complete, the scanner will become accessible as a SaaS solution through a dedicated VM. In order to utilize the Lite and Standard packages, the tester must first send SAP Host names for validation, which will then be deployed within the license.

Lite
For Vulnerability Assessment-
Available Modules
-
Port and Service Detection
-
Vulnerability Management
-
Vulnerability Assessment
-
Passwords Security
-
Threat Modeling
-
Supported System
-
Scan any SAP host IP*
-
SAP HANA and SAP S/4HANA
-
SAP NetWeaver ABAP/JAVA
-
SAP Business Objects
-
SAP Cloud Connector
-
SAP Business One
-
Reporting
-
SMTP Support
-
Reporting
-
Jira ITSM
Advanced
For Vulnerability Assessment and Penetration Testing-
Available Modules
-
Port and Service Detection
-
Vulnerability Management
-
Vulnerability Assessment
-
Passwords Security
-
Threat Modeling
-
Supported System
-
Scan any SAP host IP
-
SAP HANA and SAP S/4HANA
-
SAP NetWeaver ABAP/JAVA
-
SAP Business Objects
-
SAP Cloud Connector
-
SAP Business One
-
Reporting
-
SMTP Support
-
Reporting
-
Jira ITSM
Standard
For Vulnerability Assessment-
Available Modules
-
Port and Service Detection
-
Vulnerability Management
-
Vulnerability Assessment
-
Passwords Security
-
Threat Modeling
-
Supported System
-
Scan any SAP host IP*
-
SAP HANA and SAP S/4HANA
-
SAP NetWeaver ABAP/JAVA
-
SAP Business Objects
-
SAP Cloud Connector
-
SAP Business One
-
Reporting
-
SMTP Support
-
Reporting
-
Jira ITSM
Supported payments




FAQ
At present, our payment methods include Bank Transfers (wired) and Credit Card payments.
Yes, the platform is SAP certified.
The RedRays Security Platform is a scanner that uses proofs of concept (PoC) to identify vulnerabilities. It can replicate most of the detected vulnerabilities using PoC. The scanner sends PoC of vulnerabilities to detected SAP Services and checks if the response matches certain patterns to confirm the existence of vulnerabilities.
Our server provider offers AWS, GCP, and Azure as locations for our scanners. We can host the scanner on any preferred hosting provider depending on the client’s needs.
We release updates every month, usually once or twice per month. These updates may include updates to the codebase, new SAP security notes, and other improvements.
Absolutely. Our support team is available via email from 9 AM to 6 PM GMT for penetration testers and individual security researchers. For SAP Consultant companies and Enterprise plans, we offer a 24/7 support plan based on the support matrix.