lolcreds

Public credential defaults and exposure patterns for authorized security testing.

SAP NetWeaver Application Server ABAP

SAPenterprise app5 credentials2 default credentials

Credentials5 documented
01

SAP* Emergency / Default Client User

sap-netweaver-abap / sap-star-default-client-user

ABAP systems contain special built-in users such as SAP* used for emergency access and client administration. Public SAP documentation describes securing standard users and changing default passwords immediately after installation.

static defaultuser definedsecretusername/password

Default credentials

SAP*:PASS

Location

public interface
SAP GUI, RFC, WebGUI, ICF services, and ABAP login screens
database

ABAP user master tables such as USR02/USRACL and client-dependent user records

config file

installation guides, client copy scripts, and system provisioning files

logs

security audit log, SM20/SM21 events, RFC traces, and gateway logs

Notes

SAP* behavior depends on client/user-master state and profile parameters. Treat this as a known standard-user default requiring post-install hardening, not as evidence that every system accepts it.

02

DDIC / EARLYWATCH Standard User Password

sap-netweaver-abap / ddic-earlywatch-standard-users

ABAP installations include standard technical users such as DDIC and EARLYWATCH whose default or initial passwords are commonly targeted and must be changed during system hardening.

static defaultuser definedsecretusername/password

Location

public interface
SAP GUI, RFC, WebGUI, and administrative transactions
database

ABAP user master and password hash tables

artifact

client copies, system refresh exports, and audit extracts

Notes

Known initial passwords vary by release/client and are included in SAP hardening guidance; avoid assuming they remain valid after proper installation hardening.

03

ABAP Dialog/System User Password Hash

sap-netweaver-abap / abap-user-password-hash

NetWeaver ABAP stores dialog, system, communication, service, and reference user credentials in user master tables. These users drive SAP GUI, RFC, background jobs, integrations, and service accounts.

user definedgenerated on installsecretusername/password

Looks like

pattern
pattern

ABAP user master/password hash table or field names seen in dumps, SQL extracts, and documentation

\bUSR02\b|\bBCODE\b|\bPASSCODE\b|\bPWDSALTEDHASH\b

Location

database

USR02 and related ABAP user/password tables

public interface
SAP GUI, RFC, ICF, OData, WebGUI, and application logins
config file

RFC destinations, background job variants, interface configs, and provisioning files

secret store

SAP Secure Storage, password vaults, and automation secrets

logs

security audit log, RFC traces, gateway logs, and job logs

04

RFC Destination Credential

sap-netweaver-abap / rfc-destination-credential

ABAP systems store RFC destination credentials for trusted and password-based connections to SAP and non-SAP systems.

user definedsecretusername/password

Location

database

RFC destination configuration and protected password storage

config file

transport exports, interface documentation, and provisioning scripts

secret store

SAP Secure Storage and enterprise vaults

logs

SM59 tests, RFC traces, and interface error logs

05

PSE / SNC / SSL Private Key

sap-netweaver-abap / pse-snc-ssl-private-key

ABAP application servers use PSE private keys and certificates for SSL/TLS, SNC, SSO, and trusted RFC communication.

generated on installuser definedsecretkey pair

Looks like

pattern
pattern

private key material exported from SAP PSE or automation

-----BEGIN (RSA |EC |ENCRYPTED |)PRIVATE KEY-----
pattern

SAP Personal Security Environment file path or artifact

\.pse$

Location

config file

SECUDIR PSE files such as SAPSSLS.pse, SAPSNCS.pse, and STRUST-managed stores

secret store

SAP Cryptographic Library PSEs, HSM/vault-backed keys, and certificate stores

artifact

system backups, exports, and support bundles

Scope

Authorized use

LOLCreds helps map the credential surface of real products: known defaults, generated values, credential locations, and exposure patterns.