Enterprise Threat Monitor  for SAP Applications

Keep your systems protected, 24/7.

- Immediately detect attacks and unauthorized access

- Neutralize attacks before they cause damage

- Integrate pre-correlated high quality SAP alerts with Splunk


Unlimited users, unlimited systems. Start your 14 day free trial and see whether ETM is the best fit for your enterprise.

Download Enterprise Threat Monitor

Integrate SAP security events with Splunk in under 20 minutes

ETM agent works on Windows 7, 2012 Server and above. It runs on virtual and physical hardware.

Download Enterprise Threat Monitor


Enter your SAP connection information


Simply enter your SAP information to instantly monitor your systems using our SAP attack detection engine.

Forward events to Splunk

With a few clicks you can customize ETM, install our Splunk app, and activate event forwarding to Splunk.
The results can be viewed from Splunk's web interface.


Based on our years of experience working with some of the world's largest corporations, ETM utilizes proprietary enterprise threat detection rules specific to SAP to process and correlate your SAP security information.

ETM uses SAP's RFCs to connect to the target systems. ETM requires basic authorizations, it requires no changes on your target SAP systems and it has no negative impact on SAP systems' performance.

Please contact us via etm@esnc.de for more information.

How does it work?

"With ETM, we get instant notifications when an unauthorized user tries to download sensitive information from SAP or bypass authorizations. This is the first time we've had a comprehensive view into the security of our SAP systems.",

CSO of a large logistics company