Difference between revisions of "Khartoum"

From OWASP
Jump to: navigation, search
(48 intermediate revisions by 4 users not shown)
Line 1: Line 1:
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein] and [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}
+
[[Image:Owasp_Khartoum.jpg]]
 +
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}
  
== Meetings ==
+
== Upcoming Events ==
OWASP Khartoum Meetings will be held every two weeks on Saturdays.
+
  
== Previous OWASP Khartoum Conferences and Meetings ==
 
;Four meetings are held in the '''university of Bahri'''.
 
;'''OWASP Khartoum''' June,30 2012 meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools.</nowiki>
 
;No conferences have been held yet.
 
  
== Local News ==
+
=== OWASP Khartoum Open Session - Infrastructure Hardening  ===
  
'''Meeting Location'''
 
  
Everyone is welcome to join us at our chapter meetings.
+
'''''When:''''' 25th May 2013 from 16:30 - 19:00
  
[[Category:OWASP Chapter]]
+
 
[[Category:Sudan]]
+
 
 +
'''''Who:''''' Ali Hussein Ahmed
 +
 
 +
Ali Hussein is the Founder of OWASP Khartoum Local Chapter, Currently working as Information Security Senior Engineer at [http://www.sudatel.sd/ar/sudatel/ Sudatel Telecom Group], before joining sudatel he was working in [http://www.ebanan.com/company.php Banan IT] where he was responsible of designing/implementing InfoSec best practices for the company products (telecom solutions).
 +
 
 +
He has 4 years of experience in information security, His experience is in Application Security, Penetration Testing, Systems and Security Administration, He is a holder of dozen IT security Certifications including CEH, Security+, Cisco Certified Network Associate(CCNA), Cisco Certified Network Associate Security (CCNA:security), Information Security Foundation based on ISO/IEC 27002, Offensive Security Wireless Professional (OSWP), Offensive Security Certified Professional (OSCP).
 +
 
 +
 
 +
'''''Topic:''''' Infrastructure Hardening
 +
 
 +
'''''Abstract:''''' A pure technical presentation on the best practices of hardening your Servers, Routers and Switches, All the hackers way, This will include Windows Platform, Linux Platform, IIS Servers, Apache Servers, FTP Servers, Mail Servers Hardening.
 +
 
 +
We will showcase number of Vulnerabilities and how to harden your systems against them, This will range from [http://technet.microsoft.com/en-us/security/bulletin/ms08-oct Microsoft Security Bulletin MS08] to Fighting Adobe zero days.
 +
 
 +
We will show number of very beneficial tools for systems/networks administrators, This include [http://en.wikipedia.org/wiki/Microsoft_Baseline_Security_Analyzer Microsoft MBSA], Attack surface Analyzer, Server Mask, [https://www.owasp.org/index.php/Category:OWASP_DirBuster_Project OWASP Dirbuster], [https://wiki.umiacs.umd.edu/umiacs/index.php/Enhanced_Mitigation_Experience_Toolkit EMET] and many many more.
 +
 
 +
This OWASP session raises awareness of the threat, Explains its workings, And leads the audience through the gamut of available protections.
 +
 
 +
Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.
 +
 
 +
 
 +
'''''Location:'''''  Sudan University of Science and Technology, Seminars Hall.
 +
[https://maps.google.com/maps?saddr=15.599537%2C32.511294&hl=en&ll=15.598888%2C32.513169&spn=0.006242%2C0.009645&sll=15.599534%2C32.511289&sspn=0.00156%2C0.002411&t=h&mra=mift&mrsp=0&sz=19&z=17 Google Maps]
 +
 
 +
 
 +
=Record Hall of Meetings=
 +
Previous OWASP Khartoum Conferences and Meetings
 +
 
 +
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman
 +
 
 +
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker
 +
 
 +
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman
 +
 
 +
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman
 +
 
 +
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein
 +
 
 +
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar
 +
 
 +
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein
 +
 
 +
JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.
 +
 
 +
Mar, 23 3013 meeting was about Introduction to Computer Forensics in Digital Crimes. Presented by Ahmed Abbas
 +
=Presentation Archives=
 +
 
 +
Check our Slideshare files at [http://www.slideshare.net/owaspkhartoum Slid Share]
 +
 
 +
=OWASP Khartoum Chapter Leaders=
 +
 
 +
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder and Chapter Leader ]
 +
 
 +
[mailto:obayoa@gmail.com, Obay Albadri Chapter C-Founder and Chapter Leader]
 +
 
 +
[mailto:almofti.mohamed@owasp.org  Mohammed AbduAllah, Co-Founder and Operations Leader]
 +
 
 +
=Sponsorship Opportunities=
 +
Please contact Chapter Leaders for Sponsorship Opportunities.
 +
 
 +
=Local News=
 +
 
 +
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal>
 +
 
 +
 
 +
__NOTOC__ <headertabs />
 +
 
 +
{{PutInCategory}}

Revision as of 15:08, 21 May 2013

Owasp Khartoum.jpg

OWASP Khartoum, Sudan

Welcome to the Khartoum, Sudan chapter homepage. The chapter leaders are Ali Hussein, Mohammed Abd Allah, and Obay Albadri.
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Upcoming Events

OWASP Khartoum Open Session - Infrastructure Hardening

When: 25th May 2013 from 16:30 - 19:00


Who: Ali Hussein Ahmed

Ali Hussein is the Founder of OWASP Khartoum Local Chapter, Currently working as Information Security Senior Engineer at Sudatel Telecom Group, before joining sudatel he was working in Banan IT where he was responsible of designing/implementing InfoSec best practices for the company products (telecom solutions).

He has 4 years of experience in information security, His experience is in Application Security, Penetration Testing, Systems and Security Administration, He is a holder of dozen IT security Certifications including CEH, Security+, Cisco Certified Network Associate(CCNA), Cisco Certified Network Associate Security (CCNA:security), Information Security Foundation based on ISO/IEC 27002, Offensive Security Wireless Professional (OSWP), Offensive Security Certified Professional (OSCP).


Topic: Infrastructure Hardening

Abstract: A pure technical presentation on the best practices of hardening your Servers, Routers and Switches, All the hackers way, This will include Windows Platform, Linux Platform, IIS Servers, Apache Servers, FTP Servers, Mail Servers Hardening.

We will showcase number of Vulnerabilities and how to harden your systems against them, This will range from Microsoft Security Bulletin MS08 to Fighting Adobe zero days.

We will show number of very beneficial tools for systems/networks administrators, This include Microsoft MBSA, Attack surface Analyzer, Server Mask, OWASP Dirbuster, EMET and many many more.

This OWASP session raises awareness of the threat, Explains its workings, And leads the audience through the gamut of available protections.

Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.


Location: Sudan University of Science and Technology, Seminars Hall. Google Maps


[edit]

Previous OWASP Khartoum Conferences and Meetings

June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman

July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker

Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman

Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman

Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein

Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar

Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein

JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.

Mar, 23 3013 meeting was about Introduction to Computer Forensics in Digital Crimes. Presented by Ahmed Abbas

Check our Slideshare files at Slid Share

Please contact Chapter Leaders for Sponsorship Opportunities.

If a link is available, click for more details on directions, speakers, etc. You can also review Email Archives to see what folks have been talking about

funds to OWASP earmarked for Khartoum.


How to add a new Khartoum article

You can follow the instructions to make a new Khartoum article. Please use the appropriate structure and follow the Tutorial. Be sure to paste the following at the end of your article to make it show up in the Khartoum category:

[[Category:Khartoum]]