https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=Ali+HusseinOWASP - User contributions [en]2026-05-16T09:13:30ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Abu_Dhabi&diff=174160Abu Dhabi2014-05-03T15:48:11Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Abu Dhabi|extra=The chapter leaders are [mailto:Khalifa.Alshamsi@owasp.org Khalifa Alshamsi],[mailto:ali.hussein@owasp.org Ali Hussein].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-abudhabi|emailarchives=http://lists.owasp.org/pipermail/owasp-abudhabi}}<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Abu Dhabi Conferences and Meetings<br />
<br />
<br />
=Presentation Archives=<br />
<br />
Check our Slideshare files at <br />
<br />
=OWASP Abu Dhabi Chapter Leaders=<br />
<br />
[mailto:khalifa.alshamsi@owasp.org Khalifa Alshamsi], Founder and Chapter Leader<br />
<br />
[mailto:Ali.Hussein@owasp.org Ali Hussein], Co-Founder and Chapter Leader<br />
<br />
=Sponsorship Opportunities=<br />
Please contact Chapter Leaders for Sponsorship Opportunities.<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-Abu Dhabi/ Email Archives] to see what folks have been talking about'' <paypal>Abu Dhabi</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Abu_Dhabi&diff=174157Abu Dhabi2014-05-03T15:46:43Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Abu Dhabi|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein and Khalifa.Alshamsi@owasp.org Khalifa Alshamsi].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-abudhabi|emailarchives=http://lists.owasp.org/pipermail/owasp-abudhabi}}<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Abu Dhabi Conferences and Meetings<br />
<br />
<br />
=Presentation Archives=<br />
<br />
Check our Slideshare files at <br />
<br />
=OWASP Abu Dhabi Chapter Leaders=<br />
<br />
[mailto:khalifa.alshamsi@owasp.org Khalifa Alshamsi], Founder and Chapter Leader<br />
<br />
[mailto:Ali.Hussein@owasp.org Ali Hussein], Co-Founder and Chapter Leader<br />
<br />
=Sponsorship Opportunities=<br />
Please contact Chapter Leaders for Sponsorship Opportunities.<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-Abu Dhabi/ Email Archives] to see what folks have been talking about'' <paypal>Abu Dhabi</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Abu_Dhabi&diff=174155Abu Dhabi2014-05-03T15:44:31Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Abu Dhabi|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein and Khalifa.Alshamsi@owasp.org Khalifa Alshamsi].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-abudhabi|emailarchives=http://lists.owasp.org/pipermail/owasp-abudhabi}}<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Abu Dhabi Conferences and Meetings<br />
<br />
<br />
=Presentation Archives=<br />
<br />
Check our Slideshare files at <br />
<br />
=OWASP Abu Dhabi Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein], Founder and Chapter Leader<br />
<br />
[mailto:obayoa@gmail.com Obay Albadri], Co-Founder and Chapter Leader<br />
<br />
[mailto:Ayman.Babiker@owasp-krt Ayman Babiker], Co-Founder and Chapter Leader<br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed AbduAllah], Co-Founder and Operations Leader<br />
<br />
=Sponsorship Opportunities=<br />
Please contact Chapter Leaders for Sponsorship Opportunities.<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-Abu Dhabi/ Email Archives] to see what folks have been talking about'' <paypal>Abu Dhabi</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Abu_Dhabi&diff=174154Abu Dhabi2014-05-03T15:43:41Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Abu Dhabi|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein and Khalifa.Alshamsi@owasp.org Khalifa Alshamsi].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-abudhabi|emailarchives=http://lists.owasp.org/pipermail/owasp-abudhabi}}<br />
<br />
Record Hall of Meetings=<br />
Previous OWASP Abu Dhabi Conferences and Meetings<br />
<br />
<br />
=Presentation Archives=<br />
<br />
Check our Slideshare files at <br />
<br />
=OWASP Abu Dhabi Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein], Founder and Chapter Leader<br />
<br />
[mailto:obayoa@gmail.com Obay Albadri], Co-Founder and Chapter Leader<br />
<br />
[mailto:Ayman.Babiker@owasp-krt Ayman Babiker], Co-Founder and Chapter Leader<br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed AbduAllah], Co-Founder and Operations Leader<br />
<br />
=Sponsorship Opportunities=<br />
Please contact Chapter Leaders for Sponsorship Opportunities.<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-Abu Dhabi/ Email Archives] to see what folks have been talking about'' <paypal>Abu Dhabi</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=145161Khartoum2013-02-20T11:24:35Z<p>Ali Hussein: </p>
<hr />
<div>[[Image:Owasp_Khartoum.jpg]]<br />
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Cross-Site Request Forgery.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
February, 2013 Introduction to Computer Forensics '''Presentation'''<br />
<br />
April, 2013 ISO 27001 '''Session'''<br />
<br />
August, 2013 Servers Hardening '''Session'''<br />
<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=File:Owasp_Khartoum.jpg&diff=145160File:Owasp Khartoum.jpg2013-02-20T11:23:16Z<p>Ali Hussein: </p>
<hr />
<div></div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=145159Khartoum2013-02-20T11:22:26Z<p>Ali Hussein: </p>
<hr />
<div>[[File:https://www.dropbox.com/s/mo5btlfryxuow2k/owasp%20Khartoum.jpg]]<br />
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Cross-Site Request Forgery.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
February, 2013 Introduction to Computer Forensics '''Presentation'''<br />
<br />
April, 2013 ISO 27001 '''Session'''<br />
<br />
August, 2013 Servers Hardening '''Session'''<br />
<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=145158Khartoum2013-02-20T11:21:36Z<p>Ali Hussein: </p>
<hr />
<div>[[Image:https://www.dropbox.com/s/mo5btlfryxuow2k/owasp%20Khartoum.jpg]]<br />
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Cross-Site Request Forgery.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
February, 2013 Introduction to Computer Forensics '''Presentation'''<br />
<br />
April, 2013 ISO 27001 '''Session'''<br />
<br />
August, 2013 Servers Hardening '''Session'''<br />
<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=145157Khartoum2013-02-20T11:18:09Z<p>Ali Hussein: </p>
<hr />
<div>[[Image:Owasp.png]]<br />
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Cross-Site Request Forgery.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
February, 2013 Introduction to Computer Forensics '''Presentation'''<br />
<br />
April, 2013 ISO 27001 '''Session'''<br />
<br />
August, 2013 Servers Hardening '''Session'''<br />
<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=145156Khartoum2013-02-20T11:15:09Z<p>Ali Hussein: </p>
<hr />
<div><br />
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Cross-Site Request Forgery.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
February, 2013 Introduction to Computer Forensics '''Presentation'''<br />
<br />
April, 2013 ISO 27001 '''Session'''<br />
<br />
August, 2013 Servers Hardening '''Session'''<br />
<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=145155Khartoum2013-02-20T11:14:48Z<p>Ali Hussein: </p>
<hr />
<div>[[Image:Owasp_logo_jo.png]]<br />
{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Cross-Site Request Forgery.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
February, 2013 Introduction to Computer Forensics '''Presentation'''<br />
<br />
April, 2013 ISO 27001 '''Session'''<br />
<br />
August, 2013 Servers Hardening '''Session'''<br />
<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
JAN,14 2013 First Session about OWASP Top 10: A5: Cross-Site Request Forgery . Presented by Abdullah Ulber.<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141942Khartoum2013-01-07T11:08:38Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Cross-Site Request Forgery.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141941Khartoum2013-01-07T11:07:55Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented by Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141940Khartoum2013-01-07T11:07:29Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented by Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented by Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141939Khartoum2013-01-07T11:06:31Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented by Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented by Asim Jaweesh and Ali Hussein<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141938Khartoum2013-01-07T11:02:23Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 6:00PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
<br />
Dec,04 2012 meeting was about OWASP Top 10: A7+A8: Insecure Cryptographic Storage + Failure to Restrict URL Access. Presented Mohammed Abdullah and Mohammed Al-Tayar<br />
<br />
Dec,22 2012 meeting was about OWASP Top 10: A9: Insufficient Transport Layer Protection. Presented Asim Jaweesh<br />
<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141808Khartoum2013-01-04T08:42:28Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 3:30PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141807Khartoum2013-01-04T08:24:39Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 3:30PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
=Presentation Archives=<br />
<br />
check our slideshare files at [http://www.slideshare.net/owaspkhartoum]<br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141806Khartoum2013-01-04T08:19:59Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 3:30PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
Previous OWASP Khartoum Conferences and Meetings<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
=Presentation Archives=<br />
<br />
The following presentations have been given at local chapter meetings: <br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141805Khartoum2013-01-04T08:19:16Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 3:30PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
=Presentation Archives=<br />
<br />
The following presentations have been given at local chapter meetings: <br />
<br />
=OWASP Khartoum Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141804Khartoum2013-01-04T08:17:58Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 3:30PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
=Presentation Archives=<br />
<br />
The following presentations have been given at local chapter meetings: <br />
<br />
=Khartoum OWASP Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141803Khartoum2013-01-04T08:17:28Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:obayoa@gmail.com Obay Albadri].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 3:30PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
=Presentation Archives=<br />
<br />
The following presentations have been given at local chapter meetings: <br />
<br />
=Khartoum OWASP Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}<br />
<br />
<br />
[[Category:Khartoum]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141802Khartoum2013-01-04T08:16:25Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
{{Chapter Template|chaptername=Khartoum|extra=The chapter leadership includes: [mailto:ali.hussein@owasp.org Ali Hussein, Founder/Chapter Leader], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], [mailto:ggenung@gmail.com Greg Genung, Board Member]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}} <br />
<br><br><br />
<br />
<br />
<br />
=Upcoming Events=<br />
<br />
<br />
== OWASP Khartoum Open Session - Cross-Site Request Forgery ==<br />
<br />
<br />
'''When:''' January 12 th from 3:30PM - 9:00pm<br />
<br />
'''Who:''' Abdullah Ulber<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich. <br />
<br />
<br />
'''Topic:''' Data events, or why security is cloudier than you think.<br />
<br />
'''Abstract:''' Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack. <br />
<br />
<br />
'''Location:''' Sudan University of Science and Technology<br />
<br />
<br />
<br />
== Future Speakers and Events ==<br />
<br />
<br />
=Record Hall of Meetings=<br />
June,30 2012 meeting was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman<br />
<br />
July,14 2012 meeting was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker<br />
<br />
Aug,11 2012 meeting was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman<br />
<br />
Sep,1 2012 meeting was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman<br />
<br />
Sep,22 2012 meeting was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein<br />
=Presentation Archives=<br />
<br />
The following presentations have been given at local chapter meetings: <br />
<br />
=Khartoum OWASP Chapter Leaders=<br />
<br />
[mailto:Ali.hussein@owasp.org Ali Hussein, Founder / Chapter Leader ] <br />
<br />
[mailto:obayoa@gmail.com, Obay Albadri Chapter Leader] <br />
<br />
[mailto:almofti.mohamed@owasp.org Mohammed Abd Allah, Operations Leader] <br />
<br />
=Sponsorship Opportunities=<br />
<br />
=Local News=<br />
<br />
''If a link is available, click for more details on directions, speakers, etc. You can also review [http://lists.owasp.org/pipermail/owasp-khartoum/ Email Archives] to see what folks have been talking about'' <paypal>Khartoum</paypal> <br />
<br />
<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}<br />
<br />
<br />
[[Category:Khartoum]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141801Khartoum2013-01-04T07:50:53Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<headertabs /><br />
= Meetings =<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
= Local News =<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : Sudan University of Science and Technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<headertabs /> <br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141800Khartoum2013-01-04T07:49:26Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<headertabs /><br />
= Meetings =<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
= Local News =<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : Sudan University of Science and Technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141799Khartoum2013-01-04T07:47:58Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<headertabs /><br />
==Meetings==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : Sudan University of Science and Technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141798Khartoum2013-01-04T07:39:29Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
==Meetings==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : Sudan University of Science and Technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
__NOTOC__ <headertabs /> <br />
<br />
{{PutInCategory}}<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141797Khartoum2013-01-04T07:37:06Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
==Meetings==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : Sudan University of Science and Technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141664Khartoum2013-01-02T16:38:07Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : Sudan University of Science and Technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141663Khartoum2013-01-02T16:04:06Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : sudan university of science and technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141662Khartoum2013-01-02T16:03:18Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
'''Location : Sudan University for science and technology''' <br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141661Khartoum2013-01-02T16:02:27Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery''' 12/1/2012 - 6:00 PM - 9:00 PM<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
<br />
Location : Sudan University for science and technology <br />
<br />
'''Meeting Location''': University of Bahri, Mohammed Najeeb Str, Al-Amarat.<br />
<br />
<br />
<br />
<br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141660Khartoum2013-01-02T16:01:24Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery'''<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
]<br />
Location : Sudan University for science and technology <br />
<br />
'''Meeting Location''': University of Bahri, Mohammed Najeeb Str, Al-Amarat.<br />
<br />
<br />
<br />
<br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141659Khartoum2013-01-02T16:00:27Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery'''<br />
[Description<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
]<br />
Location : Sudan University for science and technology <br />
<br />
'''Meeting Location''': University of Bahri, Mohammed Najeeb Str, Al-Amarat.<br />
<br />
<br />
<br />
<br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141658Khartoum2013-01-02T15:59:26Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''OWASP Khartoum Open Session - Cross-Site Request Forgery'''<br />
[Description]<br />
<br />
Cross-Site Request Forgery (CSRF) hides in the shadow of two more well-known web vulnerabilities: Cross-site scripting and SQL injection. Despite its occlusion, statistics clearly show that CSRF attacks are on the increase. The leading secure cloud hosting company Firehost rated CSRF as the most frequent attack in 2011 and the second most frequent attack in the third quarter of 2012. Termed “the sleeping giant” back in 2007, the giant has definitely woken up.<br />
<br />
CSRF attacks are remarkably easy to mount and their potential impact is limited only by the targeted site itself. All the major web sites like Gmail, Amazon and Facebook had their brush with CSRF in the past. CSRF is a clear and present threat that is better taken seriously.<br />
<br />
This OWASP session raises awareness of the threat, explains its workings, and leads the audience through the gamut of available protections, both client and server side. Attendees will leave equipped with the necessary knowledge to protect their web applications as well as themselves against this underestimated attack.<br />
<br />
About the Speaker<br />
<br />
Abdullah Ulber works at Banan IT as a senior software architect, web developer and education manager. He looks back to more than ten years of professional software development, specialising in web applications based on ASP.NET MVC, HTML5 and Silverlight. He is a keen follower of all trends in the web world and enjoys passing on his knowledge in captivating presentations and courses.<br />
<br />
Outside his work, he is an organising member of the OWASP local chapter in Khartoum.<br />
<br />
Before his move to Sudan, Abdullah was the co-organiser of the Swiss Olympiad in Informatics and the team leader of the Swiss delegation to the International Olympiads in Informatics from 1998 to 2005.<br />
<br />
He holds a master’s degree in computer science from ETH Zurich.<br />
Location : Sudan University for science and technology <br />
<br />
'''Meeting Location''': University of Bahri, Mohammed Najeeb Str, Al-Amarat.<br />
<br />
'''Next Events:''' The first Owasp Khartoum Session will be held in the next few weeks and presented by Mr. Abdullah Ulber.<br />
<br />
<br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Husseinhttps://wiki.owasp.org/index.php?title=Khartoum&diff=141613Khartoum2012-12-30T08:10:40Z<p>Ali Hussein: </p>
<hr />
<div>{{Chapter Template|chaptername=Khartoum, Sudan|extra=The chapter leaders are [mailto:ali.hussein@owasp.org Ali Hussein], [mailto:almofti.mohamed@owasp.org Mohammed Abd Allah], and [mailto:ali.abdel.rahman@owasp.org Ali Abdel Rahman].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-khartoum|emailarchives=http://lists.owasp.org/pipermail/owasp-khartoum}}<br />
<br />
== Meetings ==<br />
OWASP Khartoum Meetings will be held every two weeks on Saturdays.<br />
<br />
== Previous OWASP Khartoum Conferences and Meetings ==<br />
Four meetings are held in the '''university of Bahri'''.<br><br />
<br />
'''June,30 2012''' meeting <nowiki>was an introduction to OWASP Top 10: A1: SQL injections manually and using automated tools. Presented by Ali Hussein and Mohammed Osman</nowiki><br><br />
<br />
'''July,14 2012''' meeting <nowiki>was about OWASP Top 10: A2: Cross Site Scripting (XSS). Presented by Ayman Babiker</nowiki><br><br />
<br />
'''Aug,11 2012''' meeting <nowiki>was about OWASP Top 10: A3: Broken Authentication and Session Management and A4: Insecure Direct Object References. Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,1 2012''' meeting <nowiki>was about OWASP Top 10: A5: Cross Site Request Forgery (CSRF). Presented Obay Osman</nowiki><br><br />
<br />
'''Sep,22 2012''' meeting <nowiki>was about OWASP Top 10: A6: Security Misconfiguration. Presented Ali Hussein</nowiki><br><br />
<br />
No conferences have been held yet.<br><br />
<br />
== Local News ==<br />
<br />
'''Meeting Location''': University of Bahri, Mohammed Najeeb Str, Al-Amarat.<br />
<br />
'''Next Events:''' The first Owasp Khartoum Session will be held in the next few weeks and presented by Mr. Abdullah Ulber.<br />
<br />
<br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
OWASP Khartoum Linkedin [http://www.linkedin.com/groups/OWASP-Khartoum-4341719] <br />
OWASP Khartoum Facebook Page [https://www.facebook.com/groups/OWASP.Khartoum/]<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Sudan]]</div>Ali Hussein