Welcome to the Triangle chapter homepage. The current chapter leaders are Chris Romeo and Steve Pinkham. The current board consists of:
- Rich Daugherty
- Eric Hart
- Steve Pinkham
- Chris Romeo
OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member?
Everyone is welcome to join us at our chapter meetings, but registration is required at meetup for planning purposes.
We hope that you will join us at our meetings soon!
Chapter MeetingsVisit our group on meetup.com
- Aug 29, 2019 (18:30): Speaker TBA - Contact us if interestediContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCTBA
- Sep 26, 2019 (18:30): Speaker TBA - Contact us if interestediContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCTBA
- Oct 24, 2019 (18:30): Mobile AppSec 101iContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCA storm of mobile app security and privacy issues continues to intensify, while the skills gap worsens. Security professionals have discovered that web app security practices don't cut it for mobile. Because the tools and methodologies differ, it's time for practitioners to learn some new skills leveraging the OWASP Mobile Project resources and patterns found testing thousands of mobile apps. In t (read more)
- Nov 28, 2019 (18:30): Speaker TBA - Contact us if interestediContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCTBA
- Dec 26, 2019 (18:30): Speaker TBA - Contact us if interestediContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCTBA
- Jul 25, 2019 (18:30): The ten things I wish every developer knew about application securityiContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCAre your web applications as secure as they should be? How do they fair against the OWASP Top 10, the list of the most dangerous application risks? You almost certainly suffer from one or more of the OWASP Top 10 problems in your web applications. There is an answer for each of the OWASP Top 10 application risks. Enter the OWASP Proactive Controls or the ten things I wish every developer knew abou (read more)
- Jun 27, 2019 (18:30): AppSec Tales of Fails(& avoiding them), plus Deserialization Intro-Rebecca DeckPendo, 150 Fayetteville St #1400 · Raleigh, NC****PLEASE NOTE LOCATION: Not our normal meeting space****Pizza and beverages will be supplied. Thanks to Pendo for offering us meeting space and drinks! Rebecca Deck of DirectDefense will be covering two topics for us this month.Appsec Tales of Fails:Manual application security testing is expensive. As a third-party consultant, you regularly are forced to deliver substandard test results to clien (read more)
- May 30, 2019 (18:30): Build a complete security operations and compliance program on a Graph DBiContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCSpeaker: Erkang Zheng Abstract: Attackers think in graphs; defenders operate with lists. That’s why attackers win. What if we could have a graph-based, data-driven security and compliance platform that can: · intelligently analyze my environment,· automatically keep up with the constant changes and· help us understand and navigate that complexity This talk describes how the security and engin (read more)
- Feb 28, 2019 (18:30): Web shells: a dirty little secret of application securityiContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCWeb shells are malicious web applications attackers place on vulnerable application servers to control them remotely. They've existed since the early days of web applications but gained significant attention when they were a substantial component of last year's Equifax breach. As exterior perimeters have become better and better defended against non-web attacks, web servers have increasingly becom (read more)
- Jan 31, 2019 (18:30): AppSec Strategy with a hint of Security Champions iContact, 2121 RDU Center Drive, 4th Floor · Morrisville, NCBuilding an Application Security program takes a consistent, defense in depth strategy. Building a strong base that integrates into the SDLC is imperative to change the security culture. The presentation will walk through several tools or processes categorized within one of the three pillars of defense – Prevent, Detect, React, prioritized from lease expensive to fix security vulnerabilities to (read more)
Our current meeting space sponsor is iContact.
We are seeking meeting/food sponsors, please contact us if you are interested!
The Raleigh NC Chapter is looking for new members. Please don't hesitate to contact the leadership team if you would like to assist the local chapter in any way.
We accept flattery, suggestions, and snide remarks as well as monetary, time, food, content and facilities donations.
Aside from regular meetings with guest speakers from other chapters and organizations, we are soliciting interest in new and ongoing projects our membership is involved in. If you have any interest in contributing to these projects, please let me know.
We are soliciting interest in some ongoing projects our membership is already involved in, as well as being open to new projects.
Please contact the leadership team if you are interested in helping out!