This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Jump to: navigation, search

OWASP Triangle

Welcome to the Triangle chapter homepage. The current chapter leaders are Chris Romeo and Steve Pinkham. The current board consists of:

  • Rich Daugherty
  • Eric Hart
  • Steve Pinkham
  • Chris Romeo


OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.


Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Next Meeting

Everyone is welcome to join us at our chapter meetings, but registration is required at meetup for planning purposes.

We hope that you will join us at our meetings soon!

Chapter Meetings

Visit our group on

Upcoming events

See all upcoming events on

Past events

  • Jan 27, 2022 (12:00): DevSecOps Culture: Laughing through the failures, · , Rolling out DevOps + Security has its series of pitfalls. In this talk, we’ll explore real-world challenges, sprinkling in a bit of humor on behalf of the Internet, and work out the solutions to how to avoid these pain points using security culture. You’ll experience what can go wrong to expose how to do things right. Speaker: Chris Romeo, Security Journey
  • Sep 30, 2021 (12:00): Security Observability 101: Thinking Inside the Box! with Jeff Williams, · , Software is incredibly hard to secure because it's a black box. We've spent decades struggling to verify properties of software from the outside by analyzing the source code, scanning, fuzzing, pentesting, etc... The goal of "security observability" is to expose exactly what's going on inside the box while it's running. Analyzing a running application has speed, accuracy, coverage, and s (read more)
  • Jul 29, 2021 (12:00): The Software Security Testing Lifecycle: The framework testers need , · , Software security testing is hardly ever done well. Organizations struggle with when to begin security testing, what should be tested, and what tools should be used. Unfortunately, software security testing is not as simple as choosing one scanning tool and adding it to the development pipeline. Without a structured approach and planning process, development teams will miss security vulnerabilitie (read more)
  • May 27, 2021 (12:00): Using the Threat Modeling Manifesto to Build an Enterprise Program, · , The concept of threat modeling, while not new, is more imperative today than ever before. It's a foundational part of building a security culture and uncovers potential security issues before they slip into production. Proactively protecting data from the app to the API requires modeling potential attacks to mitigate weak points before bad actors find them. A team of 15 security veterans and exper (read more)
  • Apr 29, 2021 (12:00): Automate API testing and push #AppSec left (with live demos), · , In our February meeting, Joe Schottman discussed the terminology of web APIs and how the OWASP top 10 web and API vulnerability lists apply to them. In this meeting, he'll show how to place an interception proxy such as OWASP ZAP in line with software defect testing tools, helping automate API testing and pushing application security left into the CI pipeline. This talk will be a demonstration of (read more)
See all past events on

Current Sponsors

Our current meeting space sponsor is iContact.

We are seeking meeting/food sponsors, please contact us if you are interested!


The Raleigh NC Chapter is looking for new members. Please don't hesitate to contact the leadership team if you would like to assist the local chapter in any way.

We accept flattery, suggestions, and snide remarks as well as monetary, time, food, content and facilities donations.

Aside from regular meetings with guest speakers from other chapters and organizations, we are soliciting interest in new and ongoing projects our membership is involved in. If you have any interest in contributing to these projects, please let me know.


We are soliciting interest in some ongoing projects our membership is already involved in, as well as being open to new projects.

Please contact the leadership team if you are interested in helping out!