OWASP Sofia Chapter

This is the page of the OWASP Sofia Chapter. An OWASP Chapter is like a user group. We do events, discuss topics.

If you’d like to be a part of our community, want to do a talk or sponsor us, check out the about page.

All our resources are located here.

Past Events

For future events, check the meetup page.

Atanas Pashov - Pros & Cons of Penetration Testing (June 27th, 2019)


In this session you will learn what is penetration testing. What are the objectives and benefits of it and at what cost. You will also learn why some vulnerabilities may not be ever discovered by automated tools. You will see only real life examples from real penetration tests, no theory, no set-ups, no fictious vulnerabilities, nothing discovered by somebody else that you can find somewhere else.

Atanas is a cloud security penetration tester at SAP LAB Bulgaria. He has more than 10 years experience in information security working in various position as an infosec manager, security officer and network and firewall administrator for huge enterprise companies in different industries like banking, service providers, pharmaceuticals and software development. He is keen on pentesting especially in infrastructure and web application perspective.

Venue, food by ESI CEE

Beer by STY

Presentation, No Video

Pictures, attendance, comments: Meetup event

Session: Angel Bochev - Penetration Testing: OSINT (May 9th, 2019)


A real-world pentester talks about OSINT - Open Source Intelligence - the exploration of various techniques and tools for one of the most important parts of every penetration test - the information gathering.

Angel Bochev is Offensive Security Certified Professional (OSCP) since 2016; is a CTF player; has 12+ years of networking/sysadmin experience; currently working in the InfoSec team at PROS.

Venue, beer and food by Paysafe.

Presentation, Video

Pictures, attendance, comments: Meetup event


All the presentations that we’re allowed to share are here.


All the videos that we’re allowed to share are here.


We have a Linkedin group.

We’re one of the youngest chapters. Since we’re the first in Bulgaria, we expect to grow quickly.

Join our community?

Currently we use Meetup as a place to talk about owasp related stuff.

If there’s critical mass of people, we might set up a slack channel.

Share your conference room?

Are you a local company that would like to share your conference room for an event? Please contact us.

Attendance is still small. The ballpark figure is 20-30 people.

Do a talk?

Do you have an interesting topic and would like to share? If you’re interested in speaking or would like to share your expertise, please contact us.

Keep in mind that our meetings are still small and very welcoming so there’s no pressure if you want to speak for a first time or feel unsure on the topic.

Are a company that would like to sponsor us? We use the money to buy food/beer or pay for travel/accomodation expenses when we invite non-local speakers.

Please contact us.

The background is a traditional Bulgarian embroidery called Шевица or more concretely Елбетица.


Symbolizes harmony. The two crosses depict the four cardinal directions and their combinations (N, S, E, W, NW, NE, SW, SE) that meet in a “strong” center. The second meaning is that the cross depicts the four weather seasons common in Bulgaria.

Sofia chapter logo designed by Desi.