Hey all
I've been asked by many on their Cybersecurity journey what are some books I recommend to read.
Apart from reading and learning from newsletters, I have found some books that I have learned a lot from.
There are many out there, and at times it can get overwhelming.
Here I will recommend free or affordable ones that I have read and have found beneficial.
Huntpedia
This book is about threat hunting and looking for signs of attacker intrusions. It has a lot of good insight and use cases from experts in the field.
Models such as “Pyramid of Pain” were introduced in this book.
Available for free at
https://www.threathunting.net/files/huntpedia.pdf
Practical Malware Analysis
This book goes over hands on exercises for analyzing malware in a safe environment, each chapter has labs to go through and get hands on practice.
From setting up your lab environment, to looking at different classes of malware it is an essential book for getting into Malware Analysis.
https://drive.google.com/file/d/1pap94iMqlL4BaN9wGf3pUq0mN6jhl16N/view
The Art of Mac Malware
How Mac malware works, and how to analyze it. Written by an industry expert,you will find practical ways to look for malware on macOS.
A preview is currently available on nostarch, for free at.
https://taomm.org/vol1/read.html
To support the author, it is available for purchase on nostarch. Volume 2 is available now, but I have not read it yet.
The Art of Deception
It goes over Social Engineering and how human nature can sometimes play against us in Security. Written by Kevin Mitnick, one of the most regarded hackers of our time.
https://drive.google.com/file/d/1RlnYmr-lFyyVb_uKRQOvzkUNCSnw3H9R/view
The Web App Hackers Handbook
This provides foundational knowledge in Web Apps and how exploits work.
https://drive.google.com/file/d/1kJMr6vquZIgxE3CMq6VqNNJcPVsFEEM4/view
As you can imagine, a book of this nature can become outdated over time. The team at PortSwigger created the Web Security Academy. This provides labs and interactive content to learn continuously.
I hope this list helps in learning from one of the many published books in our field.
P.S. I also have a Linux course out on Udemy.
For those who prefer to learn through video, it is freely available and I hope it provides value in your learning.
See you in the next one.