Title: Need a book suggestion!
Post by: ethicalhack3r on January 07, 2009, 06:02:48 PM

Just finished reading Kevin Mitnick's 'The art of intrusion'. Took me ages to read as I don't think it was well written however did have some good stories in. Now im looking for my next read and don't know what to buy...

Im looking for a book to either expand my knowledge on web application security or the information security industry.

Here's what ive been looking at...

Web Hacking - By Stuart McClure, Saumil Shah
http://books.google.com/books?id=wL7RYFTuaVUC

and/or

InfoSec career hacking - By Aaron W. Bayles, Ed Brindley, James C. Foster, Chris Hurley, Johnny Long
http://books.google.com/books?id=HXbgHQUjPfgC

Can any one tell me if these are good buys or recommend other books that might interest me?!

Thanks in advance!

Title: Re: Need a book suggestion!
Post by: BillV on January 07, 2009, 07:07:38 PM

Both of these are very good/informative if you're looking for web app stuff, I'd recommend either:

Professional Pen Testing for Web Applications (http://www.amazon.com/Professional-Pen-Testing-Applications-Programmer/dp/0471789666)

The Web Application Hackers Handbook (http://www.amazon.com/Web-Application-Hackers-Handbook-Discovering/dp/0470170778)

BillV

Title: Re: Need a book suggestion!
Post by: jason on January 07, 2009, 09:21:51 PM

I just got a copy of the Web Security Testing Cookbook from O'Reilly the other day:

http://oreilly.com/catalog/9780596514839/index.html

which looks good so far

Title: Re: Need a book suggestion!
Post by: ethicalhack3r on January 08, 2009, 05:54:58 PM

Thanks for the suggestions! Still undecided... lol ???

I wont be buying them till next week so I'll give it some thought over the weekend.

Thanks again! ;)

Title: Re: Need a book suggestion!
Post by: don on January 08, 2009, 09:11:25 PM

Seeing that you mention a less technical book in Mitnick's tome as well as wanting a deeper technical knowledge of web app security, that sets a wide range of topics from which to attempt a suggestion. BillV makes great recos for the web app area, so how about something less technical but very thought provoking?

Silence on the Wire by Michal Zalewski (https://www.amazon.com/dp/1593270461?tag=thedigitalcon-20&camp=0&creative=0&linkCode=as1&creativeASIN=1593270461&adid=1DME9A1GR895K8DYC3EJ&)

Take a look and let me know what you think,
Don

Title: Re: Need a book suggestion!
Post by: unicityd on January 09, 2009, 12:00:11 PM

For web application security, I second BillV's recommendation of the Web Application Hacker's Handbook. I'm in the process of reading it myself--though i've been a little sidtracked lately--and it is very good.

Unicityd

Title: Re: Need a book suggestion!
Post by: ethicalhack3r on January 11, 2009, 05:37:10 PM

Right! Ordering the books tomorrow! Im going to go for...

The Web Application Hacker's Handbook

and

Silence on the Wire (if I can find it cheaper than Ł26 ($45) from amazon uk)

Thank you to everyone for the suggestions, will let you all know what I think of the books once ive finished them.

:)

Title: Re: Need a book suggestion!
Post by: sethmisenar on February 06, 2009, 10:06:25 PM

Sounds like you are already going with BillV's suggestion of Web Application Hacker's Handbook, but I would still like to 3rd (or is it 4th) that recommendation.

In my opinion, WAHH is extremely well written...on top of being technically outstanding. Hard to beat having the creator of the Burp suite as one of your authors.

Seth

Title: Re: Need a book suggestion!
Post by: Jhaddix on February 07, 2009, 03:29:59 AM

Quote from: ethicalhack3r on January 07, 2009, 06:02:48 PM

I would also check out the Stealing the Network Series. They mix fiction with tech in some good imaginative ways. I love them.

For Web App stuff id check

http://www.webappsec.org/web_security_books.shtml

They have a good listing of some,

also check OWASP's books, they are free in ebook format!

http://stores.lulu.com/owasp

=)

EH-Net

Features => Book Reviews => Topic started by: ethicalhack3r on January 07, 2009, 06:02:48 PM