#bookclub

I sure as hell love paying $23,95 shipping costs from no starch press

that's like, 50% of the order price

Books are dense, international shipping is expensive.

also, no starch has a sale for 40% off, code MARCHRADNESS until 4pm PT (12AM UTC iirc) today on their official store (nostarch.com)

ahh, that makes sense

I've always thought that shipping costs were based on size

guess I'll just wait until the next humble bundle and get the ebook variants

if you are in the US, USPS has special shipping rates for books

I shipped about 30lbs of paperbacks in a box to a friend (~1600 miles) for $3 in the early 2010s

Yeahh I saw that on the website of nostarch; default tariff for the US was $3,50

sadly, I live in western europe

latest pickups at local bookstore, had Cuckoo's Egg 1st Edition in very good condition 😀

https://www.packtpub.com/free-learning

Don't forget about the free ebook every day. Some are lifetime ownership, others are free to read for 1 day.

In either case make an account and you can have a whole lot of ebooks for life.

@undone portal was required reading for the linix portion of my network admin diploma its not bad, there are better though

@undone portal i personally like this one a lot, mastering linux shell scripting SBN: 9781788990554 also this is a pretty decent place to start
https://guide.bash.academy/

for documentation with examples
https://tldp.org/

in there you'll find
the advanced bash scripting guide
https://tldp.org/LDP/abs/html/abs-guide.html

@delicate cloak thanks for the links! I ordered the Practical guide to linux and it should be here sometime tomorrow. I'm looking forward to trying out the links you gave and I'll also check out the book you recommended.

Gave +1 Rep to @delicate cloak

@undone portal yea ive ammased an extensive bash resource list x) usually digging for some arcane one time use case bit of code x) you should also check out wiki.bash-hackers.org
gregs wiki - https://mywiki.wooledge.org
grymoire - https://grymoire.com (high level coverage of topics like sed awk grep)
and some faqs answered at comp.unix.shell

Ha! Thanks for all the links. I personally really like Sobell's book, but I do not really have comparison with anything else. It helped me a lot, however.

Gave +1 Rep to @delicate cloak

Sobell's books have always been known as great learning resources with lots of hand-holding; he explained everything in the operating system in-depth and in a more humane way than a typical IT textbook. Rather than being geared towards certification or acting as a manual, all his Unix and Linux books were passionately written to bring you into understanding the OS and its capabilities, rather than just a tool for business.

He wrote books discussing Red Hat, Ubuntu, even going back to UNIX System V, Solaris and Mac OS X. While the Red Hat and Ubuntu books might be somewhat outdated due to recent changes, most of the details are correct, as are the books about Command, Editors and the Shell, as they don't really change too much. Bash is the most common but plenty of distros have changed their default to another bash-compliant shell or a variant like ksh or tcsh but the functionality doesn't vary too much

Oh yeah, thanks. I love his book because it discusses many shells at all, and tuoches subjects which are often omittet, also it was explaining things in clear manner. I am just opon to other resources too.

Gave +1 Rep to @tidal plume

Keep an eye on Humble Bundle for collections from No Starch Press, O'Reilly and Wiley. There's frequently loads of good books on using the shell.

The Linux Command Line is a good primer from William Shotts. It's published by No Starch but you can download a free and legal copy from the book's official website here:
http://www.linuxcommand.org/tlcl.php/

There are tonnes of good books from No Starch, here but they always appear in a bundle at some stage:
https://nostarch.com/catalog/linux-bsd-unix

Evi Nemeth's book, UNIX and Linux System Administration is intended for system administrators who already have admin experience but it does cover a significant amount about the shell and a load of the modern technology involved. The 5th edition from 2017 is really good.
https://www.amazon.com/UNIX-Linux-System-Administration-Handbook/dp/0134277554/ref=sr_1_1

From O'Reilly, there's literally loads of good books, like; Learning the Bash Shell, Mastering Regular Expressions, Cybersecurity Ops with Bash, Efficient Linux at the Command Line...

There's literally tonnes of good options out there. Even the certification books like the Sybex books for Linux+ and the LPIC certs, or the Red Hat cert books by Sander van Vugt, Asghar Ghori or Michael Jang are good, once they're for the cert you're going for/the most recent one

Thank you a lot! I will definitely check these more advanced, since I have LFCS behind my belt, and I am gatheing sysadmin exp now. I know NoStarch books, and I love them. 'Linux Comnand Line' is a really cool intro, and I also enjoyed 'How Linux Works' from them (and bunch of programming books). I am okish on bash, it would be cool to deepen this, definitely, so thank you for all recommendations. I appreciate it :)

Gave +1 Rep to @tidal plume

That Nemeth's book seems really cool.

I was looking at this cybops with bash, but feel like I need to get more fluent in it first, idk.

When you've been surrounded by Linux as much as I have for quarter of a century, you learn some good and dependable resources, from widely admired sources.

Yeah it is a really good book. Any book with a 36 page Contents section has to be worth a few weeks 😛

Yeah, I bet. I appreciate that people with great exp are willing to share their resources :)

It does have a good build up, it's not as harrowing as it sounds. It's intended for cybersec ops people who might not have a huge amount of Linux admin skill, not for LFCS/LFCE/RHCSA/RHCE level people

I just find exploring and collecting and reading books about my favourite os a fun and worthwhile pursuit in itself, separate from the os, a thing in its own right

Oh, ok, cool. I will check it then. I thought it will be more for bash elders, haha.

If you want a good primer to go along with it, use any of the other books I listed or the Kali Linux Revealed book from Offensive Security

Yeah, I feel you. I love well written technical books too.

Thanks a lot for all hints.

Sometimes I just like yacking about the few things I have a clue about... Otherwise I'll just start talking about the pretty cool experiences I've had because of this particular interest...

:)

I think most of us do. I could talk for hours about stuff I am excited about :)

That's cool 🙂 It's good to have a passion. I just try to not preach so much these days about why Linux is the most important operating system in the world because the great thing about Linux and those of us who use it is that, because it works so well, outsiders don't even need to know how much of their civilisation depends on it, that it's probably in their pocket or their TV or their car, or is running practically all of Google, Bookface, Twitter and a bunch of stuff in banking and space and that civilisation would just be too expensive to advance the way we have without it... I mean, imagine if we had to pay Sun or IBM prices for our hacking distro or our web servers... Nothing would ever get done

also good place for book bundles is https://www.fanatical.com/en/ebooks their mainly games but have a decent book bundle section, like 20 books for 27.00 eg https://www.fanatical.com/en/bundle/working-with-linux-bundle

I second that! The UNIX and Linux System Administration Handbook is brilliant. I'm lucky enough to work with one of the authors and have learned a TON from this book.

Alwas nice to be able to learn from one of the authors directly, though I've never had that close a tie

For sure. I truly is a blessing to have such an amazing source of knowledge just down the hall. Virtually speaking of course.

https://www.opsschool.org/introduction.html This still looks like it's a bit in-progress, definitely promising, plenty of spots to contribute if you feel like writing docs/explainers/tips

That's really cool! Thanks for sharing 😁

Gave +1 Rep to @alpine pumice

I'll probably try to contribute

https://www.amazon.com/gp/product/1264268947/

Listen to Ghost in the Wires by Kevin Mitnick, William L. Simon on Audible. https://www.audible.co.uk/pd/B0062P13AI?source_code=ASSOR150021921000R

This has been a really interesting read/listen.

can i share an actual file of the books here?

Is the book licensed to be distributed for free like that?

Otherwise it's piracy

hey, i am wondering if Nmap Network Scanning book is still relevant ? love to hear opinions

^ I was wondering the same thing because I just started the nmap section in junior-pentester-path.

It’s on my reading queue. How have you liked it?

It's good

I ordered it

Again lol

See how much has changed since thrd ed 😜

yea, you said that the other night

Good stuff :0

im adding a bunch of books to my wishlist now haha

or downloading for kindle 😉

Yeah it's still a great resource. Mine is on my shelf

Is gray hat readable? Looking to read something but don't want just reference style

Gray Hat Hacking? Yeah it's very readable and there's a new edition out

Awesome..ordering now...cukoos egg and grayhat....light reading on vaca

Good stuff

#BookReview: Hacking APIs by Corey Ball. It's really engaging with lots of hands-on labs. It is a good book for beginners, penetration testers, red teamers and bug bounty hunters.

https://yaksas.in/ycscblog/book-review-hacking-api/

Yeah it's definitely on my wanted list 🙂

And there's a sale on No Starch at the moment to celebrate their 28th Anniversary... 28% off everything this weekend
https://nostarch.com/

What's a good book worth reading for someone with 1 year of CTF experience? I'm a big no starch press fan but most books are for beginners

If you find your skills are advancing well, you might try going for a certification. Otherwise, picking up some of the books might enlighten you to concepts you overlooked while you were advancing

hm perhaps

might just peek at the OSCP syllabus and do stuff from that

Just took a look at it.. looks doable ngl

Hardest part will probably be AD

I swear by computer systems APP and JS the definitive guide. Cant really be a good a competent hacker if you don’t understand the underlying concepts.

Oh, and I swear by TCP Illustrated V1. It’s a bible in the computer networking world. I’ve read it front to back a few times and has the best chapters on TCP. Any book Stephens is worth it’s weight in gold

It’s plenty relevant and gives tremendous insight to how nmap works.

It's almost entirely still relevant, and maybe more importantly buying it supports Fyodor directly

I've read a good chunk, but not all of it so I couldn't attest to it. But that's good to hear.

What are good books to understand the linux kernel? All books I can find are sub-version 3

Do you want to learn to use linux better, or learn the kernel itself? Very diffferent things.
To learn the kernel itself, I would recommend 'Linux Driver Development with Raspberry Pi'

Alternatively, start rolling your own LFS

I want to learn the kernel itself

I want to get into kernel exploit development before the end of the year

need to learn the kernel itself first before I can try to find bugs

(needless to say, I definitely understand the linux commandline (for lack of a better term) in depth)

Is it possible to follow that book with a rpi 4b as well? it mentions

The BCM2837 from Broadcom is one of these SoCs, running quad ARM Cortex A53 cores at 1.2GHz. This is the SoC used in the popular Raspberry Pi 3 boards.

ah nevermind

In the preface of the book it lists 9 development boards which are required to perform the hardware labs. This is a step up from the build your own breadboard circuits listed in most books. However, be aware that purchasing all 9 of these boards will run somewhere in the neighborhood of $250 by the time you add tax and shipping. Also, you will need 2 of the pushbutton boards for at least one of the labs.

It should be possible to adapt the material to a rpi4, but you'll have to learn a bit more about embedded systems and architecture differences

You should first have an understanding of basics of OS theory. You should know about PCB, how processes work, virtual memory, the file system, etc. Any book on specifically the linux kernel without this knowledge is useful. I've read Understanding the Linux Kernel and if I didn't have an OS class, the book would not be that good. A lot of concepts would go over your head.

Luckily I understand those concepts

(aside from PCB so need to do some research)

The process control block is mostly a windows thing, almost all of the information about linux process can be found in /proc which is basically the process table

As a conceptual model, PCB is still applicable to task control on *nix systems

On that note, is "Windows System Internals" liek S-tier or is there something better in some way? By which I mean, I guess, considered more authoritative, comprehensive primarily, maybe accessible secondarily

I really only use that book as a reference, just stick to msdn docs

Does the inside of your skin start to itch when a problem gets hard? Do you feel like a loser when you fail? Are you here to "find out" whether or not you're "made" to be a hacker?

If you answered "What," "Who are you," and "Have you been spying on me?" then you, yes, you need to read this opening chapter¹ of "Mindset" by Carol S. Dweck. Not only read, but peruse, take in, absorb, pause and reflect upon. And try not to feel as if criticized by any of it if you find your doppelganger being indicted. You're just learning from the experiences of others.

*1. Released for public view by the publisher and hosted by same in HTML at https://www.penguinrandomhouse.ca/books/44330/mindset-by-carol-s-dweck-phd/9780345472328/excerpt *

What kind of lunatic would sit down and read Windows Sysinternals?

does anyone know about a good journal not older then 1 year about cyber security implications of the continuing expansion of the IOT

It's an interesting book, it makes some good points but the results have been hard to replicate by other researchers outside Dweck's group of cohorts. Considering that she intends someone like a teacher to be able to reproduce the results in a classroom but also states that other professors, experts in her field, weren't replicating her work correctly based on the book alone, means that, while there may be some significance regarding mindset and grit, there are a lot of other factors not taken into account and so there is contension about what the effect really is.

Other books, such as Daniel Kahnemann's 'Thinking Fast and Slow', Mihaly Csikszentmihalyi's 'Flow', Charles Duhigg's 'The Power of Habit', Ken Robinson's 'The Element', etc have all got similar tones and advice and criticisms. There's something in each of them to help a person develop the ability to engage with their work. They all need to be taken with a pinch of salt, in that, you, the reader needs to be realistic in your expectations and that in order to truly acheive the desired effect, you need to be prepared to work on and learn new ways of engaging, practicing them and then pursuing them, and ideally changing yourself.

You may never be great, but developing a good work ethic, continued practice and revision, habits, engaging with a subject uninterrupted, developing and pursuing your passions for something, etc... are all pretty much what the ideal is and it's based on a lot of factors. Things like finding a quiet place without interruption, making sure you eat and drink the right things, maintaining your mood (i.e. checking with yourself to make sure you solve what's putting you off your game) and other commitments, pursuits and obligations and a bunch of other stuff needs to be taken in stride if you really want results.

You want to be a hacker? Practice and learn and practice and develop good habits. See if you continue to want to do it as you go...

NoStarch pun together a new bundle: https://www.humblebundle.com/books/python-no-starch-press-books

Tbh I feel like python books aren't worth it in general (I say this as someone who's been using python in depth for over 2 years and know it like my pocket)

Imo interactive resources like challenges and websites etc are better

In contrast to low-level languages like C, Rust, etc where there's a steep learning curve

Mother's Day Sale

As a counter point to @glad marten , most of the No Starch Python books are written for a beginner to programming, intended audience isn't usually intermediate or advanced programmers.

hahaha, I dont think my mother is interested

It's the perfect gift for a mother of dragons! Even if she isn't Khaleesi, it's still a good purchase. You're probably her go-to tech guru, so anytime you skill up, you are increasing your usefulness to her

is it a useful book though? I've got the feeling that the functionality is clear after working with ghidra a while

I'll find out soon enough. I'm in the SANS Reverse-Engineering Malware: Malware Analysis Tools and Techniques course, and it uses Ghidra since IDA Pro is expensive. Once I've completed the course, I'll dig into the Ghidra book. I guess that I'll probably use it as a reference more than anything, but maybe it'll have something to speed up my workflow.

Who Should Read This Book?

This book is intended for aspiring and experienced software reverse engineers. If you don’t already have reverse engineering experience, that’s okay, as the early chapters provide the background material necessary to introduce you to reverse engineering and enable you to explore and analyze binaries with Ghidra. Experienced reverse engineers who want to add Ghidra to their toolkits might choose to move quickly through the first two parts to gain a basic understanding of Ghidra and then jump to specific chapters of interest. Experienced Ghidra users and developers may choose to focus on the later chapters so that they can create new Ghidra extensions and can apply their experience and knowledge to contribute new content to the Ghidra project.

Which non starch press book could be the best in the cyber security and hacking area?

I love black hat python. When v2.0 with upgrade to python3 code came out I bought it immediately. It's filled with info from raw TCP packet handling, using scapy, writing burpsuite extensions and more

Not nostarch though

And this is somewhere where opinions are wanted rather than reference information

Have we compiled a list of all book recommendations in this channel yet? Some single source so we don’t have to scroll for hours?

that would be nice but does not seem like it is a thing based on the pinned messages

Back in 2020 there was work going on in the subreddit about this...
#bookclub message

thanks for volunteering!

Gave +1 Rep to @glacial vector

coild the channel not be scraped using javascript/discord.js pull basebnamed unique sort then to a file? in theory? youd have ti weed out a coupls links that arent bookmark but

sorr that first load was origonal pull

the answer to my own question, yes yes it can (using discord dev account + dashboard)

https://github.com/rayiik/masterlist-thm-bookclub been and all made into markdown links @stuck crown @glacial vector @sweet pine feel free to download and take over

Great job! I nominate you for mod of the book club!

What you think about this book?? Is it good for beginner? (O’Reilly . Learning Kali Linux security testing.)

I don’t know, I can sent you screenshots :/

i personally havnt read it this is just a snapshot of the books posted in here so on that one im not sure but (suprised this isnt in there being the offical book) https://www.ubuntushop.be/kalirevealed.pdf

Hi my friends, is there a book that teaches Linux to complete begginers, I want to be more comfortable with Linux, I do not want to learn about the Kernel and stuff like that, just simple things.

yea are you looking more bash specific (command line wizardy) , or more system administration (not development but file systems navigation graphical user interfaces? or a combination?)

Hey, thanks for the reply, I want to learn more about the command line

Gave +1 Rep to @delicate cloak

https://www.thriftbooks.com/w/a-practical-guide-to-linux-commands-editors-and-shell-programming_mark-g-sobell/14577992/item/29797287/?gclid=Cj0KCQjwspKUBhCvARIsAB2IYuu1mRUHJmrAXCbFeLnJg2qpGXrJlP9cvRU-kVm7arDX0eXp3LJVG08aAoxwEALw_wcB#idiq=29797287&edition=15444265

https://www.abebooks.com/9781499222036/Command-Line-Kung-Bash-Scripting-1499222033/plp

https://www.amazon.ca/dp/1593278551/

https://www.packtpub.com/product/mastering-linux-shell-scripting/9781784396978 (free right now if you have a packt account

and one of ofmy favorites

Wow, you are a legend, my friend thank you very much, I will give them a look

Gave +1 Rep to @delicate cloak

Yeah, Sobell's book is fantastic. If somebody can have only one book, I would choose this one. I would also add to this set 'How linux works' https://nostarch.com/howlinuxworks3 and 'Linux programming interface': https://nostarch.com/tlpi. 'Linux command line' (https://nostarch.com/tlcl2) is also cool, but it goes from zero and other books cover its content pretty well.

yea sorbells whas what my school used for the linux course (though i didnt attend any of the classes because my teacher wasnt qualified to teach me anything and i ended up challenge the course) i still read the book and was quite good

hey so while im going to do my best to keep that master books list up today is there a way i can set an advanced notification on this channel that emails me if regex pattern match (such as http* post)

is it good book?

https://www.amazon.co.uk/Hackers-Getting-Networking-Scripting-Security/dp/1593278551/ref=asc_df_1593278551/?tag=googshopuk-21&linkCode=df0&hvadid=310913487979&hvpos=&hvnetw=g&hvrand=13240011120339955993&hvpone=&hvptwo=&hvqmt=&hvdev=c&hvdvcmdl=&hvlocint=&hvlocphy=9046153&hvtargid=pla-437083258996&psc=1&th=1&psc=1

Yes, good stuff for beginners for learning linux

as a general rule, books from No Starch Press are excellent.

#BookReview Practical Threat Intelligence and Data-Driven Threat Hunting by Valentina Costa-Gazcón. It is a good introduction to threat hunting with a good balance of theory and practical. It provides a holistic view of threat hunting.
https://yaksas.in/ycscblog/book-review-practical-threat-intelligence-and-data-driven-threat-hunting/

hello, any good book about network basic for beginner? good if its be new. like 2020-2022

any opinions about learning kali linux by Ric Messier?

I do not know him as an author. OffSec has entire free course on Kali on their website. Also, Kali is just linux distro with some tools bundled together. There is nothing special about it, so any book on linux will be great to learn it.

It's a reasonably good book about the basics of penetration testing with Kali. 400 pages of fun. If you're not comfortable with Linux yet, combine it with Linux Basics for Hackers by OccupyTheWeb

Yeah, if it goes through tools and their usage, it can be helpful. For some reason, I thought the question is about learning system itself, its internals and all.

Do you have any alternative books on your mind that could cover the tools better than they are in this book ? Videos are also something I can learn with tbh

Thanks, I'll check OffSec's course

Gave +1 Rep to @cobalt whale

I made a mini list for another forum, maybe someone will find it helpful :)

Resources I used to learn Linux based systems.
This is not exhaustive list, and I am sure that there are other resources more suitable for other people style of learning. I used mostly these, and I consider them good. My learning journey continues, so I will add to this list for sure.

Books:
William Shotts - The Linux Command Line: A Complete Introduction
Brian Ward - How Linux Works: What Every Superuser Should Know, 3rd Edition
Mark Sobell - Practical Guide to Linux Commands, Editors, and Shell Programming
Asghar Ghori - RHCSA Red Hat Enterprise Linux 8 (UPDATED): Training and Exam Preparation Guide (EX200), Second Edition
Michael Kerrisk - Linux Programming Interface

Video Courses by Sander van Vugt:
Linux Foundation Certified System Administrator (LFCS)
Red Hat Certified System Administrator (RHCSA) 2nd edition
Linux Under the Hood
He has more classes recorded on O'Reilly, and he also has cyclical live classes there.

Other courses:
The Unix Workbench by Johns Hopkins University (free in audit mode): https://www.coursera.org/learn/unix

Other materials available for free:
LPI: https://learning.lpi.org/en/learning-materials/learning-materials/
Linux Foundation: https://training.linuxfoundation.org/resources/?_sft_content_type=free-course

Docs:
Debian: https://www.debian.org/doc/manuals/debian-handbook/
Red Hat: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8
OpenSUSE: https://doc.opensuse.org/
Kali: https://www.kali.org/docs/introduction/should-i-use-kali-linux
https://www.kali.org/docs/
Free Kali training: https://kali.training/

For help with random unexpected issues and as often fascinating lecture: https://unix.stackexchange.com/

Man pages are your friend. Sometimes annoying, but very good friend you can count on.

Haha, I already could add to this list ;)

I have more books now, but I have also message length limit. I guess I need to throw it to github one day :)

Well I would suggest using those books. Most books on Kali are either about the general workings of Linux or the major tools used in penetration testing basics and are going to have a lot of similarites. There's lots of great Linux books and resources, as @chrome parcel has pointed out but there are loads more. Same for penetration testing/hacking and it really depends on what you're trying to achieve. Books will only help so much. The rest is going to be combining that learning with other methods and practicing. It's a lifestyle and an adventure.

Some pentesting books include Ethical Hacking by Daniel Graham, How to Hack like a Ghost by Sparc Flow, the RTFM by Ben Clark... The objective though is to learn ethical hacking in an environment you can practice learning the tools.

Thank you both!

still waiting for network books xD

book

xd

Guys, what do you think about this book?

For intro to networking I recommend CCNA OCG by Wendell Odom, library edition, and TCP/IP guide by Charles Kozierok.

I second the Odom's book

It's great, you should buy it

Is there some practice?

It's highly practical in what it teaches, as bug hunting is a practical endeavour

Gotcha, thank you very much! Will order it right now

Gave +1 Rep to @tidal plume

https://taomm.org/vol1/pdfs.html

https://www.humblebundle.com/books/cybersecurity-cyber-warfare-packt-books

new cybersec bundle

idk how good it is since everyone on the HB subreddit keeps shitting on packt (the publisher)

I was gonna ask how "comprehensive" they were and if they're worth buying...

But 24 subjects for at least $1 seems like a really good deal.

If they're all great then I'd definitely pay more just on principle, but I can't know until I've seen more

The $1 package gets you three items

Ahh.. well, regardless I'd like to know how much content they give before buying

The previews look really professional

I'll buy them all just to have them, if they're worth having

I'm curious about a couple of them, but not sure on the quality of them

College text books can be around that price... I don't know why they would practically give it away for such a low amount unless they're not super-indepth

Or simply "walkthroughs"

That's how humble bundle works though

They regularly have o'rielly books etc, so respected quality content

Packt books are inconsistent in the quality of their materials

I wonder if you can buy these on Amazon and if they're "MSRP" is what they really claim

So, hit or miss?

yea there's a coding one atm with O'Reilly https://www.humblebundle.com/books/coding-cookbooks-oreilly-books

https://www.amazon.co.uk/Learn-Wireshark-definitive-analyzing-troubleshooting/dp/180323167X/ref=sr_1_1?crid=36GIX2YOC8GZ2&keywords=packt+wireshark&qid=1653334163&sprefix=packt+wireshark%2Caps%2C63&sr=8-1

So yes, you can buy them on Amazon

Might get that coding bundle actually

they are cheap enough on humble i usually get them and then nuke the ones that i don't think are good

Ehh... Maybe

I'm curious about the hardware hacking and ICS one, if you have any opinions Juun

$18 is still a good deal

Regardless of supreme quality or not-so-much

I might buy

Although 800$ sounds like an exaggeration

Yeah, because you'd never buy them all individually lol

Lol heck no

There'd better be at least 300 pages for 35$

I find it sad that there's never any kernel / OS related books in HB

might be due to the lack of those books

most popular kernel books on amazon are pre-2012

Can only suggest this book 🙂 https://www.amazon.com/Linux-Basics-Hackers-Networking-Scripting/dp/1593278551

Looks fun

I'm currently reading https://www.amazon.nl/dp/0672329468/ref=cm_sw_r_apan_i_6W7S45Z5ERG366TX1EFQ

The problem with Packt is that their books are very hit or miss, and reading bad tech books can be frustrating. I am interested mainly in two positions from this bundle, and one of them has great reviews, so I may get the entire bundle just for that one book. I think, buying just because it is available is not a good idea, but if someone is interested on some of these books, it may be worth to risk 18$ (or less if your books are on lower tier). It is less than a cost of one paper book.

In terms of Wireshark books, Laura's Chapelle books are pretty good, and you can found them used for relatively cheap and in very good condition.

hmm mods arent smashing with the ban hammer yet

how dare they not read every single message smfh

-warn @muted perch Do not post book piracy sites, this is the one and only wanting you'll get over this

⚠ Warned shawn#2183

Not helpful.
Ping a mod instead please.

Anyone know of any good pentesting books? Maybe one that also heavily includes the legal documents involved and report writing

There's occasionally a Linux bundle from No Starch and there's been several OS bundles from O'Reilly

IPPSec's book Privilege Escalation Techniques is included in this bundle. So it might be worth it for that alone.

https://www.humblebundle.com/books/cybersecurity-cyber-warfare-packt-books

Great humble bundle deal btw

Any thoughts on this? https://nostarch.com/hacking-apis

What about this: https://nostarch.com/pentesting

This is my favorite book https://en.m.wikipedia.org/wiki/The_Name_of_the_Wind

Same

It's an excellent book, lots of good info, some techniques a little out of date, updated edition expected. This one came out late last year https://nostarch.com/ethical-hacking

Yeah, I have it here in my bookshelf (Penetration testing) but I found it hard to follow along since the kali version and the programs used are kind of outdated

https://yaksas.in/ycscblog/book-review-hacking-api/

I have a digital copy of the book, not a bad one

hey, any recommended book for bash scripting?

i guess there is none 😂

There are tones.
Mark Sobell - Practical Guide to Linux Commands, Editors, and Shell Programming and Michael Kerrisk - Linux Programming Interface are my favourite.

hi everyone
who knows what best book for security hacking for python

Grey Hat Python and Black Hat Python

it is useful for begginers ?

If you are comfortable with Python then these should be okay. Else go for Python Crash Course by No Starch Press first.

Anyone read any good audiobooks related to computer science lately?

I've listened to the pragmatic programmer and it is not bad, you can learn some new stuff by listening to it. I haven't read it so I don't know how much it differs from the printed version.

i have the audiobook i stopped reading it

can u dm me some spoilers so i can see if i wana get back into it?

There's 4 of them. There's the original, then there's a Blue Team, Read Team and Security Leaders. The intention of the books is simply to show potential entrants into the field the ways to progress themselves into a role and what they need to do.

I wouldn't say it's meant to be read cover to cover, it's the kind of thing you can dip into from time to time, give you some understanding of the lingo you might hear in a corporate or conference environment or whatever. It's aimed at people new to the field really

this guy in the video has a suggestion. there's probably more if you use the search function in this discord
https://youtu.be/bZWQaVTbBOU

Thank You 🙂

Gave +1 Rep to @stuck crown

recommend me a book.
I am familiar with Linux but not god tier.
I can navigate the filesystem, use some tools but still look up info in the man pages so I can't do most things off the top of my head.
I wanna be a white hat hacker/red teamer.
I am about to join a pen testing course that lasts 18 months (it's a mainly practice based course) in October and want to be one of the best students because:

1. I like tinkering around with things I am not supposed to have access to
2. If I become one of the best I can completely change my career and gat a job before the course ends(the company has many contracts with firms looking for pentesters and they are seeking talented individuals even if they have not finished the course)
   The course covers OWASP top 10 tools.
   I have been using Linux for the past 5y as a daily driver.
   My scripting skills can be improved.
   I know some programming but can't write a fully functioning app without heavy research

I am basically an advanced begginer

wow

That's one hell of a desc ngl

Sounds to me you already know exactly where you are and where you want to go so why do you need someone else to tell you what book to get? If you want to improve on scripting get a bash scripting book. If you've been using it for 5 years already you should already know enough as far as basic pentesting is concerned

The Linux Command Line by Walter Shotts, free from the book's official website
https://www.linuxcommand.org/tlcl.php

The Linux Bible by Christopher Negus
Linux Command Line and Shell Scripting Bible by Richard Blum
Linux Basics for Hackers by OccupyTheWeb
How Linux Works by Brian Ward
The Linux Programming Interface by Michael Kerrisk
Linux Commands, Editors and Shell Programming by Mark Sobell
RHCSA and RHCE 8 Study Guides by Sander van Vugt or Michael Jang or Asghar Ghori
Unix and Linux System Administration Handbook by Evi Nemeth
Learning the bash Shell by Cameron Newham
Learning the vi and vim editors by Arnold Robbins
sed & awk by Dale Dougherty

Hi, just wondering if you think this book bundle might be worth it, for someone who is only starting out
https://www.humblebundle.com/books/cybersecurity-cyber-warfare-packt-books?hmb_source=&hmb_medium=product_tile&hmb_campaign=mosaic_section_1_layout_index_1_layout_type_threes_tile_index_2_c_cybersecuritycyberwarfarepackt_bookbundle

@shell anchor There's some discussion of it here

ah sorry didnt see it. thanks for replying

Gave +1 Rep to @errant sundial

Book club friends, anyone else already read/listen to this? Definitely something I could see being informative/shocking for gen-pop of cyber

Listen to Algorithms of Oppression by Safiya Umoja Noble on Audible. https://www.audible.com/pd/B07CX9GHJZ?source_code=ASSOR150021921000R

yo

any good books about network/osi?

hey, i am interested in purchasing Windows Internals part 1 book
is what is the latest edition?

Computer Networks by Andrew Tanenbaum, The Illustrated Network by Walter Goralski, the CCNA study guides, the Network+ guide...

That seems like an old book about Win10 and Win Server 2016. there might be other, more modern books available

any suggestions 🙂 ?

Network + is a good one from Mike Meyer's total sems

Here's a bunch of Linux books I recommended earlier
#bookclub message

https://startupsledger.gumroad.com/l/jtkvir

Because you have little time, here's the mega short TL;DR (too long; didn't read) summary of this book:

💡 Idea

Get an idea from problems in your own life. If you don't have problems that are original enough, become a more original person. Don't build products that are solutions in search of a problem.

🛠 Build

Build your idea with the tools you already know. Don't spend a year learning some language you'll never use. Don't outsource building to other people, that's a competitive disadvantage. Build only the core functionality. The rest comes later.

🚀 Launch

Launch early and multiple times. Launch to famous startups websites (like Product Hunt, Hacker News, The Next Web), mainstream websites (like Reddit) and mainstream press (like Forbes).

But more importantly, find where your specific audience hangs out on the internet (or in real life) and launch there. Launch in a friendly way, that means "here's something I made that might be useful for you", instead of acting like you're some big giant new startup coming to change the world.

🌱 Grow

Grow organically. A great product that people really need which is better than the rest will pull people in. You don't need ads for that. Don't hire people if there's no revenue yet. Don't hire many people if there's revenue either. Stay lean and fast. Do things yourself.

Monetize by asking users for money. Don't sell their data. Don't put ads everywhere. Don't dilute your product. Be honest that you need money to build the product they love and they'll be fine paying for it.
🤖 Automate

Automate by writing programs that do stuff that you do repeatedly. Only automate if it's worth the time saved. For stuff that's too hard to automate or not worth it, hire contractors. Let them work as autonomously as possible. Where possible let robots manage them (for example by giving them alerts when things happen in your product). This lets you take time off, or work on your next business.

🚪 Exit

Exit by not putting your company for sale, but letting buyers come to you. Filter out the majority of buyers that aren't serious. With the serious buyers left, negotiate a price by valuating your own company. Price it agressively high. Always keep the bargaining power on your side of the table. Get paid in cash, not stock and don't fall for the trap of earnout bonuses. Make sure you're prepared for the emotional fallout of selling (and missing) your business.

🤝 Ethics

Not a chapter but important: be ethical, and don't cut corners on ethics. You'll be rewarded by not doing dodgy stuff like spamming, manipulating your users into doing stuff, growth hacking your search rankings or faking your social media, or abusing your power to compete unfairly if you're successful. If you make a good product, you don't need any of this. If you make mistakes, own up to them and say sorry. Be nice as a person and especially as a company. Karma always pays back in the end. Just being ethical and nice is a competitive advantage these days because most companies (and people) are not!

📝 Homework

Homework: Each chapter ends with homework exercises that you can do. Instead of just reading, I'd like you to use this book as a handbook while actually building and shipping a product. It doesn't matter if it fails. But you need to do something instead of just read! This is not startup porn! This is startup life.

thanks 🙂

Gave +1 Rep to @tidal plume

The book Have Arrived 🙂

I'm going to start reading that too, I have the pfd version.

PDF*

nice 🙂

PDF probably will be more convenient but i want that feel of the "Book "

Yeah, thankfully all my books are pdf's (119) I'd have no where to store them.

xD

any good book for Assembly ? intel specifically

I had a look in my folder and I don't have any, it's the one topic I'm missing, sorry.

:/ shame xD

😅

Hello what books would you prefer for assembly (language) learning?🧐

Reference manual for the particular flavor and a project to work on

that is a disturbing cover image but looks like an useful book to read

Analysis you know xD

https://www.humblebundle.com/books/software-development-books-oreilly-media-books?hmb_source=&hmb_medium=product_tile&hmb_campaign=mosaic_section_1_layout_index_1_layout_type_threes_tile_index_1_c_softwaredevelopmentbooksoreillymedia_bookbundle

For the devs out there ;)

Just finished The Miranda Obsession. Pretty good book about a lady who 'social engineers' her way through famous people in the 80s. Now I need a new book 😄

Very good book. Combine it with the Malware Analyst's Cookbook and The Art of Memory Forensics and you're very well set up to understand that kind of work

Is there anyone who read PoC||GTFO, I get it but I don't really get it.. I got it while I was still getting to high school.

And book II

They're a partly satirical discussion of technical discoveries through research in unconventional methods of machine cooperation... As they say at the start:
"Anyone who cannot understand that
a useful science can be built on stunt hacking
will not understand this book, either."

I don't yet have book 3...

There is a sale on No Starch books atm, with up to 50% off on selected titles...
https://nostarch.com/summer-overstock-sale

Are they shipping worldwide?

I'd say yes, thanks to this

Gave +1 Rep to @hushed elm

Thx 🙂

Gave +1 Rep to @dry crystal

#BookReview Cyber Warfare – Truth, Tactics, and Strategies by Dr. Chase Cunnigham. It presents a multi-dimensional view of cyber warfare (technical attacks, influence attacks, misinformation attacks, deep fakes based attacks etc.).
https://yaksas.in/ycscblog/book-review-cyber-warfare-truth-tactics-and-strategies/

Should I get Black Hat Python or Black Hat Go?

Yes

Get them both

Material is roughly the same, but presented a bit differently. And it'll showcase the strengths and weaknesses of each language

I have both, gotta get round to reading.

Thank you for your reply 😁 @regal pond

Gave +1 Rep to @regal pond

Just read This is How They Tell Me the World Ends by Nicole Perlroth. Really good book laying out the history of the zero day industry

https://github.com/rshipp/awesome-malware-analysis#books

Hi have someone know where can get ebook can us share some website

https://www.overdrive.com/

You can buy ebooks from most publishers these days, e.g. https://www.nostarch.com
or you can buy bundles of great books from https://www.humblebundle.com

Thank

Hey is there a book you'd recommend on reading understanding and writing exploit code for a beginner ?

https://www.oreilly.com/library/view/hacking-the-art/9781593271442/

penetration testing guides? Not "step by step" necessarily. Just a good checklist/methodology.

I'm not finding a lot of comprehensive reads on google, for the most part.

I found one that was "okay".

From preparation to actual gathering (pass and active), tools for each. Moving through the different "phases".
It was okay but not a great read. I like to see more detail, both for my enjoyment and the info.

Here's the one. i'm referring to https://sushant747.gitbooks.io/total-oscp-guide/content/active_information_gathering.html

Maybe it's too broad of a subject for one book

I have books for specific subjects like "Pentesting Azure" or "Pentesting Industrial Control Systems". I'm wondering if there's something that pertains to basic network/web-app scenarios

home/small office/business envs

Found this: https://github.com/tjnull/TJ-JPT

This came as part of the February 2022 Wiley Cybersecurity Bundle, good book.

Yes yes, I can't wait to read 🙂

https://www.packtpub.com/free-learning

for today:

NoStarch 4th of July Sale! 30% off everything.
Use code FIREWORKS at checkout. Ends 7/4.
https://nostarch.com/

any good books about reverse engineering?

https://pwn.college/

Not a book but I recommend this as it's very high quality. It goes beyond reverse engineering too if you are interested in binary exploitation.

It does require some prerequisite knowledge though.

If you need something beginner friendly start with this book:

Take anything from TJ with a grain of salt. He works at OffSec.

Thank you, @chrome parcel

Gave +1 Rep to @reef notch

Book Review: CCSP for Dummies. It is good for people new to cloud security.
https://yaksas.in/ycscblog/book-review-ccsp-for-dummies/

@errant sundial ⬆️

Found this at a thrift store today

Wonderful book

Hi, this link you find many book, about cybersecurity, some is Spanish

May be can help someone the information

Does that link contain any books that are copyrighted?

Mmmm, I don't know exactly

So I'm going to just let you off with a warning this time. If you don't know if a book is public domain, don't distribute it.

Let me check all the book

And share later

5/5 star review

@loud prairie do not troll here

I wanted to know some names of thriller or horror books....if someone can help me then please do

Or even books that are for beginners for learning ethical hacking

I like the books of Stephen King

any recommendations for threat hunting related books except Threat Hunting with Elastic Stack (by Andrew Pease) , please?

Threat Hunting in the Cloud by Peiris, Pillai, Kudrati.
Cloud Defense Strategies with Azure Sentinel by M. Copeland.
The Foundations of Threat Hunting by Maurice, Thompson, Copeland.

thank you so much, I will check them

Practical Threat Intelligence and Data-driven Threat Hunting

https://yaksas.in/ycscblog/book-review-practical-threat-intelligence-and-data-driven-threat-hunting/

What ereaders do you guys think are the best for reading technical books that contain a lot of code?

that is a good question

shadow tends to just use pdfs so dunno about other e readers

hmm yeah searched for some also, i have a kindle and i have some technical pdf's on it find it better to use pdf than other formats but i am looking for a note taking tablet on which you can also import pdf's, edit them, directly take notes on etc like supernote or remarkable but haven't decided yet have to look into it more...

I use Adobe Acrobat on my phone and tablet, as well as Lithium (for epubs) and the Kindle app

Hi, i wonder if this book https://www.bookdepository.com/Windows-Internals-Pavel-Yosifovich/9780735684188 and part 2 of it are still relevant in 2022?