The penetration tester bookshelf
This is a selection of books that every pen tester or infosec person need to have on the shelf. Other valuable books are available on the topic, but this are my favorite. A particular mention goes to the guys behind the Social Engineering framework project and the related book, for their invaluable work on pwning humans. Happy reading and Hacking !
BackTrack 4: Assuring Security by Penetration Testing
BackTrack 4: Assuring Security by Penetration Testing is a fully focused, structured book providing guidance on developing practical penetration testing skills by demonstrating the cutting-edge hacker tools and techniques in a coherent step-by-step strategy. It offers all the essential lab preparation and testing procedures to reflect real-world attack scenarios from your business perspective in today’s digital age. www.packtpub.com
Social Engineering: The Art of Human Hacking
Social Engineering: The Art of Human Hacking has been unanimously voted as the official book on social engineering. Based on the Web’s first official Framework for Social Engineers, this book delves into aspects of human thinking that has not been discussed in previous social engineering books. Many readers have stated it should be used in college as a text book on both human vulnerabilities and psychology. With in depth discussions into body language, hand gestures, the scientific part of NLP and microexpressions Social Engineering: The Art of Human Hacking has been dubbed a “seminal work” in the infosec community. www.social-engineer.com
Professional Penetration Testing: Creating and Operating a Formal Hacking Lab
Thomas Wilhelm has delivered pen testing training to countless security professionals and now through the pages of this book you can benefit from his years of experience as a professional penetration tester and educator. After reading this book you will be able to create a personal penetration test lab that can deal with real-world vulnerability scenarios.
Penetration testing is the act of testing a network to find security vulnerabilities before they are exploited by phishers, digital piracy groups, and countless other organized or individual malicious hackers. The material presented will be useful to beginners all the way through to advanced practitioners. www.syngress.com
Scridb filter
02/05/2011 at 6:03 pm Permalink
Unfortunately i don’t have the first two books.
But “Professional Penetration Testing” Book is just awesome.
It’s a “little” big [700+ pages if i remember right] but rich with a lot of information about pentesting/lab.
It’s worth the money.