Library

Books I’ve read that significantly influenced how I see the world.

97 Things Every AppSec Professional Should Know

97 Things Every Application Security Professional Should Know

Reet Kaur (Author), Yabing Wang (Author)

A book with practical advice that can be applied in development for web, mobile, APIs or other software development, in different development languages, in waterfall and agile software development lifecycle (SDLC), and in the cloud.

Link

Currently Reading

Alice and Bob Learn Application Security Book Cover

Alice and Bob Learn Application Security

Tanya Janca

Alice and Bob Learn Application Security is an accessible and thorough resource for anyone seeking to incorporate, from the beginning of the System Development Life Cycle, best security practices in software development.

Link

Read

API Security for White Hat Hackers Book Cover

API Security for White Hat Hackers

Confidence Staveley

APIs have evolved into an essential part of modern applications, making them an attractive target for cybercriminals. Written for security professionals and developers, this comprehensive guide offers practical insights into testing APIs, identifying vulnerabilities, and fixing them.

Link

Currently Reading

Atomic Habits Book Cover

Atomic Habits

James Clear

An insightful book on building good habits and breaking bad ones. A must-read for anyone looking to improve their productivity and life.

Link

Read

Not with a Bug but with a Sticker Book Cover

Not with a Bug but with a Sticker

Ram Shankar Siva Kumar (Author), Hyrum Anderson (Author), Bruce Schneier (Foreword)

An interesting book on about how software world is living in golden age of security whilst ML systems are in the stone age.

Link

Currently Reading

Securing DevOps Book Cover

Securing DevOps

Julien Vehent

An excellent resource for understanding security in the context of modern software development and deployment practices. The book provides practical examples and strategies for implementing security throughout the DevOps pipeline.

Link

Read

The Web Application Hacker's Handbook 2 Book Cover

The Web Application Hacker's Handbook 2

Dafydd Stuttard & Marcus Pinto

A comprehensive guide to finding and exploiting security flaws in web applications. The book provides detailed methodologies and real-world examples for web application security testing.

Link

Read