Leanpub Header

Skip to main content

Advanced Cybersecurity Bundle

Advance your cybersecurity expertise with this comprehensive collection of six technical books covering exploit development, malware engineering, AI-assisted security research, web application security, mobile security, and low-level systems programming. Packed with hands-on examples, real-world techniques, and practical labs, this bundle is designed for security professionals, penetration testers, reverse engineers, and developers seeking deep, practical knowledge of modern offensive and defensive security.

Bought separately

$174

Minimum price

$89.00

$99.00

You pay

Author earns

$

Also available for 3 book credits with a Reader Membership

These books have a total suggested price of $174. Get them now for only $89.00!
About

About

About the Bundle

Master the technical foundations of modern offensive and defensive cybersecurity with this advanced collection of six in-depth books covering exploit development, malware engineering, web and mobile security, memory corruption, and AI-assisted security research.

Designed for security professionals, penetration testers, exploit developers, reverse engineers, malware analysts, application security engineers, and advanced students, this bundle delivers practical, code-focused guidance across the technologies and attack surfaces that define today's cybersecurity landscape.

Learn low-level exploitation with C and Zig, understand modern buffer overflow techniques and defense bypasses, integrate large language models into vulnerability research workflows, analyze advanced web application attack vectors, and secure Android and iOS applications through comprehensive offensive and defensive methodologies.

Throughout the collection, readers explore topics including exploit development, reverse engineering, shellcoding, kernel internals, malware engineering, API security, authentication attacks, runtime instrumentation, binary analysis, fuzzing, network security tooling, cloud-native vulnerabilities, AI-assisted security workflows, and mobile application testing. Every book combines detailed technical explanations with hands-on examples, practical labs, real-world case studies, and industry-standard tools.

Rather than focusing on isolated techniques, this bundle presents a complete view of modern cybersecurity, showing how vulnerabilities are discovered, analyzed, exploited, mitigated, and defended across operating systems, applications, and networked environments.

All content is presented from an ethical and educational perspective. Offensive techniques are examined to help readers better understand attacker methodologies, improve defensive capabilities, strengthen secure software development, and conduct authorized security assessments in controlled environments.

Whether your goal is becoming a skilled exploit developer, advancing as a penetration tester, improving application security expertise, or expanding your understanding of modern vulnerability research, this comprehensive bundle provides the technical depth and practical knowledge needed to succeed.

Books

About the Books

Black Hat C

Low-Level Exploitation and Malware Engineering

This book teaches how modern attacks work at the level where they actually happen: in memory, on the stack, inside the kernel. It is written for security engineers, penetration testers, malware analysts, and advanced students who already know C and want a rigorous, code-first understanding of exploitation and malware engineering. Each chapter pairs offensive techniques with defensive countermeasures. All examples are intended for isolated, legal, ethical use in a controlled lab environment.

BlackHat Zig

Offensive Security, Exploit Development, and Tooling with the Zig Programming Language

This book explores how Zig, a modern systems programming language focused on zero-cost abstractions, compile-time metaprogramming, explicit memory management, and seamless C interoperability, can be applied across a wide range of cybersecurity disciplines. Topics include exploit development, reverse engineering, network security tooling, red team tradecraft, kernel instrumentation, malware analysis, and defensive security engineering.

The chapters progress from core language concepts to increasingly advanced security applications, combining practical explanations with real-world examples, case studies, and hands-on projects. Along the way, readers will learn how Zig's emphasis on performance, predictability, and low-level control makes it a strong fit for security-focused development.

The book takes an ethical and educational approach throughout. The goal is to understand modern threats and defensive techniques by building and studying the tools used to analyze, detect, and respond to security challenges.

Web Application Attack Vectors 2026

An Advanced Guide for Security Professionals and Developers (Updated Edition)

This book delivers a deep technical exploration of advanced web application attack vectors across modern application architectures. Moving far beyond introductory concepts, it examines sophisticated exploitation techniques including injection attacks, authentication bypasses, client-side vulnerabilities, Server-Side Request Forgery (SSRF), insecure deserialization, API security testing, business logic abuse, web cache poisoning, HTTP request smuggling, cloud-native security weaknesses, evasion methods, exploit chaining, and emerging attack trends.

New in the 2026 Edition

This fully updated edition includes extensive new coverage of the latest research, vulnerabilities, and real-world attack techniques:

  • React2Shell (CVE-2025-55182) — Analysis of the critical React Server Components remote code execution vulnerability and its exploitation by state-sponsored threat actors.
  • WAFFLED — Advanced Web Application Firewall (WAF) bypass techniques leveraging parsing discrepancies uncovered through black-box fuzzing research.
  • HTTP/3 and QUIC Security — Coverage of emerging attack vectors including QUIC-er Races, Single Datagram Attacks, TOCTOU race conditions, and the QUIC-LEAK vulnerability.
  • OAuth 2.1 Security Pitfalls — Device code phishing attacks (Storm-2372), consent phishing, cross-application attacks, domain resurrection, and DPoP implementation flaws.
  • AI and ML-Powered Web Attacks — Prompt injection, AI-assisted reconnaissance, deepfake-enabled social engineering, LLMjacking, and attacks targeting Model Context Protocol (MCP) servers.
  • WebAssembly Security — Memory safety issues, WASM-to-JavaScript binding exploitation, sandbox escape considerations, and side-channel attack techniques.
  • IoT Web API Security — MQTT and CoAP vulnerabilities, DDoS amplification vectors, and attacks with real-world physical security implications.
  • Software Supply Chain Attacks — npm and PyPI package compromise techniques, dependency confusion, model poisoning, and attacks targeting machine learning ecosystems such as Hugging Face.

Written for intermediate to advanced security professionals, this guide equips penetration testers, application security engineers, security researchers, and developers with the knowledge and practical methodologies required to identify, assess, exploit, and defend against the evolving threats facing modern web applications.

Buffer Overflow Exploitation and Defense Evasion

A Deep Dive into Memory Corruption Vulnerabilities, Exploitation, and Defense

This book provides a comprehensive, technically rigorous treatment of memory corruption vulnerabilities, from the CPU architecture foundations that make them possible to the advanced exploitation techniques and modern defenses that define today's security landscape. Beginning with computer memory architecture, process layout, and assembly language fundamentals, it progresses through stack-based and heap-based buffer overflows, use-after-free, format string vulnerabilities, and related memory corruption bugs. The book covers exploit development concepts including shellcode, return-oriented programming, jump-oriented programming, and information leaks across both Windows and Linux platforms. Modern mitigations such as DEP/NX, ASLR, stack canaries, Intel CET, ARM PAC, and Control Flow Integrity are examined in depth, along with the ongoing arms race between exploitation research and defense mechanisms. The final chapters address vulnerability research methodologies, fuzzing, secure coding practices, and incident response. This book is intended for security professionals, reverse engineers, vulnerability researchers, and advanced students who want to understand memory corruption at the deepest level for defensive purposes. All techniques described are presented in the context of ethical security research and responsible disclosure.

AI-Assisted Exploit Development

Using Large Language Models to Accelerate Vulnerability Research, Reverse Engineering, and Offensive Security

This book is a practical guide for security professionals who want to integrate large language models and AI-powered tools into their vulnerability research workflows. It covers how to use AI with platforms like IDA Pro, Ghidra, Binary Ninja, Burp Suite, debuggers, fuzzers, and MCP-enabled tooling to analyze code, automate repetitive tasks, identify vulnerabilities, generate proof-of-concept exploits, and streamline exploit development pipelines. Through real-world case studies, hands-on examples, and offensive security exercises, readers learn how to combine human expertise with AI assistance to improve efficiency across binary analysis, web application testing, malware research, and vulnerability discovery, while understanding the limitations, validation requirements, and operational security considerations of AI-generated results. Designed for exploit developers, penetration testers, reverse engineers, red team operators, and security researchers.

Mobile Application Security

The Definitive Guide to Protecting Android, iOS, and Cross-Platform Applications

This book is a comprehensive, expert-level reference on mobile application security. It covers Android, iOS, and cross-platform ecosystems from fundamentals through advanced offensive and defensive techniques. You will find detailed chapters on reverse engineering, malware analysis, penetration testing, runtime instrumentation, secure coding, cryptography, compliance, incident response, and real-world case studies. Each chapter includes hands-on labs with real tools including Frida, JADX, Ghidra, Burp Suite, MobSF, Drozer, ADB, Hopper, IDA Pro, Radare2, mitmproxy, Wireshark, and many more. Whether you are a developer seeking to secure your apps, a security engineer building defense strategies, or a penetration tester sharpening your skills, this book provides the technical depth and practical guidance you need.

The Leanpub 60 Day 100% Happiness Guarantee

Within 60 days of purchase you can get a 100% refund on any Leanpub purchase, in two clicks.

See full terms...

Earn $8 on a $10 Purchase, and $16 on a $20 Purchase

We pay 80% royalties on purchases of $7.99 or more, and 80% royalties minus a 50 cent flat fee on purchases between $0.99 and $7.98. You earn $8 on a $10 sale, and $16 on a $20 sale. So, if we sell 5000 non-refunded copies of your book for $20, you'll earn $80,000.

(Yes, some authors have already earned much more than that on Leanpub.)

In fact, authors have earned over $15 million writing, publishing and selling on Leanpub.

Learn more about writing on Leanpub

Free Updates. DRM Free.

If you buy a Leanpub book, you get free updates for as long as the author updates the book! Many authors use Leanpub to publish their books in-progress, while they are writing them. All readers get free updates, regardless of when they bought the book or how much they paid (including free).

Most Leanpub books are available in PDF (for computers) and EPUB (for phones, tablets and Kindle). The formats that a book includes are shown at the top right corner of this page.

Finally, Leanpub books don't have any DRM copy-protection nonsense, so you can easily read them on any supported device.

Learn more about Leanpub's ebook formats and where to read them

Write and Publish on Leanpub

You can use Leanpub to easily write, publish and sell in-progress and completed ebooks and online courses!

Leanpub is a powerful platform for serious authors, combining a simple, elegant writing and publishing workflow with a store focused on selling in-progress ebooks.

Leanpub is a magical typewriter for authors: just write in plain text, and to publish your ebook, just click a button. (Or, if you are producing your ebook your own way, you can even upload your own PDF and/or EPUB files and then publish with one click!) It really is that easy.

Learn more about writing on Leanpub