Books

The book covers every topic in the latest CISSP exam syllabus, organized in a format that makes it easy to drill down on specific exam domains and concepts at-a-glance, making it an essential exam resource for anyone who aims to prepare for the exam without wasting time or money.

This book covers every topic in the latest CISM exam syllabus, approaching topics from the ISACA perspective. It's 325+ pages organized in a format that makes it easy to drill down on specific exam domains and concepts at-a-glance, making it an essential exam resource for anyone who aims to prepare for the CISM exam without wasting time or money.

This book covers every topic in the latest CISA exam syllabus, approaching topics from the ISACA perspective. It's 400+ pages, organized in a format following the syllabus that makes it easy to drill down on specific exam domains and concepts at-a-glance, making it an essential exam resource for anyone who aims to prepare for the CISA exam without wasting time or money.

By the time you finish this book, you should be able to make your systems observable across microservices, AI workloads, security monitoring, and hybrid cloud infrastructure. This book will help you learn how to effectively instrument, generate, collect, and export telemetry data (metrics, logs, and traces) to analyze your software’s performance and behavior.

Official companion guide to the OWASP Juice Shop. Being a web application with a vast number of intended security vulnerabilities, the OWASP Juice Shop is supposed to be the opposite of a  best practice  or  template application  for web developers: It is an awareness, training, demonstration and exercise tool for security risks in modern web apps.

The CISO's field guide to hardening ServiceNow, defending its APIs, and meeting NIS2, DORA, and EU AI Act obligations. Written by a former Principal Security Advisor in ServiceNow's Office of the CISO.

Embedded security is an architecture problem, not a checklist.This book shows how to build a coherent security design for real devices: what embedded cybersecurity means, why it’s different in embedded systems (constraints, lifecycle, physical access, limited patching), and how to turn that into practical design decisions. You’ll learn threat modeling and trust boundaries, then the core mechanisms that must work together: secure boot and root of trust, key management, secure communication, and robust firmware updates. Early access: updated regularly as new chapters and examples are added. Purchasers receive updates.

Hello! I'm Tony Robinson, a senior security analyst and rule writer on the Proofpoint Emerging Threats team. I write rules for the ETOPEN and ETPRO rulesets. My book will teach you about the ins and outs of Suricata, rules and rule writing in general, why the IDS software behaves a certain way, and how to get the most out of your Suricata deployments.

Hello! I'm Tony Robinson, a senior security analyst and rule writer on the Proofpoint Emerging Threats team. I write rules for the ETOPEN and ETPRO rulesets. My book will teach you about the ins and outs of Suricata, rules and rule writing in general, why the IDS software behaves a certain way, and how to get the most out of your Suricata deployments.

Transform your cybersecurity from a necessary expense into a powerful engine for business expansion and market differentiation. This guide reveals how fractional executive leadership provides the enterprise-level strategy needed to build customer trust, navigate compliance, and outpace the competition. Stop just protecting your business and start using security to propel it forward.

Go beyond the basics and master the deep technical realities of memory corruption. Learn how modern defenses like ASLR, CFI, and PAC work, then discover the sophisticated ROP, leak, and data-only techniques required to bypass them. This is your essential guide to advanced exploit development and defense evasion.

Das Buch behandelt alle Themen des aktuellen CISSP-Prüfungslehrplans in einem Format, das es ermöglicht, spezifische Prüfungsdomänen und Konzepte auf einen Blick zu vertiefen, wodurch es sich zu einer unverzichtbaren Prüfungsressource für alle entwickelt, die sich ohne Zeit- und Geldverschwendung auf die Prüfung vorbereiten möchten.

The premise of this book is to provide students a hands-on, go-to resource for building a secure, customizable lab environment in order to enable their own specific pursuits.

"Exploitology: Web Apps Exploits" explores web app security, focusing on vulnerabilities, exploitation techniques, and defense strategies. With practical examples and real-world scenarios, this book helps readers sharpen their penetration testing skills and stay ahead in cybersecurity.

USE THE COMMUNITY EDITION TO GET WHOLE BOOK FOR FREE !!The internet is a battleground, and every system has a weakness—you just have to find it. This isn’t a kiddie hacker’s guide; it’s a war manual for those ready to break, exploit, and outsmart the system. By the time you’re done, you won’t just know how hackers operate—you’ll become one.