Books

The book covers every topic in the latest CISSP exam syllabus, organized in a format that makes it easy to drill down on specific exam domains and concepts at-a-glance, making it an essential exam resource for anyone who aims to prepare for the exam without wasting time or money.

This book covers every topic in the latest CISM exam syllabus, approaching topics from the ISACA perspective. It's 325+ pages organized in a format that makes it easy to drill down on specific exam domains and concepts at-a-glance, making it an essential exam resource for anyone who aims to prepare for the CISM exam without wasting time or money.

This book covers every topic in the latest CISA exam syllabus, approaching topics from the ISACA perspective. It's 400+ pages, organized in a format following the syllabus that makes it easy to drill down on specific exam domains and concepts at-a-glance, making it an essential exam resource for anyone who aims to prepare for the CISA exam without wasting time or money.

Now we have made it to the kernel. Let's assume you have a chip, any chip, from the suppliers we've just discussed. You might choose to manually load a kernel onto that chip, using a GRand Unified Bootloader (GRUB) to load (or strap) the kernel, and pass all permissions over to it. It is the animus in the machine. There are many different kernels, but they share one interesting characteristic to security: they run with the highest level of access, mediating interactions between user applications and the physical chips. A good kernel will handle low-level tasks like CPU scheduling, memory allocation, device input/output, and system calls. It is the bridge between software and hardware: if the kernel fails to load or crashes, the entire system will halt. To make this level of access a bit safer, the kernel is designed to be always resident in memory, and execute in a protected mode that is isolated from applications. This prevents damage to core system data...

The full transcript of Software Diagnostics Services training with more than 20 step-by-step exercises using WSL and Hyper-V environments, notes, and source code of specially created modeling applications in C, C++, and Rust. Learn live local and remote debugging techniques in the kernel, user process, and managed spaces using WinDbg, GDB, LLDB, rr, and KDB, KGDB debuggers. The unique and innovative course teaches unified debugging patterns applied to real problems from complex software environments. A necessary x64 and ARM64 review is also included.

Official companion guide to the OWASP Juice Shop. Being a web application with a vast number of intended security vulnerabilities, the OWASP Juice Shop is supposed to be the opposite of a  best practice  or  template application  for web developers: It is an awareness, training, demonstration and exercise tool for security risks in modern web apps.

Get exposure to penetration testing techniques and ethical hacking skills including how to manipulate web traffic, automate scans, and execute controlled exploits.

Learn how to find interesting behaviour and flaws in JavaScript. Reading this book you will find the latest and greatest techniques for hacking JavaScript and generating XSS payloads. Includes ways to construct JavaScript using only +[]()! characters. Never heard of DOM Clobbering? This book has all the details.

The premise of this book is to provide students a hands-on, go-to resource for building a secure, customizable lab environment in order to enable their own specific pursuits.

Modern embedded systems are long-lived, connected, and hard to patch. This book focuses on the practical design of core security mechanisms for protecting embedded devices, including secure boot, root of trust, secure communication, firmware updates, and key management. It shows how these mechanisms are designed and integrated in real products, using concrete design scenarios rather than purely theoretical models.

In unethical software, not every line of code is written with good intentions. Unethical Software Engineering: Dark Patterns exposes how to manipulate users, drive profits, and evade accountability. From covert surveillance, monetization at all costs, digital fraud, ranking manipulation, all the way to unethical artificial intelligence practices, this scary book unveils how these "dark patterns" exploit human beings, erode trust, and disrupt digital ethics.Whether you're a developer, an architect, a tech enthusiast, or simply a concerned user, this book will change how you think about your daily apps — and inspire you to demand better. By helping you to draw the line between what is acceptable and what is questionable, Unethical Software Engineering: Dark Patterns shines a light on the digital dark side of software engineering where profits are prioritized over people.

FREE BOOK! This book is a comprehensive guide specifically designed for individuals preparing for the CISSP exam. It offers concentrated notes and key information for revision, making it an ideal resource after completing the main reading material. By providing a concise summary of essential topics, the book aims to save valuable time, especially during the critical last-minute study phase, possibly a week before the exam.

Hello! I'm Tony Robinson, a senior security analyst and rule writer on the Proofpoint Emerging Threats team. I write rules for the ETOPEN and ETPRO rulesets. My book will teach you about the ins and outs of Suricata, rules and rule writing in general, why the IDS software behaves a certain way, and how to get the most out of your Suricata deployments.

Hello! I'm Tony Robinson, a senior security analyst and rule writer on the Proofpoint Emerging Threats team. I write rules for the ETOPEN and ETPRO rulesets. My book will teach you about the ins and outs of Suricata, rules and rule writing in general, why the IDS software behaves a certain way, and how to get the most out of your Suricata deployments.

Nun sind wir beim Kernel angekommen. Nehmen wir an, Sie haben einen Chip, irgendeinen Chip, von den Anbietern, die wir gerade besprochen haben. Sie könnten sich dafür entscheiden, manuell einen Kernel auf diesen Chip zu laden, wobei Sie einen GRand Unified Bootloader (GRUB) verwenden, um den Kernel zu laden (oder zu bootstrappen) und alle Berechtigungen an ihn zu übergeben. Er ist die Seele in der Maschine. Es gibt viele verschiedene Kernel, aber sie teilen eine interessante Eigenschaft in Bezug auf Sicherheit: Sie laufen mit der höchsten Zugriffsebene und vermitteln die Interaktionen zwischen Benutzeranwendungen und den physischen Chips. Ein guter Kernel übernimmt niedrige Aufgaben wie CPU-Scheduling, Speicherverwaltung, Geräteeingabe/-ausgabe und Systemaufrufe. Er ist die Brücke zwischen Software und Hardware: Wenn der Kernel nicht geladen werden kann oder abstürzt, kommt das gesamte System zum Stillstand.