Leanpub Header

Skip to main content

Filters

Category: "Cyber Security"

Books

  1. BlackHat Zig
    Offensive Security, Exploit Development, and Tooling with the Zig Programming Language
    Steve T. Publications

    Modern cybersecurity demands tools that are fast, reliable, and capable of operating close to the hardware. BlackHat Zig explores how Zig's unique blend of performance, safety, explicit memory control, and compile-time metaprogramming makes it an excellent language for security research and development. From reverse engineering and exploit development to network tooling, malware analysis, kernel instrumentation, and defensive security engineering, this book demonstrates how Zig can be used to build practical security tools across the offensive and defensive spectrum. Packed with real-world examples, hands-on projects, and production-quality code, BlackHat Zig provides a deep dive into both the language and the techniques used by modern security professionals. Whether you're a developer looking to expand into security or a researcher searching for a powerful new toolset, this book offers a practical path into the world of cybersecurity through the lens of Zig.

  2. Assembly Under the Hood: Modern x64 Programming for Windows
    From Fundamentals to Advanced Techniques
    Steve T. Publications

    Discover how Windows software really works with a practical guide to modern x64 assembly. From core concepts to advanced optimization, reverse engineering, and low-level systems programming, this book equips you with the knowledge to write fast, secure, and efficient code.

  3. AI-Assisted Exploit Development
    Using Large Language Models to Accelerate Vulnerability Research, Reverse Engineering, and Offensive Security
    Steve T. Publications

    What if your next exploit development workflow had an AI-powered copilot? AI-Assisted Exploit Development explores how large language models are transforming vulnerability research, reverse engineering, and offensive security. From accelerating binary analysis in IDA Pro, Ghidra, and Binary Ninja to enhancing web application testing, fuzzing, debugging, and proof-of-concept exploit creation, this hands-on guide demonstrates how security professionals can leverage AI to work faster and more effectively. Through practical examples, real-world case studies, and offensive security exercises, readers will learn where AI excels, where human expertise remains essential, and how to safely integrate AI assistance into modern exploit development pipelines.

  4. Cloud Forensic for GCP
    SouthStone Publications

    In Google Cloud, the compromised system you need often disappears before you can touch it. This practitioner's guide shows you how to pursue attackers through Cloud Audit Logs, IAM, and ephemeral infrastructure instead, with runnable gcloud commands and BigQuery queries for every step.

  5. Cloud Forensic for AWS
    SouthStone Publications

    Master AWS incident response from CloudTrail to courtroom-ready evidence. Learn to acquire EC2 and container evidence, trace identity-based attacks, investigate S3 exfiltration, and build forensic readiness, all through three real-world incidents walked end to end.

  6. Azure investigations don't start with a disk image, they start with the control plane. This field guide walks incident responders through Azure's logging architecture, identity attack chains, VM and container forensics, and evidence acquisition at cloud scale, with three full attack scenarios worked end to end.

  7. The Reverse Engineering Handbook: From Beginner to Expert
    A Complete Guide to Binary Analysis, Debugging, and Software Deconstruction
    Steve T. Publications

    Discover how software works beneath the surface with The Reverse Engineering Handbook. From assembly language and debugging to malware analysis, firmware, and AI-assisted techniques, this practical guide takes you from beginner to expert in understanding and deconstructing compiled software.

  8. Modern Cloud Security Engineering
    A Practical Guide to Securing AWS, Azure, and Google Cloud
    Steve T. Publications

    Cloud security is built, not bought. This practical guide goes beyond checklists and compliance to teach the engineering principles behind secure cloud environments. Learn how to design resilient identity systems, protect workloads, secure data, detect threats, and respond to incidents across AWS, Microsoft Azure, and Google Cloud using production-tested techniques and real-world architectures.

  9. Red Team Operations
    SouthStone Publications

    Master the complete lifecycle of authorized adversary emulation, from threat modeling and initial access through objective completion. Every offensive technique paired with detection and remediation, complete with ready-to-use templates for rules of engagement, ATT&CK mapping, and findings reports.

  10. Cloud Security Engineering
    SouthStone Publications

    A practical, multi-cloud guide to securing AWS, Azure, and GCP workloads. Twelve chapters cover IAM hardening, CSPM/CWPP, IaC scanning, Kubernetes defense, and cloud incident response, each paired with runnable policies, scan configs, and detection rules you can put to work immediately.

  11. The Threat Hunter's Playbook
    SouthStone Publications

    A field-tested, platform-agnostic methodology for proactive threat hunting, from hypothesis formation and data foundations to a full scenario library organized by MITRE ATT&CK tactic. Every technique ships as portable Sigma YAML or pseudocode, built to outlast whichever SIEM or EDR you run today.

  12. Digital Forensics
    SouthStone Publications

    Learn to investigate Windows, Linux, macOS, memory, network, and cloud evidence with the rigor courts and regulators expect. Packed with runnable tool examples (Volatility 3, Plaso, KAPE, The Sleuth Kit) and a full worked case study, this book turns forensic theory into repeatable, defensible practice.

  13. Threat Hunting
    SouthStone Publications

    A vendor-neutral, hands-on guide to proactive threat hunting: the assume-breach mindset, MITRE ATT&CK, core telemetry, and techniques like baselining, beaconing, and LOLBin detection, all backed by Sigma-rule pseudocode and four full scenario hunts from phishing to command-and-control exfiltration.

  14. Threat Intelligence
    SouthStone Publications

    A practical guide to cyber threat intelligence, from raw indicators to strategic decisions. Learn the intelligence lifecycle, MITRE ATT&CK, STIX/TAXII/MISP, and intelligence-driven threat hunting, all traced through one real phishing campaign from first alert to CISO briefing.

  15. Vulnerability Management
    SouthStone Publications

    Tens of thousands of vulnerabilities. A handful that actually matter. This book shows you how to build a risk-based vulnerability management program, from asset discovery and scanning to CVSS/EPSS/KEV prioritization, remediation workflows, cloud and container security, and zero-day response, complete with SLA matrices, scoring formulas, and a full Log4Shell case study.