Penetration Testing

2E151

What are some good books to start with regarding this subject? I've got my eye towards network intrusion defense and penetration testing but don't know which books to get.

dynamik

In no particular order:

Amazon.com: Build Your Own Security Lab: A Field Guide for Network Testing (9780470179864): Michael Gregg: Books

Amazon.com: Certified Ethical Hacker Exam Prep (9780789735317): Michael Gregg: Books

Amazon.com: Penetration Tester's Open Source Toolkit, Vol. 2 (9781597492133): Jeremy Faircloth, Chris Hurley, Jesse Varsalone: Books

Amazon.com: Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning (9780979958717): Gordon Fyodor Lyon: Books

Amazon.com: Professional Penetration Testing: Creating and Operating a Formal Hacking Lab (9781597494250): Thomas Wilhelm: Books

Amazon.com: Hacking Exposed: Network Security Secrets and Solutions, Sixth Edition (9780071613743): Stuart McClure, Joel Scambray, George Kurtz: Books

Amazon.com: Wireshark Network Analysis: The Official Wireshark Certified Network Analyst Study Guide (978189393999: Laura Chappell, Gerald Combs: Books

Amazon.com: The TCP/IP Guide: A Comprehensive, Illustrated Internet Protocols Reference (0689145704709): Charles M. Kozierok: Books

Amazon.com: Snort IDS and IPS Toolkit (Jay Beale's Open Source Security) (9781597490993): Brian Caswell, Jay Beale, Andrew Baker: Books

Amazon.com: TCP/IP Illustrated, Vol. 1: The Protocols (Addison-Wesley Professional Computing Series) (9780201633467): W. Richard Stevens: Books

http://www.amazon.com/Tao-Network-Security-Monitoring-Intrusion/dp/0321246772/ref=pd_bxgy_b_img_c

http://www.amazon.com/Extrusion-Detection-Security-Monitoring-Intrusions/dp/0321349962/ref=pd_bxgy_b_img_b

http://www.amazon.com/Security-Monitoring-Incident-Detection-Enterprise/dp/0596518161/ref=sr_1_1?s=books&ie=UTF8&qid=1297558192&sr=1-1

I have more, but that should get you started

Other good resources:

SecLists.Org Security Mailing List Archive

Podcasts for Cyber Security Professionals

The Ethical Hacker Network

UnixGuy

wow great list dynamic ! thanks for sharing !

+rep

Bl8ckr0uter

Excellent. +rep as well. Is this what you used to pass GPEN?

dynamik

Bl8ckr0uter wrote: »

Is this what you used to pass GPEN?

Indirectly, I suppose. I didn't really do any dedicated studying for it; I just went in and took it.

After glancing at my library, I'd like to also add:

Amazon.com: Counter Hack Reloaded: A Step-by-Step Guide to Computer Attacks and Effective Defenses (2nd Edition) (9780131481046): Edward Skoudis, Tom Liston: Books

Amazon.com: Gray Hat Hacking The Ethical Hackers Handbook, 3rd Edition (9780071742559): Allen Harper, Shon Harris, Jonathan Ness, Chris Eagle, Gideon Lenkey, Terron Williams: Books

Amazon.com: Google Hacking for Penetration Testers (9781597491761): Johnny Long: Books

If you're looking for some other cool books, check out:

Amazon.com: Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks (0689145704617): Michal Zalewski: Books

Amazon.com: Ninja Hacking: Unconventional Penetration Testing Tactics and Techniques (9781597495882): Thomas Wilhelm, Jason Andress: Books

Amazon.com: Stealing the Network: The Complete Series Collector's Edition, Final Chapter, and DVD (9781597492997): Johnny Long, Ryan Russell, Timothy Mullen: Books

The last one is particularly interesting because it's fictional with real technology. I got the Kindle edition last week and have thoroughly enjoyed the first couple of chapters.

This one is in a similar vein, and anyone who has read through the security forums and stickies here will certainly recognize one of the authors: Amazon.com: Chained Exploits: Advanced Hacking Attacks from Start to Finish (9780321498816): Andrew Whitaker, Keatron Evans, Jack B. Voth: Books

The Hackers Challenge, Hackers Handbook, and Hacking Exposed series have tons of other great books. The challenges really make you think and the used copies can be purchased extremely cheap (i.e. the first one is currently 15 cents and the second is under two dollars; there's no reason not to own these).