Last year, I was able to read 16 books that I tracked using my GoodReads profile. So far in 2015, I have 6 books that I have started and currently working on. In addition, I am reading the English Standard Version of the Bible on a year long reading plan.
This was a book we had at work, which is slightly outdated but the information is still quite useful. The copy that I have is the 2nd edition, but there is a 3rd edition available. As I have been preparing for my Web Application Penetration Tester certification, this has been useful. It is also opening up new perspectives on testing websites for security vulnerabilities that were not covered in some of the other books I’ve read.
Firewalls and Internet Security: Repelling the Wily Hacker, by Cheswick, William R.
One of the additional duties that I took on at work was reviewing our network switches and firewalls. While I have a good foundation of networking technology, I bought this book to take a deeper dive into the subject and give me a better understanding of additional issues I should be taking note of. So far, this book is a real easy read and it is one that I am looking forward to finishing.
CISSP All-in-One Exam Guide by Harris, Shon
This massive 1600 page tome of knowledge covers 10 domains of information security. It is expected that I achieve this certification by the end of the year. This book will become more of a priority for me in 2015. It is undoubtedly the best book for learning everything necessary to be successful for the CISSP and to be an Information Security professional.
Part of being a web application penetration tester, I need to be able to also assess the security of mobile web applications. Mobile web applications are an extension of what web servers provide. The tricky part is intercepting the communication between the app and the server along with understanding how the app works with the local operating system. Android is not too hard to test, however iOS apps have proved a much greater challenge. Plus I got to a point in the book where I started needing to use a Mac to develop scripts to run against the iOS device, which I do not have. I will have to continue reading the book without participating to get a better understanding of what I really need to test iOS apps produced by our company.
This is my guilty pleasure book that I read for entertainment. I wish I had more time to read fiction books but I am more drawn to budgeting my reading time on self development type books.
So far this has been an amazing book. Without giving away any spoilers, the book is centered around the lives of a young German boy who is a whiz with radios and a blind French girl during World War II. Marie-Laure, the young French girl went blind at a very young age. Her father built a very detailed model of the city so she can learn how to get around on her own. The story is very touching and there are times I’ve stayed awake late at night to find out what happens next.
This book won the 2014 GoodReads Best Historical Fiction award.
Before last year, I never bought an O’Reilly book, as I have learned I have been doing myself a great disservice. This book covers every technical detail of bash (Bourne Again Shell) that applies to any Unix/Linux system. It covers functionality the still exists but is not necessary just for the spirit of completion of the book. I really like that, nothing worse than reading a book on a technical subject and only getting a fraction of the knowledge. What I have learned in this book has added quite a bit my efficacy as a Linux Engineer, and I’ve only gotten about 1/4 of the way through.
This is what I am currently reading. I am getting to a point that I have to stop myself from getting into any new books until I finish the ones that I have.
Are you reading any of these books or do you have any recommendations to add to the “must read” list?