Toward the end of the SANS 564 class I led last week, one of the students asked what security books I'd recommend. So here is a list of what's on my office bookshelf with a brief review.
Carrier. File System Forensic Analysis.
THE book on the topic
Stoll. Silicon Snake Oil.
Contrarian view of the "tech revolution" and its accompanying sales creatures.
Mitnick. The Art of Intrusion.
I know. But I had to read it
Long. Google Hacking.
THE book on the topic, but I have an old copy.
Winkler. Spies Among Us.
Practical view of personal information security.
Wiles. Techno Security's Guide to Managing Risk.
Only the chapter by Long is worth reading.
Middleton. Cyber Crime Investigator's Field Guide.
A usable reference, but not well written.
Worral and Hemmens. Criminal Evidence, An Introduction.
A text book that doesn't read like one (it is good).
Nemeth, et al. Unix System Administration Handbook.
A well worn copy that is now nearly old enough to buy liquor.
Mandia & Prosise. Incident Response.
Haven't read through it all, but what I have read is good.
Alder, et al. SNORT 2.1.
Same comment as on Incident Response.
The Honeynet Project. Know your Enemy.
I think I read the cover, but nothing else.
Gentile, et al. The CISO Handbook.
Seriously over priced list of common sense ideas.
Kovacich. Information Systems Security Officer's Guide.
Same comment as on CISO Handbook.
Tannenbaum. Operating Systems Design and Implementation.
Maybe a bit long in the tooth, but THE book on the topic. Brush up on reading C.
Abrahams, et al. UNIX for the Impatient.
Hilarious title for a 800+ page book.
Montgomery. Underground Guide to Unix.
Better than a poke in the eye with a sharp stick.
Allen. Getting Things Done.
I have no idea what it is about or where it came from.
Krutz & Vines. The Advanced CISSP Prep Guide.
It helped.
Subscribe to:
Post Comments (Atom)
This comment has been removed by a blog administrator.
ReplyDelete