Library
CISSP All-in-One Exam Guide, McGraw-Hill, 9th Edition
This comprehensive book on Information Security is an excellent resource for anyone seeking guidance in the field, despite its primary focus on the CISSP exam. Even for those already CISSP-certified, this book is invaluable for daily tasks. It's pure gold.
The Cuckoo's Egg, Doubleday, 1st Edition
The first documented incident response in Information Security begins with a 75-cent discrepancy in an accounting system and unravels into an international espionage plot involving the KGB, CIA, FBI, and NSA. This cyber-espionage thriller is captivating even for those outside the Infosec field.
Countdown to Zero Day, Crown, 1st Edition
Essential reading for anyone interested in cyber warfare, this book provides a well-rounded view of how cyber operations unfold on a global scale. It goes beyond technical analysis, offering context on the political and strategic decisions behind attacks like Stuxnet. Readers will come away with a better grasp of the complexities surrounding cyber weapons and the real-world impacts they can have.
Intelligence-Driven Incident Response, O'Reilly, 2nd Edition
This book connects Cyber Threat Intelligence, Detection Engineering, and Incident Response, serving as a valuable resource for those unfamiliar with terms like TTPs, IOCs, ATT&CK, and Kill Chain. It's a must-read for security operations professionals looking to enhance their expertise.
Practical Threat Detection Engineering, Packt, 1st Edition
A must-read for Threat Detection Engineers, this book delves deeply into the field of Detection Engineering and serves as an excellent complement to the Intelligence-Driven Incident Response book. Readers will gain insights into the mindset of a threat detection engineer and understand the challenges inherent in this field.
The Missing Readme, No Starch Press, 1st Edition
A comprehensive guide that bridges the gap between technical skills and workplace practices in modern software engineering. Perfect for new engineers and seasoned professionals alike, it covers essential topics like version control, documentation, testing strategies, and navigating corporate culture.
Shell Script Profissional, Novatec, 1st Edition
In my experience, this book is by far the best source for learning shell script, though it is only available in Portuguese (pt_br). Aurelio's smooth writing style makes learning shell script fun and easy. I highly recommend this book to anyone interested in learning shell scripting.
Expressões Regulares - Uma abordagem divertida, Novatec, 1st Edition
This book has been the bible of regular expressions in my journey. Aurelio not only helped me understand regex but also made me love it. This must-read book for anyone interested in regex is only available in Portuguese (pt_br).
Hack the Box Academy
HTB Academy is an interactive learning platform, offering hands-on training through structured learning paths and challenges. It focuses primarily on Offensive Security but also includes modules for defensive skills, catering to a range of skill levels from beginner to advanced practitioners.