Cатсн²² (in)sесuяitу / ChrisJohnRiley

I tend to read a bit (ok, sometimes a lot). As not every book can/should be accompanied by a full out review, I’ve decided to create a list of books along with a  reference (1-10) to help out people just looking for a list of good books.

Hope you find this list useful… and feel free to suggest books I should take a look at (although my backlog is long!)

Title	Author	Links	Rating
Offensive Countermeasures: The Art of Active Defense	John Strand, Paul Asadoorian	Amazon / Full Review
Coding for Penetration Testers: Building Better Tools	Jason Andress, Ryan Linn	Amazon / Full Review
The Tangled Web:A Guide to Securing Modern Web Applications	Michael Zalewski	Amazon / Full Review
Metasploit: The Penetration Tester’s Guide	David Kennedy, Jim O’Gorman, Devon Kearns, Mati Aharoni	Amazon
Web Application Obfuscation: ‘-/WAFs..Evasion..Filters//alert(/Obfuscation/)-‘	Mario Heiderich, Eduardo Alberto Vela Nava, Gareth Heyes, David Lindsay	Amazon / Full Review
The Web Application Hackers Handbook	Dafydd Stuttard	Amazon
ModSecurity Handbook: The Complete Guide to the Popular Open Source Web Application Firewall	Ivan Ristic	Amazon / Full Review
SQL Injection Attacks and Defense	Justin Clarke (+)	Amazon
XSS Attacks: Cross Site Scripting Exploits and Defense	Jeremiah Grossman, Robert Hansen (+)	Amazon
Professional Penetration Testing: Creating and Operating a Formal Hacking Lab	Thomas Wilhelm	Amazon
Web Security Testing Cookbook	Paco Hope, Ben Walther	Amazon
Hacking Exposed VoIP	David Endler, Mark Collier	Amazon