CyberSecurity Summary episodes:

• March 19, 2025The Hacker Playbook 3: Practical Guide To Penetration Testing

  "The Hacker Playbook 3" is a guide to penetration testing and red teaming, focusing on advanced techniques to simulate real-world attacks. The book covers various attack vectors, including web application exploitation (XSS, NoSQL injection, template injection), network compromise (Responder, CrackMapExec, DCSync), and lateral movement. It emphasizes bypassing security controls and evading detection, featuring tools like PowerShell Empire, Cobalt Strike, and Metasploit. The text also explores credential harvesting, password cracking, and building custom malware to improve stealth.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Hacker-Playbook-Practical-Penetration-Testing/dp/1980901759?&linkCode=ll1&tag=cvthunderx-20&linkId=a65bf4cd5b30005becde682bb893963c&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• March 19, 2025The Docker Workshop: Learn how to use Docker containers effectively to speed up the development process

  This Book comprises excerpts from "The Docker Workshop," a guide to building and deploying applications using Docker. The book covers Dockerfiles, image management, container orchestration with Docker Compose and Swarm, and extends to advanced topics like networking, storage, security, CI/CD pipelines with Jenkins, and monitoring with Prometheus and Splunk. Numerous exercises and activities are included throughout to provide hands-on experience. The book also touches upon Kubernetes and its relationship to Docker. Finally, the appendix offers solutions to the exercises and activities.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Docker-Workshop-containers-effectively-development/dp/1838983449?&linkCode=ll1&tag=cvthunderx-20&linkId=1b69cae53f06fbc6e763a3ed3e8c7741&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• March 18, 2025The Decision Intelligence Handbook: Practical Steps for Evidence-Based Decisions in a Complex World

  The Decision Intelligence Handbook by Pratt and Malcolm is a practical guide to Decision Intelligence (DI), a methodology for improving decision-making using data and technology. The book outlines nine DI processes, from defining decision objectives to retrospectively analyzing results. It emphasizes creating Causal Decision Diagrams (CDDs) to visualize cause-and-effect relationships, integrating data assets into these diagrams, and using simulations to explore potential outcomes. The authors highlight the importance of aligning technical and non-technical teams, advocating for a collaborative, evidence-based approach to complex decision-making. Real-world case studies illustrate the application of DI across various sectors.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Decision-Intelligence-Handbook-Practical-Evidence-Based/dp/1098139658?&linkCode=ll1&tag=cvthunderx-20&linkId=5d5846f7e6409eabc2020c3dc65ee533&language=en_US&ref_=as_li_ss_tl
  

  ...more

  

  ---

• March 18, 2025The Complete Cyber Security Course

  The provided Book is a collection of excerpts from a cybersecurity course. The course, "The Complete Cyber Security Course Volume I Hackers Exposed," by Nathan House, focuses on practical techniques for enhancing personal online security, privacy, and anonymity. The excerpts cover a wide range of topics, including operating system security, threat modeling, social engineering, encryption, and the use of virtual machines for isolation and compartmentalization. The course is intended for a broad audience, from technically minded individuals to security professionals and those operating in high-risk environments.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  
  

  ...more

  

  ---

• March 17, 2025The Clean Coder: A Code of Conduct for Professional Programmers

  This Book is an excerpt from Robert C. Martin's "The Clean Coder," a book focused on professionalism in software development. It explores various aspects of a professional programmer's conduct, including responsible coding practices ("first, do no harm"), effective time management, collaboration techniques, and proper estimation methods. The excerpt also features anecdotes illustrating the consequences of unprofessional behavior and the benefits of adopting a professional mindset. Ultimately, the book emphasizes the importance of continuous learning, self-improvement, and ethical considerations in the software development field.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/-/en/Clean-Coder-Conduct-Professional-Programmers/dp/0137081073?&linkCode=ll1&tag=cvthunderx-20&linkId=6c9827a4b15a871072b316e8f198c5b6&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• March 17, 2025CERT Oracle Secure Coding Standard for Java, The (SEI Series in Software Engineering)

  The provided Book is an excerpt from The CERT Oracle Secure Coding Standard for Java, a guide to secure coding practices in Java. It details numerous rules categorized by topic (e.g., input validation, object orientation, concurrency, I/O), each with explanations, compliant and noncompliant examples, and risk assessments. The book aims to improve software security by eliminating vulnerabilities stemming from insecure coding practices. It emphasizes using established best practices and provides a framework for evaluating code quality. The authors are computer security specialists from the CERT program at the Software Engineering Institute.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Oracle-Secure-Standard-Software-Engineering/dp/0321803957?&linkCode=ll1&tag=cvthunderx-20&linkId=93da31841d61dc4d65f22fefdaade935&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• March 16, 2025The Security Culture Playbook: An Executive Guide To Reducing Risk and Developing Your Human Defense Layer

  "The Security Culture Playbook" is a guide to understanding and improving organizational security culture. The book emphasizes that security culture is measurable and manageable, not just a buzzword, and offers a framework (measure, involve, engage) for building a stronger security posture. It examines the interplay between technology and human behavior, highlighting the critical role of human factors in cybersecurity breaches. The authors also present the Security Culture Maturity Model (SCMM) as a tool for assessing and benchmarking an organization's security culture, incorporating interviews with experts in the field to provide diverse perspectives. Finally, the book provides practical advice on gaining executive support and implementing effective security culture programs.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Culture-Playbook-Executive-Developing/dp/1119875234?&linkCode=ll1&tag=cvthunderx-20&linkId=118ff5b04bd3fc226a6cb6708592f685&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• March 16, 2025The IDA Pro Book, 2nd Edition

  This Book is an excerpt from the second edition of "The IDA Pro Book," a guide to using IDA Pro, a popular disassembler. The book covers various aspects of reverse engineering, including navigating and modifying disassembly, identifying library routines, using code graphing, and extending IDA's functionality. It also explores vulnerability analysis, debugging techniques, and using IDA's scripting capabilities (IDC and IDAPython). Furthermore, the book explains how to create custom loaders and processor modules using the IDA SDK. Finally, it discusses advanced topics like analyzing obfuscated code and utilizing IDA's debugging features for remote debugging.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/IDA-Pro-Book-2nd-ebook/dp/B005EI84TM?&linkCode=ll1&tag=cvthunderx-20&linkId=16cc9bb8290f0d340c3398d8a7e215c2&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• March 15, 2025The Definitive Guide to Security in Jakarta EE: Securing Java-based Enterprise Applications with Jakarta Security, Authorization

  This Book is a technical guide to Jakarta EE security, covering its history, architecture, and implementation details. It details Jakarta Authentication, Authorization, and Security APIs, explaining their functionalities and interactions. The guide also explores practical examples and comparisons with other frameworks like Spring Security and Apache Shiro. Furthermore, it examines Java SE security underpinnings such as JAAS, JCE providers, and TLS. Finally, the text provides an overview of identity management solutions, including Keycloak and Shibboleth, and their integration with Jakarta EE.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Definitive-Guide-Security-Jakarta-Authentication-ebook/dp/B09XWVMXDY?&linkCode=ll1&tag=cvthunderx-20&linkId=d400d64f9d46cf7b0a0dcae852014fd0&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• March 15, 2025The UNIX-HATERS Handbook: Two of the most famous products of Berkeley are LSD and Unix. I don’t think that is a coincidence

  "The Unix-Haters Handbook" compiles six years of messages from the UNIX-HATERS mailing list, expressing widespread frustration with the Unix operating system. The book covers various aspects of Unix, including its user interface, programming complexities, system administration challenges, and security flaws. It uses a sarcastic and critical tone, highlighting the system's inconsistencies, cryptic commands, and lack of user-friendliness. Contributors include experts and users alike, sharing anecdotes and technical analyses. The book ultimately argues that Unix's success stems from its early adoption and widespread distribution, not its inherent superiority.
  
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/UNIX-HATERS-Handbook-products-Berkeley-coincidence/dp/B0B1B7JQ2K?&linkCode=ll1&tag=cvthunderx-20&linkId=7b054b5ff1443b3c2d90fe8f05f64408&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---