Top Hacking Books for 2024 (plus Resources): FREE and Paid
Get Proton Mail for FREE: https://davidbombal.wiki/protonmail2
Big thanks to Proton for Sponsoring the video!
This is an amazing collection of books and resources – both free and paid. Big thanks to Jason Haddix for sharing his knowledge to help us learn in 2024!
// Books and Resources //
Web application hacker’s handbook: https://amzn.to/48sUNYb
Web security academy, Port Swigger: https://portswigger.net/web-security
OWASP Web Security Testing Guide: https://owasp.org/www-project-web-security-testing-guide/
Web Security Testing Guide Ellie Saad and Rick Mitchell v4.2: https://owasp.org/www-project-web-security-testing-guide/v42/
Real world bug hunting: https://amzn.to/3TK1mSd
Bug Bounty Bootcamp: https://amzn.to/41DW38B
Red Team Field Manual: https://amzn.to/48ul0pl
Red Team Development and Operations: A practical guide: https://amzn.to/3vez1Jl
Operator Handbook: Red Team + OSINT + Blue Team Reference: https://amzn.to/3vemAgC
Tribe of Hackers Red Team: https://amzn.to/47ef8zv
The Pentester Blueprint: https://amzn.to/3tvA8E6
OSINT Techniques: Resources for uncovering online information: https://amzn.to/3S6xw9j
Evading EDR: https://amzn.to/3toESeL
Attacking Network Protocols: https://amzn.to/3TEFvv7
Black Hat GraphQL: https://amzn.to/47gHl8C
Hacking API’s: https://amzn.to/3TzS0Z5
APISEC University: https://www.apisecuniversity.com/
Black Hat Go: https://amzn.to/3RXV13W
Black Hat Python: https://amzn.to/3NHFnHo
Black Hat Bash: https://nostarch.com/black-hat-bash
Zseano’s methodology: https://www.bugbountyhunter.com/methodology/zseanos-methodology.pdf
Breaking into information security: https://amzn.to/3TI4n5h
Expanding your security horizons: https://amzn.to/3GU07Iq
Wiki Book Pentest living document: https://github.com/nixawk/pentest-wiki/blob/master/Books/README.md
HackTRICKS: https://book.hacktricks.xyz/welcome/readme
Fuzzing lists: https://github.com/secfigo/Awesome-Fuzzing
Sec Lists: https://github.com/danielmiessler/SecLists
Payloads all the things: https://github.com/swisskyrepo/PayloadsAllTheThings
Pentester Lab: https://pentesterlab.com/
Try Hack Me: Red Team Fundamentals: https://tryhackme.com/module/red-team-fundamentals
HTB Academy: https://academy.hackthebox.com/
Hacktivity: https://hackerone.com/hacktivity/overview
Vulnerable U: https://vulnu.mattjay.com/
Grzegorz Niedziela: https://members.bugbountyexplained.com/premium/
Or https://www.youtube.com/c/BugBountyReportsExplained
Sharing what matters in security: https://securib.ee/newsletter/
Intigriti: https://www.intigriti.com/
tl;dr sec: https://tldrsec.com/
Unsupervised learning: https://danielmiessler.com/subscribe
Pentest Book: https://pentestbook.six2dez.com/
Bugcrowd: https://bugcrowd.com/crowdstream
Trickest: https://trickest.com/
// Jason Haddix SOCIAL //
Youtube: https://www.youtube.com/c/jhaddix
LinkedIn: https://www.linkedin.com/in/jhaddix
Twitter: https://twitter.com/Jhaddix
Github: https://github.com/jhaddix
Boddobot: https://buddobot.com/
The Bug Hunters Methodology Live: https://tbhmlive.com/56
// David’s SOCIAL //
Discord: https://discord.com/invite/usKSyzb
X / Twitter: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/@davidbombal
// MY STUFF //
https://www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
// MENU //
00:00 – Introduction
04:11 – The Web Application Hacker’s Handbook
07:16 – PortSwigger Web Security Academy
08:57 – OWASP Testing Guide
12:18 – Real-World Bug Hunting
13:35 – Bug Bounty Bootcamp
14:25 – Red Team Field Manual
16:09 – Red Team Development and Operations
17:24 – Operator Handbook
18:15 – Tribe of Hackers: Red Team
19:14 – The Pentester Blueprint
20:10 – OSINT Techniques
21:32 – Evading EDR
22:28 – Black Hat GraphQL
24:00 – Hacking APIs
26:17 – Black Hat Go
26:39 – Black Hat Python
27:41 – Black Hat Bash
29:04 – zseano’s methodology
30:59 – Breaking Into Information Security
32:22 – Jason’s Pentester Story
34:32 – Pentest Book
35:36 – HackTricks
36:48 – SecLists
37:23 – SecLists Origin Story
40:27 – Payload All The Things
41:43 – Unsupervised Learning
42:27 – tl;dr sec
43:21 – Bug Bytes Newsletter
44:10 – InsiderPhD
44:21 – High Five Newsletter
44:37 – Grzegorz Niedziela
45:26 – Vulnerable U
47:24 – Hacktivity
50:23 – HTB Academy & Try Hack Me
51:44 – PentesterLab
52:30 – The Bug Hunters Methodology Live
56:01 – Where to Start
58:11 – Attacking Network Protocols
hacking books
hack
python
linux
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
#hacking #hack #cybersecurity
by David Bombal
linux foundation
Get Proton Mail for FREE: https://davidbombal.wiki/protonmail2
Big thanks to Proton for Sponsoring the video!
This is an amazing collection of books and resources – both free and paid. Big thanks to Jason Haddix for sharing his knowledge to help us learn in 2024!
// Books and Resources //
Web application hacker's handbook: https://amzn.to/48sUNYb
Web security academy, Port Swigger: https://portswigger.net/web-security
OWASP Web Security Testing Guide: https://owasp.org/www-project-web-security-testing-guide/
Web Security Testing Guide Ellie Saad and Rick Mitchell v4.2: https://owasp.org/www-project-web-security-testing-guide/v42/
Real world bug hunting: https://amzn.to/3TK1mSd
Bug Bounty Bootcamp: https://amzn.to/41DW38B
Red Team Field Manual: https://amzn.to/48ul0pl
Red Team Development and Operations: A practical guide: https://amzn.to/3vez1Jl
Operator Handbook: Red Team + OSINT + Blue Team Reference: https://amzn.to/3vemAgC
Tribe of Hackers Red Team: https://amzn.to/47ef8zv
The Pentester Blueprint: https://amzn.to/3tvA8E6
OSINT Techniques: Resources for uncovering online information: https://amzn.to/3S6xw9j
Evading EDR: https://amzn.to/3toESeL
Attacking Network Protocols: https://amzn.to/3TEFvv7
Black Hat GraphQL: https://amzn.to/47gHl8C
Hacking API’s: https://amzn.to/3TzS0Z5
APISEC University: https://www.apisecuniversity.com/
Black Hat Go: https://amzn.to/3RXV13W
Black Hat Python: https://amzn.to/3NHFnHo
Black Hat Bash: https://nostarch.com/black-hat-bash
Zseano’s methodology: https://www.bugbountyhunter.com/methodology/zseanos-methodology.pdf
Breaking into information security: https://amzn.to/3TI4n5h
Expanding your security horizons: https://amzn.to/3GU07Iq
Wiki Book Pentest living document: https://github.com/nixawk/pentest-wiki/blob/master/Books/README.md
HackTRICKS: https://book.hacktricks.xyz/welcome/readme
Fuzzing lists: https://github.com/secfigo/Awesome-Fuzzing
Sec Lists: https://github.com/danielmiessler/SecLists
Payloads all the things: https://github.com/swisskyrepo/PayloadsAllTheThings
Pentester Lab: https://pentesterlab.com/
Try Hack Me: Red Team Fundamentals: https://tryhackme.com/module/red-team-fundamentals
HTB Academy: https://academy.hackthebox.com/
Hacktivity: https://hackerone.com/hacktivity/overview
Vulnerable U: https://vulnu.mattjay.com/
Grzegorz Niedziela: https://members.bugbountyexplained.com/premium/
Or https://www.youtube.com/c/BugBountyReportsExplained
Sharing what matters in security: https://securib.ee/newsletter/
Intigriti: https://www.intigriti.com/
tl;dr sec: https://tldrsec.com/
Unsupervised learning: https://danielmiessler.com/subscribe
Pentest Book: https://pentestbook.six2dez.com/
Bugcrowd: https://bugcrowd.com/crowdstream
Trickest: https://trickest.com/
// Jason Haddix SOCIAL //
Youtube: https://www.youtube.com/c/jhaddix
LinkedIn: https://www.linkedin.com/in/jhaddix
Twitter: https://twitter.com/Jhaddix
Github: https://github.com/jhaddix
Boddobot: https://buddobot.com/
The Bug Hunters Methodology Live: https://tbhmlive.com/56
// David's SOCIAL //
Discord: https://discord.com/invite/usKSyzb
X / Twitter: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/@davidbombal
// MY STUFF //
https://www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
// MENU //
00:00 – Introduction
04:11 – The Web Application Hacker's Handbook
07:16 – PortSwigger Web Security Academy
08:57 – OWASP Testing Guide
12:18 – Real-World Bug Hunting
13:35 – Bug Bounty Bootcamp
14:25 – Red Team Field Manual
16:09 – Red Team Development and Operations
17:24 – Operator Handbook
18:15 – Tribe of Hackers: Red Team
19:14 – The Pentester Blueprint
20:10 – OSINT Techniques
21:32 – Evading EDR
22:28 – Black Hat GraphQL
24:00 – Hacking APIs
26:17 – Black Hat Go
26:39 – Black Hat Python
27:41 – Black Hat Bash
29:04 – zseano's methodology
30:59 – Breaking Into Information Security
32:22 – Jason's Pentester Story
34:32 – Pentest Book
35:36 – HackTricks
36:48 – SecLists
37:23 – SecLists Origin Story
40:27 – Payload All The Things
41:43 – Unsupervised Learning
42:27 – tl;dr sec
43:21 – Bug Bytes Newsletter
44:10 – InsiderPhD
44:21 – High Five Newsletter
44:37 – Grzegorz Niedziela
45:26 – Vulnerable U
47:24 – Hacktivity
50:23 – HTB Academy & Try Hack Me
51:44 – PentesterLab
52:30 – The Bug Hunters Methodology Live
56:01 – Where to Start
58:11 – Attacking Network Protocols
hacking books
hack
hacker
hacking
python
python hacking
black hat python
gray hat hacking
linux
linux for hackers
bug bounty
nsa
nsa hacker
nsa hacking
ethical hacking
ceh
oscp
ine
try hack me
hack the box
hacking
ethical hacker
oscp certification
ctf for beginners
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
Thank you, David and Jason!
Protip: Put jhaddix on the thumbnail for more views
thanks david for sharing to us useful content will you please recommend me the best place to learn python programming with realword projects for free for me i dont like books i like tutorials
💞💞💞💞💞💞💞💞💞💞🍀🍀🍀🍀☘️
hey david can you make a video on ccna 2024
Hii
I would recommend "Bob and Alice Learn Application Security" too.
Thank you both for this wonderful information, I really enjoyed this
Hey David,I was just wondering if you would be able to bring us Chris Hadnagy on the show ,I would simply LOVE to see you colab with him and talk about social engineering a little bit ,I always feel like it's always talked about least and yet I personally feel like SE is the most important thing in Red teaming/pentesting,I'd love to see you interview him and share some insight on SE in the future !
As always great content ,I just can't miss a video ,thank you !
Thanks.just downloaded web application hand book .will go through it .
This is a goldmine, thanks a lot, David!
I love the ground up approach you're taking for 2024 considering the constantly changing climate of this field. Appreciate all your efforts. p.s. Glad to see those suppressed networker yawns at a hacker making the edit 😀
Hey should i give a shot on ccna exam in 2024 or should i wait until the new version comes out
Great!
I really appreciate what you do 😊. If I may ask 🙏. Can you please do some videos for digital forensics 🙂😊 please 🥺
hello sir, i want to make a career in clod computing specifically as solutions architect role do i need to have a networking knowledge to become solutions architect associate if yes the which networking certification should i go for and on which topics i should focus more??
Courses about cryptography
thanks for sharing the resource
Hello david sir.
once again thank you ❤
Have a great year ahead sir 👏🏾🎊 got so much information
Jason's mind is a treasure trove!
TO learn CS or hacking do i have to understand API ,stuff which is taught in Computer science
Proton was awesome, now when setting up an account it wants to link everything to Google 😂
I am the best hacker in the world, even the guy who hacked my computer told me so. Jk I have a hard enough time tieing my shoes without getting my thumbs knotted up in them random question maybe hopefully someone can help. How exactly do you clean a printer head without that syringe looking deal. Been out of use for 6 years, got new cartridges but test print is completely blank. Any ideas Thanks for the time
❤❤❤❤❤
Undoubtedly one of the finest interviews and resources, well done as always!
0:33 so sorry to occupy the web but this man is by far my favorite guest of David's! Just listen to this man talk, he actually goes so far in depth in subjects I've been searching for over a decade for and tells me precisely what I need to find them what I need to succeed them when I need to become a civil engineer and my worth work ethic literally knows no bounds when it comes anything I want to learn and become an absolute savant so I have no problem
I just like to say thank you so much for both of you gentlemen sharing your knowledge
I would love to learn how to do this from you
❤