Reading List

I'm just starting the SANS 508 class in the @Home format. That will prevent me from doing as much reading as I would like. And, in the class, we'll be reading File System Forensics (which I can't wait to delve into.)

After that, my list looks like:
Perl Scripting for Windows Security by Harlan Carvey
Windows Forensics Analysis (2nd Edition) by Harlan Carvey
SQL Server Forensic Analysis by Kevvie Fowler
Windows Internals: Including Windows Server 2008 and Windows Vista, Fifth Edition by Mark Russinovich and David A. Solomon
SQL Injection Attacks and Defense by Justin Clarke
The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws by Dafydd Stuttard and Marcus Pinto
The Seven Deadliest Web Application Attacks by Mike Shema
Hacking Exposed Web Applications (2nd Edition) by Joel Scambray, Mike Shema, and Caleb Sima



edit 7-13-09 to add SQL Server Forensic Analysis
edit 9-1-09 to add Windows Internals
edit 12-5-09 to add SQL Inject Attacks and Defense
edit 1-7-2010 to add The Web Application Hacker's Handbook
edit 3-3-2010 to add the Seven Deadliest Web Application Attacks
edit 3-27-2010 to add Hacking Exposed Web Applications