Member-only story
Over the years, I’ve been asked what books and/or websites I’d recommend to those getting into the field of cyber security, focusing on malware analysis and incident response. While it’s hard to beat “on the job experience”, other materials such as hands-on labs, capture the flag events, books and other free online resources are a great start. Of course, reading a book is only good if you enjoy the topic ;).
I’ve broken down the topics below based on category. I highly recommend working through the labs and rereading any chapters that need additional clarification.
Incident Response:
- Incident Response & Computer Forensics, Third Edition
- Windows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Registry
- The Art of Memory Forensics: Detecting Malware and Threats in Windows, Linux, and Mac Memory
- Red Team Field Manual
If your goal is to work in the IR field (or maybe you already are), the first book is a must read. Not only does it cover some of the key forensic artifacts, it does a great job covering incident response methodologies. I’ve had to revisit this book several times due to its context. While this book does get into some cross platform topics, I recommend reading the books under the “specialized” category below to gain…
