Resources

Online Reading

I like to use Inoreader to organise my online reading, sorting feeds into specific categories. Rules can be created to – for example – trigger a Microsoft Teams webhook when an article matching a specific criteria is added. One potential use case is creating a Teams channel for tracking vulnerabilities in products that you use.

• Defense News
• Infosec News
• Threat Intelligence
• Vulnerability Tracking

In addition to Inoreader, I also find the APT & CyberCriminal Campaign Collection GitHub repo to save a lot of time. Clone a local copy of it and keep it sync’d!

Twitter Lists

Ensure that you make these Private lists.

• Defense
• Threat Intelligence

Books

• Practical Malware Analysis by Michael Sikorski
• Malware Analyst’s Cookbook by Michael Ligh
• Practical Reverse Engineering by Bruce Dang
• Windows Internals (Part 1) by Mark Russinovich
• Windows Internals (Part 2) by Mark Russinovich
• The Art of Memory Forensics by Michael Ligh, Andrew Case, Jamie Levy and Aaron Walters
• Hacking: The Art of Exploitation by John Erickson
• Violent Python by TJ O’Connor
• The Practice of Network Security Monitoring: Understanding Incident Detection and Response by Richard Bejtlich
• Open Source Intelligence Techniques by Michael Bazzell
• A Burglar’s Guide to the City by Geoff Manaugh
• Terrorism and Counterintelligence: How Terrorist Groups Elude Detection by Blake Mobley
• Allen Dulles’s 73 Rules of Spycraft by James Srodes
• Tolkachev, A Worthy Successor to Penkovsky by Barry Royden
• Silent Warfare: Understanding the World of Intelligence by Abram Shulsky and Gary Schmitt
• Deciphering Sun Tzu: How to Read The Art of War by Derek Yuen
• Red Team: How to Succeed By Thinking Like the Enemy by Micah Zenko
• The Red Team Handbook by The University of Foreign Military and Cultural Studies
• Red Teams and Counterterrorism Training by Stephen Sloan
• Dirty Wars: The World Is a Battlefield by Jeremy Scahill
• Social Engineering: The Art of Human Hacking by Christopher Hadnagy
• The Art of Deception: Controlling the Human Element of Security by Kevin Mitnick
• Business Adventures by John Brooks
• Rich Dad Poor Dad by Robert Kiyosaki

Podcasts

• Red Team Podcast
• Adversarial Conversations
• Darknet Diaries
• Defensive Security Podcast
• Collective Intelligence
• Recorded Future
• State of the Hack
• The Privacy, Security, & OSINT Show
• Bellingcat Podcast
• Popular Front

Channels

• SANS Digital Forensics and Incident Response
• OALabs
• Virus Bulletin
• hasherezade
• IppSec
• MalwareTech
• Colin Hardy
• LiveOverflow
• MalwareAnalysisForHedgehogs
• Raphael Mudge
• Bosnianbill
• Lock Noob
• LockPickingLawyer
• Michael Maynard