4 minutes
Theory in Hacking
This article is also about learning “hacking”, but in a controversial way, using BOOKS! Yes fellow uncultured manatees, books are still a thing!
I used to read a lot of books. Not necessarily IT or Computer science related books, but before the internet reached me, those were my only source of information (and my greatest hobby). I recently got in touch with a nice guy on twitter who said he was following this blog (honestly, thank you @5PMGHOST!). He was a newcomer making his entry in the cybersecurity world and wanted some tips, and mostly books recommendations. At this very moment I realized…damn it’s been a while I read a book about cybersecurity.
As I said in my previous posts, my learning methodology in this field is mostly reading a bit of theory online (let’s say 30%), mostly playing CTFs and googling my way out of things (a solid 70%), because I tend to believe that in cybersec practice over theory is better…BUT do not get me wrong! Theory is indeed VITAL!
How would you know how to practice if you didn’t read about the subject anyway? The thing is that with the way internet made quick information easily available, my attention span got so bad I could not sit through a whole book again (I might just be that lazy though). Also I personally don’t really like the video format for learning (personally!)
I want my information concise and precise, which is how a quick google search usually delivers it. But I do believe books give a deeper understanding of any subject, so let’s talk about some books in cybersecurity
Becoming a master hacker - OccupyTheWeb
This one seems to be a top renown hacking book for beginners. It’s from OccupyTheWeb (big names in the industry) and available on his website hacker-arise. I didn’t read this one (It’s 20 bucks…I won’t elaborate further) but this was recommended to me by my twitter friend so I might give it a shot very soon! From what I got from my basic google searches the book is really intended to teach beginners about general aspects of “hacking” with tutorials of the most common techniques.
Linux basics for hackers - OccupyTheWeb
From the same author as the previous one, a great introduction to Linux for beginners. It teaches you everything you need to know to get confortable with the most incontournable OS for hackers. Covering everything from the importance of Linux and installation steps to bash scripting. I definitely recommend this one.
The hacker’s playbook - peter kim
This one is less famous but is one of my favorite one because it’s about a more “practical” approach of learning Pentesting. It’s actually a series of 3 books and the 3rd one is my favorite. There is a version for both red and blue teams. I would not say this one is for beginners as it requires some background knowledge, but it teaches you advanced techniques in the field, so you might grow faster. The author is a security researcher named peter kim.
Let’s say this was my top three recommended “hacking” books, but the title of this article is “theory in hacking”. As I said, I think it’s very controversial because no matter how many books you read, if you do not follow up, trying yourself, a.k.a PRACTICE, you might never get good at it.
I could also include some special mentions like “hacking the art of exploitation, by Jon Erickson”, “black hat python, by Justin Seitz” or “ghost in the wires, by Kevin Mitnick” (mostly for inspiration)…
But all those books are anyway easy to find online nowadays (just Google them dammit!)
You might find github repositories like this one with some collections
In my most honest opinion, hacking is more about getting around the intended way of things, and you might not develop that critical thinking just reading. But as you cannot just break down things without knowing how they work, books (or any learning material you prefer) for the theoretical part are still necessary.