The Best Pentesting & Hacking Books to Read

Thanks man for all the resources. New sub here. 👍

Please upload more often on content like these. It was very helpful and informative for me as an intermediate CySec guy.

The Hacker Playbook 2 discusses building the VM lab in the first chapter, but then it is very unclear later in the book about when you need to use the VM lab. It does not say "Okay in this chapter we are doing harmless stuff which you can do anywhere" or "Okay in this chapter we are going to set up three Windows VM's and then attack them from Kali."

Thanks for the information man this video is awesome...

Web application hackers handbook(2nd ed)
Black hat python
Hackers playbook 3
Guide to pen testing by Georgia wideman
These are some of be best and most recommended books.Completely practical.and highly recommended if u wanna be a good pen tester or OSCP.just my suggestion.These books are suggested by those who are successful in this field and by many of them.Good luck

so does the hacker playbook 3 not go over setting up labs ?

Quick question, have you read a book called "Black Hat Python", I read a comment regarding this book discrediting the sloppy written codes, and the problems behind the book itself not being a good learning source.
Id like your opinion on this or anyone who has read this book.
I'm almost opting on just buying the playbook set instead.

Demos please

Kevin Mitnick - just don't bother honestly. If you like stories sure... But it offers nothing for you as a pen tester, he's also considered a dick by most (charging $40,000 dollars for a bloody appearance at a conference to tell old stories in an effort to flog his books), if you want actual info useful for SE check out Chris Hadnagy.
Glass Houses - far too high brow for someone "breaking in" to the industry, but a good read for folk handling more interactions with C-levels, etc.
- That random self published on amazon hacking book can do one.
BTFM - yes! But not as you get started. It adds context and is a great resource for a red teamer (less so for a pen tester)
RTFM - good reference book to carry with you.
Hackers Handbook yellow title - no. Just no.
Hacking exposed - meh. I've an old copy collecting dust but it's not worth it.
Nmap book - a waste of cash, most of it is published at Fyodor's website, the rest is in man, what isn't is great if you want to develop for nmap, not necessary to pentest.
Wireshark 101 - waste of money. Not worth it.
Hackers playbook Vol 3 - yes worth buying
Hashcrack vol 2.0 - yes good. But only for password cracking. It's basically a reference book for hashcat and is already a few versions behind. Same category as RTFM/BTFM.
Hak5 books - COMPLETELY FUCKING POINTLESS. DO NOT BUY. They are literally just reprints of the websites in book form.
Having watched a few of his vids i've a feeling Mardee is treating this as a character he is playing and isn't actually a penetration tester, the spines and covers on those books for example are pristine, never used and his opinions make me question some of his choices.
In my opinion books worth looking at are:
- RTFM, BTFM, Hashcrack - I keep these in my bag, useful for quick lookups when you're on site and have no internet.
- Network Security Assessment Vol. 2 aka NSA it's a must have. Fuck the other tool specific nonsense off. This book is an excellent resource for pentesters.
- Web Application Hackers Handbook aka WAHH - If you do not know what burp is... You are not a penetration tester. Get it. It's the fucking Bible of web app security testing.
- SQL Injection Attacks & Defence - A very thorough deep dive on real world SQL injection attacks. A must for any web app tester and I'd say good background reading and reference material for an inf tester.
- Black Hat and Grey Hat Python - an excellent resource for what is effectively a Swiss army knife of a programming language. As a beginner probably less useful but as you start developing your skillset having a scripting language under your belt is a must.
If you're just dipping your toes into the field you could do worse than reading through the offensive security metasploit unleashed website - it's free and will get you up and running. Same goes for the recently released book on Kali.
If you're into social engineering I'd only really consider Chris Hadnagy as the author to look for, his books I reference in my reports to clients.
Oh and an honourable mention for PoC||GTFO. A tome of goodness and stories, akin to reading the archives of textfiles.com only actually modern and relevant today.
Those are my pentest picks but I've a shitton of books covering all sorts of technical subjects that have all proven useful at somepoint.
All on Kindle so they can come with me and be useful. Absolutely pointless having something sat on your shelf at home when you need it and you're not there and they are not cheap either so buying a kindle + hard copy is an expensive endeavour.
To that end I highly recommend looking out for the humble bundles of hacker books on humblebundle.com. They aren't always that great and there will be a lot of dross in the mix but I've usually been impressed by one or two of the higher pay bracket books.
If you've made it to the end of this post you must clearly want to know more about pentesting. Go check out channels like: liveoverflow, demmsec, ippsec all actual penetration testers here on UA-cam.

Cool just finished ghost in the wires...

Whenever I get kali Linux installed it not kali and it’s Debian.
Whhyyyyyyy

Thank you so much for the video.
Can you donate Kevin metnick books?
These do not get published here in india.

Can I read HackerPlaybook 2 without reading HackerPlaybook 1? Please answer..thanks:)

Is the Hacker Playbook 3 and BTFM worth it?

Is this video in order of getting started in hacking? Please tell me

Can you tell the price of books