Ubuntu Security Podcast EP 63 - Infosec reading list discussion

So in this week’s episode of the podcast, @joemcmanus and I discussed our recommended reading list for getting into or broadening your own knowledge and skills in infosec - which included the following titles:

  • Red Team Field Manual | Ben Clark
  • Head First Programming
  • Linux System Administrators Handbook | Nemeth, et al
  • Robert Seacord’s Secure Coding in C/C++
  • CERT Resilience Management Model (CERT-RMM)
  • The Code Book | Simon Singh
  • The Tao of Network Security Monitoring: Beyond Intrusion Detection | Richard Bejtlich
  • The Cuckoos Egg | Cliff Stoll
  • Linux Pro Magazine
  • Black Hat Python | Justin Seitz
  • Hacking: The Art Of Exploitation | Jon Erickson

We would be keen to hear what others think are great infosec references and what books or other resources you have found particularly useful in your infosec career!


Though it’s not quite the resource it used to be, 2600 magazine is still one of my favorite reads. Nothing scratches that nostalgic infosec itch like 2600 and some old DefCon reruns.


I still read 2600, it always has at least one article that grabs my attention!

1 Like

Ross Anderson’s Security Engineering - A guide to building dependable distributed systems is an excellent resource as well.

1 Like

Oh, one more book: Adam Shostack’s Threat Modeling is a good primer on that subject.

1 Like