#1 on my list 'The Art of Software Security Assessment', a sample chapter [1]. The Addison-Wesley Software Security Series by Greg Hoglund follows.
[1] <http://www.awprofessional.com/content/images/0321444426/samplechapter/Dowd_ch06.pdf> Ed <Yey! for books> <http://blog.eonsec.com/> On Tue, Feb 26, 2008 at 8:12 PM, Drexx Laggui [personal] <[EMAIL PROTECTED]> wrote: > 26Feb2008 (UTC +8) > > > Hello thought leaders, > > > I need to update myself. Anybody here that can recommend a good book > on auditing or testing complex software applications? Doesn't have to > be C/C++ centric, but it'll help. > > Is this a good one? Nowadays I just have to ask because O'Reilly books > haven't been consistent on quality. > http://www.oreilly.com/catalog/securecdng/toc.html > http://www.oreilly.com/catalog/secureprgckbk/toc.html > > > > Drexx Laggui -- CISA, CISSP, CFE Associate, ISO27001 LA, CCSI, CSA > http://www.laggui.com ( Singapore / Manila / California ) > Computer forensics; Penetration testing; QMS & ISMS developers; K-Transfer > PGP fingerprint = 6E62 A089 E3EA 1B93 BFB4 8363 FFEC 3976 FF31 8A4E > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > [email protected] (#PLUG @ irc.free.net.ph) > Read the Guidelines: http://linux.org.ph/lists > Searchable Archives: http://archives.free.net.ph > _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
