Books

Web and browser

• Web Hacking 101 by Peter Yaworski.

• Breaking into Information Security: Learning the Ropes 101 by Andy Gill.

• The Web Application Hacker’s Handbook: Finding and Exploiting Security Flaws by Dafydd Stuttard and Marcus Pinto.

• Tangled Web by Michal Zalewski.

• OWASP Testing Guide v4 by OWASP Breakers community.

Mobile

• The Mobile Application Hacker's Handbook by Dominic Chell et al.

• iOS Application Security: The Definitive Guide for Hackers and Developers by David Thiel.

Cryptography

• Crypto 101 by Laurens Van Houtven.

Penetration Testing

• The Art of Exploitation by Jon Erickson, 2008

• Metasploit: The Penetration Tester's Guide by David Kennedy et al., 2011

• Penetration Testing: A Hands-On Introduction to Hacking by Georgia Weidman, 2014

• Rtfm: Red Team Field Manual by Ben Clark, 2014

• The Hacker Playbook by Peter Kim, 2014

• The Basics of Hacking and Penetration Testing by Patrick Engebretson, 2013

• Professional Penetration Testing by Thomas Wilhelm, 2013

• Advanced Penetration Testing for Highly-Secured Environments by Lee Allen, 2012

• Violent Python by TJ O'Connor, 2012

• Fuzzing: Brute Force Vulnerability Discovery by Michael Sutton et al., 2007

• Black Hat Python: Python Programming for Hackers and Pentesters by Justin Seitz, 2014

• Penetration Testing: Procedures & Methodologies by EC-Council, 2010

• Unauthorised Access: Physical Penetration Testing For IT Security Teams by Wil Allsopp, 2010

• Advanced Persistent Threat Hacking: The Art and Science of Hacking Any Organization by Tyler Wrightson, 2014

• Bug Hunter's Diary by Tobias Klein, 2011

• Advanced Penetration Testing by Wil Allsopp, 2017