Cyber Shelf

// Prerequisites

What to read before The Ghidra Book

If The Ghidra Book feels too steep at intermediate level, here is what to read first. Lighter books in the same topics that build the prerequisites this one assumes.

Reverse EngineeringToolingBinary Analysis

  1. 01 · 2011

    The IDA Pro Book

    Chris Eagle's deep manual on IDA Pro, the disassembler that defined a generation of reverse engineering. Useful even with Ghidra in the picture, since most malware-analysis literature still assumes IDA.

    Intermediate
    4/5Chris Eagle

  2. 02 · 2018

    Practical Binary Analysis

    Dennis Andriesse on the binary toolchain you can actually script: ELF internals, dynamic taint analysis, symbolic execution and instrumentation with concrete code-along examples.

    Advanced
    5/5Dennis Andriesse

  3. 03 · 2009

    Nmap Network Scanning

    Written by Nmap's own author, this is both a gentle introduction to port scanning and the definitive reference for every flag, timing knob, and NSE script the tool ships with.

    Beginner
    4/5Gordon Fyodor Lyon

  4. 04 · 2014

    Penetration Testing

    Georgia Weidman's lab-driven introduction to pentesting, walking the reader from setting up a target environment through scanning, exploitation, post-exploitation, and reporting.

    Beginner
    4/5Georgia Weidman

  5. 05 · 2005

    Reversing

    The book that taught a generation how software actually looks once you strip away the source. Still the clearest on-ramp to thinking in assembly, even with dated tools.

    Intermediate
    4/5Eldad Eilam

  6. 06 · 2012

    Practical Malware Analysis

    Still the gold standard textbook for static and dynamic malware analysis on Windows.

    Intermediate
    5/5Michael Sikorski, Andrew Honig

  7. 07 · 2024

    Black Hat Bash

    Nick Aleks and Dolev Farhi on getting offensive work done with the shell: privilege escalation tooling, lateral movement, and pipelining bash with the rest of the toolkit.

    Intermediate
    4/5Nick Aleks, Dolev Farhi

  8. 08 · 2020

    Black Hat Go

    Tom Steele, Chris Patten, and Dan Kottmann show how to use Go's networking primitives, concurrency model, and cross-compilation to write offensive tooling that runs almost anywhere.

    Intermediate
    4/5Tom Steele, Chris Patten, Dan Kottmann
Back to The Ghidra BookWhat to read after The Ghidra Book