//Topic
Best Malware books
11 books in our catalog cover Malware, ranked by rating. Each entry is an opinionated review with who the book is for and who should skip it.
// Reading guide
Read the full editorial pick: the best Malware books in 2026, ranked and reviewed.→
01 · 2014
Countdown to Zero Day
Stuxnet and the Launch of the World's First Digital Weapon
Kim Zetter's investigative reconstruction of Stuxnet, the joint US/Israeli operation that physically damaged Iranian uranium-enrichment centrifuges via a worm, and what its discovery revealed about state-level cyber capability.
Beginner5/5Kim Zetter02 · 2014
The Art of Memory Forensics
Detecting Malware and Threats in Windows, Linux, and Mac Memory
Ligh, Case, Levy, and Walters' canonical reference on memory analysis with Volatility — the technique, the tooling, and the operating-system internals it depends on, across Windows, Linux, and macOS.
Advanced5/5Michael Hale Ligh, Andrew Case, Jamie Levy, AAron Walters03 · 2012
Practical Malware Analysis
The Hands-On Guide to Dissecting Malicious Software
Still the gold standard textbook for static and dynamic malware analysis on Windows.
Intermediate5/5Michael Sikorski, Andrew Honig04 · 2024
Evading EDR
The Definitive Guide to Defeating Endpoint Detection Systems
A component-by-component teardown of how modern EDR sensors actually collect telemetry, and where each data source can be starved, blinded, or bypassed.
Advanced4/5Matt Hand05 · 2024
Evasive Malware
A Field Guide to Detecting, Analyzing, and Defeating Advanced Threats
Kyle Cucci on the anti-analysis arms race: sandbox detection, anti-debug, anti-VM, packing, and the analyst-side tooling and tradecraft that get past those layers.
Advanced4/5Kyle Cucci06 · 2022
The Art of Mac Malware, Volume 1
The Guide to Analyzing Malicious Software
Patrick Wardle's deep dive on macOS malware analysis: persistence patterns, injection techniques, anti-analysis tricks, and the macOS-specific tooling needed to triage real samples.
Advanced4/5Patrick Wardle07 · 2022
The Ransomware Hunting Team
A Band of Misfits' Improbable Crusade to Save the World from Cybercrime
Investigative journalism on the volunteers who quietly cracked ransomware to free victims for free, while the FBI mostly watched. A people-first look at the early ransomware economy.
Beginner4/5Renee Dudley, Daniel Golden08 · 2019
Rootkits and Bootkits
Reversing Modern Malware and Next Generation Threats
Matrosov, Rodionov and Bratus on persistent, deeply-embedded malware: kernel rootkits, MBR/UEFI bootkits, and the forensic techniques that surface them. Strongly Windows-internals oriented.
Advanced4/5Alex Matrosov, Eugene Rodionov, Sergey Bratus09 · 2018
Malware Data Science
Attack Detection and Attribution
Saxe and Sanders apply machine-learning techniques (classification, clustering, deep learning) to malware detection and attribution, with working Python code and real corpora.
Intermediate4/5Joshua Saxe, Hillary Sanders10 · 2014
Practical Reverse Engineering
x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation
A working reverser's textbook from three Microsoft / Quarkslab veterans, covering the architectures and toolchain you'll actually meet on real targets, including the Windows kernel and modern obfuscation patterns.
Advanced4/5Bruce Dang, Alexandre Gazet, Elias Bachaalany11 · 2009
Les virus informatiques
Théorie, pratique et applications
The reference French academic treatment of computer virology — the theory, algorithms and practice of viruses and malicious code — by Éric Filiol, a former military cryptanalyst and one of France's leading virologists.
Advanced4/5Éric Filiol