I recently finished the third iteration of The Hacker Playbook by Peter Kim. Having read the second edition a little while ago I was slightly disappointed. I found it to be a little rushed and sloppy compared to the previous edition. It stayed true to the name of a tips and tools book (without too much depth, and with enough examples to get you started but not take you too much further than that), and I always appreciate plugs for the authors GitHub and the things he’s contributing to the community. I’d say it was still worth a skim, and didn’t repeat too much from the second edition, but it just felt a little unfinished to me.
There are a few things that I’ve added to my list to follow up and test out though, like the custom dropper and some of the newer tools and technologies, like injection into Node. And I did appreciate the focus on red teaming over penetration testing, since I definitely resonate more with the skill set of the former over the latter. But that said, I won’t be keeping it as handy as I have the last iteration, hopefully the fourth edition is a few years away.
My Portfolio 