Bug Bounty Bootcamp by Vickie Lee
The ultimate starting point for anyone looking to turn hacking into a paycheck. Vickie Li masterfully guides you from basic web security to advanced reporting techniques.
Real-World Bug Hunting by Peter Yaworski
A true modern classic. Peter Yaworski deconstructs real-world bug reports from giants like Twitter and Facebook. Learn how to chain vulnerabilities into devastating exploits.
Hacking APIs by Corey Ball
Corey Ball teaches you how to map, test, and exploit the hidden interfaces that power modern apps. Essential for finding high-paying bugs in enterprise environments.
Black Hat GraphQL by Nick Aleks, Dolev Farhi and Opheliar Chan
Master the security challenges of GraphQL. This book explores advanced attack vectors specific to modern data architectures. A high-demand niche for any researcher.