If you want to hack web apps, this is your bible. It is dense, technical, and brutally honest about how broken modern web architecture is. This book teaches you how to spot SQL injection, XSS, and CSRF flaws by understanding the logic of the developer—and then twisting it.
For those who want to get their hands dirty with code and network protocols, these books are the definitive starting point: hacking books
: Now in its third edition, this book is an expert-led guide covering everything from software exploitation to SCADA attacks. It is often considered a must-have for both new and continuing security experts. If you want to hack web apps, this is your bible