Feisty Duck - Fine Computer Security and Open Source Books and Training Courses

Learn how to secure your business from attacks with our practical security courses, taught by top experts in their fields.

The Best TLS Training
in the World (Remote)

Designed by Ivan Ristić, the author of the much acclaimed Bulletproof SSL and TLS, the
SSL Labs server test, and—most recently—Hardenize monitoring tools, this practical two-day training course will teach you how to deploy secure servers and encrypted web applications and understand both the theory and practice of Internet PKI.
Next training: Remote, 15-18 June
MORE »

ModSecurity / OWASP
Core Rule Set

This two-day course by Christian Folini, coauthor of our ModSecurity Handbook 2nd Ed, will help you set up an Apache webserver and install ModSecurity together with a tight ruleset. We will configure the server and talk about every single detail of the configuration to give you an expert understanding of how your server works and behaves.
Next training: Dates coming soon
MORE »

Bulletproof TLS Newsletter

Bulletproof TLS Newsletter is a free notification service that brings you fresh SSL/TLS and Internet PKI news. This newsletter came out of need to send regular and sometimes urgent notifications to the readers of our books interested in encryption. We aim to send newsletters infrequently, at most once a month. MORE »

SSL/TLS and PKI History

A comprehensive history of the most important events that shaped the SSL/TLS and PKI ecosystem, based on our book Bulletproof SSL and TLS. MORE »

Our Books

ModSecurity Handbook (2nd Edition) 2017

The definitive guide to the popular open source web application firewall, written by Christian Folini and Ivan Ristić, the principal author of ModSecurity. This book contains everything you need to successfully deploy and maintain a ModSecurity installation, in one place.

Bulletproof SSL and TLS 2017

The complete guide to deploying secure servers and web applications.This book, which provides comprehensive coverage of the ever-changing field of SSL/TLS and Web PKI, is intended for IT security professionals, system administrators, and developers, with the main focus on getting things done.

Apache Security 2005 FREE

This all-purpose guide for locking down Apache arms readers with all the information they need to securely deploy applications. Administrators and programmers alike will benefit from a concise introduction to the theory of securing Apache, plus a wealth of practical advice and real-life examples.

OpenSSL Cookbook 2015 FREE

This free book provides complete coverage of OpenSSL installation, configuration, and key and certificate management. The appendix includes SSL/TLS Deployment Best Practices, a concise guide to designing and deploying secure web sites and applications.

Digital Books from Other Publishers

In addition to publishing our own books, we provide digital distribution services to other publishers. The following books are currently distributed by us:

News

Remote TLS Training, for public and for in-house teams

24 Mar 2020

Our TLS training will be delivered remotely in 2020, to support customers in protecting their systems from attacks even in the middle of a crisis. We will organise public trainings in various timezones, and we are available to train entire in-house teams. Training over four half-days, 3.5 hours a day. Follow our Bulletproof TLS Newsletter or @feistyduck for up to date information. MORE »

TLS Training London on 23-24 April has been cancelled

11 Mar 2020

Our public classroom training in London planned for 23-24 April has been cancelled due to uncertainties around the coronavirus. All delegates have been offered alternatives and an extra remote training will be organised in June 2020. Follow our Bulletproof TLS Newsletter or @feistyduck for up to date information. MORE »

SSL/TLS and PKI training now available remotely

31 Jan 2019

The Best TLS Training in the World is now available as a remote option for in-house teams. Public trainings coming soon! MORE »

Bulletproof SSL and TLS, 2017 Revision

12 July 2017

Bulletproof SSL and TLS is once again fully up to date! All updates are included with your original purchase. Read about it on Ivan's blog, get the latest version and see exactly what's changed. MORE »

ModSecurity Handbook, Second Edition
Out Now

29 June 2017

ModSecurity Handbook, Second Edition is now complete, and the paperback will be available on 15th July! Preorder now on Amazon, or order the digital book from Feisty Duck. MORE »

Programming in Lua 4ed Now Available

26 April 2017

We are very happy to announce that the fourth edition of the excellent Programming in Lua is now available as an ebook. MORE »

The Best TLS Trainingin the World (Remote)