Feisty Duck - Fine Computer Security and Open Source Books and Training Courses

Learn how to secure your business from attacks with our practical security courses, taught by top experts in their fields

The Best TLS Training
in the World

Designed by the author of the much acclaimed Bulletproof SSL and TLS, the
SSL Labs server test and most recently Hardenize monitoring tools, this practical two-day training course will teach you how to deploy secure servers and encrypted web applications and understand both the theory and practice of Internet PKI.
Next training: Remote, 16-19 March 2020 MORE »

ModSecurity
Masterclass

This two-day course designed by the co-author of our ModSecurity Handbook 2ED will help you set up an Apache webserver and install ModSecurity together with a tight ruleset. We will configure the server and talk about every single detail of the configuration to give you an expert understanding of how your server works and behaves.
Next training: Zurich, 26-27 March 2020
MORE »

Bulletproof TLS Newsletter

Bulletproof TLS Newsletter is a free notification service that brings you fresh SSL/TLS and Internet PKI news. This newsletter came out of need to send regular and sometimes urgent notifications to the readers of my books interested in encryption. I aim to send newsletters infrequently, at most once a month. MORE »

SSL/TLS and PKI History

A comprehensive history of the most important events that shaped the SSL/TLS and PKI ecosystem, based on our book Bulletproof SSL and TLS. MORE »

Our Books

ModSecurity Handbook (2nd Edition) 2017

The definitive guide to the popular open source web application firewall, written by Christian Folini and Ivan Ristić, the principal author of ModSecurity. This book contains everything you need to successfully deploy and maintain a ModSecurity installation, in one place.

Bulletproof SSL and TLS 2017

The complete guide to deploying secure servers and web applications.This book, which provides comprehensive coverage of the ever-changing field of SSL/TLS and Web PKI, is intended for IT security professionals, system administrators, and developers, with the main focus on getting things done.

Apache Security 2005 FREE

This all-purpose guide for locking down Apache arms readers with all the information they need to securely deploy applications. Administrators and programmers alike will benefit from a concise introduction to the theory of securing Apache, plus a wealth of practical advice and real-life examples.

OpenSSL Cookbook 2015 FREE

This free book provides complete coverage of OpenSSL installation, configuration, and key and certificate management. The appendix includes SSL/TLS Deployment Best Practices, a concise guide to designing and deploying secure web sites and applications.

Digital Books from Other Publishers

In addition to publishing our own books, we provide digital distribution services to other publishers. The following books are currently distributed by us:

News

SSL/TLS and PKI training now available remotely

31 Jan 2019

The Best TLS Training in the World is now available as a remote option for in-house teams. Public trainings coming soon! MORE »

Bulletproof SSL and TLS, 2017 Revision

12 July 2017

Bulletproof SSL and TLS is once again fully up to date! All updates are included with your original purchase. Read about it on Ivan's blog, get the latest version and see exactly what's changed. MORE »

ModSecurity Handbook, Second Edition
Out Now

29 June 2017

ModSecurity Handbook, Second Edition is now complete, and the paperback will be available on 15th July! Preorder now on Amazon, or order the digital book from Feisty Duck. MORE »

Programming in Lua 4ed Now Available

26 April 2017

We are very happy to announce that the fourth edition of the excellent Programming in Lua is now available as an ebook. MORE »

Working with Manicode Security

6 January 2017

We are thrilled to announce that we are starting 2017 with a collaboration with Jim Manico and Manicode Security. MORE »

The Best TLS Trainingin the World