Home   »  Cloud and Ashes Press

Cloud and Ashes Press

Cloud and Ashes Press is an independent publishing initiative by Robert Lewis Thornton, dedicated to producing clear, practical resources for software professionals, developers, and technical writers.

We focus on:

  • Trusted, high-quality content
  • Clean, searchable formatting
  • Portable, offline-friendly editions

Whether you’re at your desk or in the field, these resources are built to support your work — clearly, quietly, and without distraction.

Current Series

Selected OWASP Cheat Sheet Series (DRM-Free Kindle Editions)


Cloud and Ashes Press presents a three-volume curated, formatted Kindle series featuring the popular OWASP Cheat Sheets. Designed for clarity and offline access, each volume collects trusted AppSec guidance into a portable, readable format.

  • Volume 1: Security Basics helps users understand:
    • Attack Surface Analysis
    • Authorization
    • Cloud Architecture Security
    • Content Security
    • Database Security
    • Denial of Service
    • Drone Security
    • Error Handling
    • File Upload Security
    • Forgot Password Guidance
    • Input Validation
    • Logging and Monitoring
    • Mobile Application Security
    • Software Supply Chain
    • Threat Modeling
    • Transaction Authorization
    • Vulnerability Disclosure
    • Zero Trust Architecture
  • Volume 2: Web Security Basics is now online. It covers topics such as:
    • AJAX Security
    • Browser Extension Security Vulnerabilities
    • Clickjacking Defense
    • Cookie Theft Mitigation
    • Credential Stuffing Prevention
    • Cross Site Scripting Prevention
    • Cross Site Leaks Prevention
    • Cryptographic Storage
    • Deserialization
    • HTTP Security Response Headers
    • Injection Prevention
    • Key Management
    • Mass Assignment
    • Pinning
    • Query Parameterization
    • REST Security
    • SQL Injection Prevention
    • Third Party JavaScript Management
    • Transaction Authorization
    • Transport Layer Security
    • Unvalidated Redirects and Forwards
    • Virtual Patching
  • Volume 3 is forthcoming. Hopefully it will be available by mid-October.

Each volume is:

  • Published under the CC BY-SA 4.0 License
  • Carefully reformatted for readability and clarity
  • DRM-free for accessibility and ease of use
Buy Selected OWASP Cheat Sheets Volume 1 on Kindle

Buy Selected OWASP Cheat Sheets Volume 2 on Kindle

BONUS: Download the full Volume 1 in EPUB format here

BONUS: Download the full Volume 2 in EPUB format here

Support me with Ko-fi!

About the Author


Robert Lewis Thornton is a professional writer and technical editor with over two decades of experience in software development. He created Cloud and Ashes Press to offer clear, accessible security resources for working professionals.