23 Security gems and projects

  • Metasploit

    10.0 10.0 L1 Ruby
    Metasploit Framework
  • BeEF

    9.8 9.3 JavaScript
    The Browser Exploitation Framework Project
  • Get early access to Scout Monitoring's NEW Ruby logging feature [beta] by signing up now. Start for free and enable logs to get better insights into your Rails apps.
    Promo www.scoutapm.com
    Scout Monitoring Logo
  • Brakeman

    9.5 7.5 L3 Ruby
    A static analysis security vulnerability scanner for Ruby on Rails applications
  • Gitrob

    9.3 0.0 L5 Go
    DISCONTINUED. Reconnaissance tool for GitHub organizations
  • Rack::Attack

    9.2 6.7 L5 Ruby
    Rack middleware for blocking & throttling
  • SecureHeaders

    8.6 4.2 Ruby
    Manages application of security headers with many safe defaults
  • bundler-audit

    8.1 6.1 L5 Ruby
    Patch-level verification for Bundler
  • Bearer

    7.2 9.5 Go
    Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
  • RbNaCl

    6.0 3.4 L5 Ruby
    Ruby FFI binding to the Networking and Cryptography (NaCl) library (a.k.a. libsodium)
  • Hashids

    5.7 3.7 L5 Ruby
    A small Ruby gem to generate YouTube-like hashes from one or many numbers. Use hashids when you do not want to expose your database ids to the user.
  • Rack::Protection

    5.5 0.0
    DISCONTINUED. NOTE: This project has been merged upstream to sinatra/sinatra
  • Ronin

    5.1 7.0 Ruby
    Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd-party git repositories.
  • Rack::UTF8Sanitizer

    3.9 5.6 Ruby
    Rack::UTF8Sanitizer is a Rack middleware which cleans up invalid UTF8 characters in request URI and headers.
  • Clamby

    2.6 6.3 Ruby
    ClamAV interface to your Ruby on Rails project.
  • ActiveHashcash

    2.5 7.4 Ruby
    Protect Rails applications against bots and brute force attacks without annoying humans.
  • ronin-exploits

    2.2 7.3 Ruby
    A Ruby micro-framework for writing and running exploits
  • ronin-vulns

    1.9 6.2 Ruby
    Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
  • SiRP

    1.4 0.0 L5 Ruby
    DISCONTINUED. Secure (interoperable) Remote Password Auth (SRP-6a)
  • TSS - Threshold Secret Sharing

    1.1 0.0 L5 Ruby
    A Ruby implementation of Threshold Secret Sharing (Shamir) as defined in IETF Internet-Draft draft-mcgrew-tss-03.txt
  • Active Entry

    0.7 0.0 Ruby
    A flexible access control system for your Rails app
  • Rack::JsonWebTokenAuth

    0.5 0.0 L5 Ruby
    DISCONTINUED. Rack middleware for authentication using JSON Web Tokens (JWT)
  • Rack::ContentSecurityPolicy

    0.3 0.0 L5 Ruby
    DISCONTINUED. Rack middleware for declaratively setting the HTTP ContentSecurityPolicy (W3C CSP Level 2/3) security header to help prevent against XSS and other browser based attacks.
  • sessionKeys

    0.3 0.0 L5 Ruby
    A tool for the deterministic generation of unique user IDs, and NaCl cryptographic keys from a single username and high entropy passphrase.

Add another 'Security' Gem