Ruby Security

21 Security gems and projects

• Metasploit

  10.0 10.0 L1 Ruby

  Metasploit Framework
  

• BeEF

  9.7 8.3 JavaScript

  The Browser Exploitation Framework Project
  

Clean code begins in your IDE with SonarLint

Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.

Promo www.sonarlint.org



• Brakeman

  9.5 7.1 L3 Ruby

  A static analysis security vulnerability scanner for Ruby on Rails applications

• Gitrob

  9.3 0.0 L5 Go

  Reconnaissance tool for GitHub organizations

• Rack::Attack

  9.1 4.4 L5 Ruby

  Rack middleware for blocking & throttling
  

• SecureHeaders

  8.5 7.1 Ruby

  Manages application of security headers with many safe defaults
  

• bundler-audit

  8.0 7.5 L5 Ruby

  Patch-level verification for Bundler
  

• RbNaCl

  6.0 2.7 L5 Ruby

  Ruby FFI binding to the Networking and Cryptography (NaCl) library (a.k.a. libsodium)
  

• Hashids

  5.6 0.0 L5 Ruby

  A small Ruby gem to generate YouTube-like hashes from one or many numbers. Use hashids when you do not want to expose your database ids to the user.

• Rack::Protection

  5.5 0.0

  NOTE: This project has been merged upstream to sinatra/sinatra
  

• Ronin

  3.8 10.0 Ruby

  Ronin is a free and Open Source Ruby toolkit for security research and development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd party git repositories.
  

• Rack::UTF8Sanitizer

  3.7 2.3 Ruby

  Rack::UTF8Sanitizer is a Rack middleware which cleans up invalid UTF8 characters in request URI and headers.

• Clamby

  2.3 0.0 Ruby

  ClamAV interface to your Ruby on Rails project.

• ronin-exploits

  1.8 10.0 Ruby

  A Ruby micro-framework for writing and running exploits
  

• SiRP

  1.4 0.0 L5 Ruby

  Secure (interoperable) Remote Password Auth (SRP-6a)

• ronin-vulns

  1.2 10.0 Ruby

  Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
  

• TSS - Threshold Secret Sharing

  1.1 0.0 L5 Ruby

  A Ruby implementation of Threshold Secret Sharing (Shamir) as defined in IETF Internet-Draft draft-mcgrew-tss-03.txt

• Active Entry

  0.7 0.0 Ruby

  A flexible access control system for your Rails app
  

• Rack::JsonWebTokenAuth

  0.5 0.0 L5 Ruby

  Rack middleware for authentication using JSON Web Tokens (JWT)

• sessionKeys

  0.3 0.0 L5 Ruby

  A tool for the deterministic generation of unique user IDs, and NaCl cryptographic keys from a single username and high entropy passphrase.

• Rack::ContentSecurityPolicy

  0.3 0.0 L5 Ruby

  Rack middleware for declaratively setting the HTTP ContentSecurityPolicy (W3C CSP Level 2/3) security header to help prevent against XSS and other browser based attacks.

* Code Quality Rankings and insights are calculated and provided by Lumnify.
They vary from L1 to L5 with "L5" being the highest.

Build time-series-based applications quickly and at scale. sponsored www.influxdata.com

Popular Comparisons

• bundler-audit
  vs
  Brakeman
• BeEF
  vs
  Metasploit
• Brakeman
  vs
  Rubycritic
• Brakeman
  vs
  Metasploit
• Rack::Attack
  vs
  Metasploit

SaaSHub - Software Alternatives and Reviews sponsored www.saashub.com