Ruby Security

23 Security gems and projects

• Metasploit

  10.0 10.0 L1 Ruby

  Metasploit Framework
  

• BeEF

  9.8 9.2 JavaScript

  The Browser Exploitation Framework Project
  

Judoscale - Save 47% on cloud hosting with autoscaling that just works

Judoscale integrates with Rails, Sidekiq, Solid Queue, and more to make autoscaling easy and reliable. Save big, and say goodbye to request timeouts and backed-up job queues.

Promo judoscale.com



• Brakeman

  9.5 8.4 L3 Ruby

  A static analysis security vulnerability scanner for Ruby on Rails applications
  

• Gitrob

  9.3 0.0 L5 Go

  DISCONTINUED. Reconnaissance tool for GitHub organizations

• Rack::Attack

  9.2 5.8 L5 Ruby

  Rack middleware for blocking & throttling
  

• SecureHeaders

  8.6 5.8 Ruby

  Manages application of security headers with many safe defaults
  

• bundler-audit

  8.2 5.7 L5 Ruby

  Patch-level verification for Bundler
  

• Bearer

  7.7 8.4 Go

  Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
  

• RbNaCl

  6.1 5.0 L5 Ruby

  Ruby FFI binding to the Networking and Cryptography (NaCl) library (a.k.a. libsodium)
  

• Hashids

  5.7 3.7 L5 Ruby

  A small Ruby gem to generate YouTube-like hashes from one or many numbers. Use hashids when you do not want to expose your database ids to the user.
  

• Rack::Protection

  5.5 0.0

  DISCONTINUED. NOTE: This project has been merged upstream to sinatra/sinatra
  

• Ronin

  5.2 8.2 Ruby

  Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd-party git repositories.
  

• Rack::UTF8Sanitizer

  4.0 5.0 Ruby

  Rack::UTF8Sanitizer is a Rack middleware which cleans up invalid UTF8 characters in request URI and headers.
  

• ActiveHashcash

  2.9 5.5 Ruby

  Protect Rails applications against bots and brute force attacks without annoying humans.
  

• Clamby

  2.7 6.3 Ruby

  ClamAV interface to your Ruby on Rails project.
  

• ronin-exploits

  2.3 8.0 Ruby

  A Ruby micro-framework for writing and running exploits
  

• ronin-vulns

  2.2 6.9 Ruby

  Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
  

• SiRP

  1.4 0.0 L5 Ruby

  DISCONTINUED. Secure (interoperable) Remote Password Auth (SRP-6a)

• TSS - Threshold Secret Sharing

  1.2 0.0 L5 Ruby

  A Ruby implementation of Threshold Secret Sharing (Shamir) as defined in IETF Internet-Draft draft-mcgrew-tss-03.txt
  

• Active Entry

  0.7 0.0 Ruby

  A flexible access control system for your Rails app
  

• Rack::JsonWebTokenAuth

  0.5 0.0 L5 Ruby

  DISCONTINUED. Rack middleware for authentication using JSON Web Tokens (JWT)

• Rack::ContentSecurityPolicy

  0.3 0.0 L5 Ruby

  DISCONTINUED. Rack middleware for declaratively setting the HTTP ContentSecurityPolicy (W3C CSP Level 2/3) security header to help prevent against XSS and other browser based attacks.

• sessionKeys

  0.3 0.0 L5 Ruby

  A tool for the deterministic generation of unique user IDs, and NaCl cryptographic keys from a single username and high entropy passphrase.
  

* Code Quality Rankings and insights are calculated and provided by Lumnify.
They vary from L1 to L5 with "L5" being the highest.

InfluxDB high-performance time series database

featured influxdata.com

Popular Comparisons

• Brakeman
  vs
  bundler-audit
• BeEF
  vs
  Metasploit
• Brakeman
  vs
  Rubycritic
• Metasploit
  vs
  Brakeman
• Rack::Attack
  vs
  Metasploit

CodeRabbit: AI Code Reviews for Developers

featured coderabbit.ai