1. Home
  2. Ruby
  3. security

Top Ruby Frameworks & Libraries for security

presidentbeef/brakeman

A static analysis security vulnerability scanner for Ruby on Rails applications

6225
673
Ruby

wpscanteam/wpscan

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites....

6105
1057
Ruby

github/secure_headers

Manages application of security headers with many safe defaults

2931
248
Ruby

Arachni/arachni

Web Application Security Scanner Framework

2920
666
Ruby

SUSE/Portus

Authorization service and frontend for Docker registry (v2)

2874
484
Ruby

Netflix-Skunkworks/Scumblr

Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results...

2634
328
Ruby

inspec/inspec

InSpec: Auditing and Testing Framework

2425
652
Ruby

brunofacca/zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

1755
145
Ruby

eliotsykes/rails-security-checklist

:key: Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)...

1278
95
Ruby

noraj/OSCP-Exam-Report-Template-Markdown

:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

1983
488
Ruby

coreinfrastructure/best-practices-badge

πŸ†Core Infrastructure Initiative Best Practices Badge

970
163
Ruby

rastating/wordpress-exploit-framework

A Ruby framework designed to aid in the penetration testing of WordPress systems.

901
250
Ruby

markets/invisible_captcha

:honey_pot: Unobtrusive and flexible spam protection for Rails apps

898
55
Ruby

phatworx/devise_security_extension

An enterprise security extension for devise, trying to meet industrial standard security demands for web applications....

735
332
Ruby

mattbrictson/rails-template

Application template for Rails 6 projects; preloaded with best practices for TDD, security, deployment, and developer productivity....

804
204
Ruby

thesp0nge/dawnscanner

Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks....

651
88
Ruby

dev-sec/linux-baseline

DevSec Linux Baseline - InSpec Profile

594
147
Ruby

Fuzzapi/fuzzapi

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

549
161
Ruby

anaynayak/aws-security-viz

Visualize your aws security groups.

568
87
Ruby

dradis/dradis-ce

Dradis Framework: Colllaboration and reporting for IT Security teams

475
149
Ruby

starterkits/rails4-starterkit

Rails 4.1 starter app with production ready performance, security, and authentication.

395
98
Ruby

OWASP/glue

Application Security Automation

441
107
Ruby

m0nad/HellRaiser

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

454
144
Ruby

dev-sec/chef-os-hardening

This chef cookbook provides numerous security-related configurations, providing all-round base protection....

402
135
Ruby

michenriksen/birdwatcher

Data analysis and OSINT framework for Twitter

371
71
Ruby

dev-sec/cis-docker-benchmark

CIS Docker Benchmark - InSpec Profile

349
84
Ruby

inossidabile/protector

Comfortable (seriously) white-list security restrictions for models on a field level

275
28
Ruby

stelligent/cfn_nag

Linting tool for CloudFormation templates

930
167
Ruby

rubysec/bundler-audit

Patch-level verification for Bundler

2375
217
Ruby

devise-security/devise-security

A security extension for devise, meeting industrial standard security demands for web applications.

355
123
Ruby

appvia/krane

Kubernetes RBAC static Analysis & visualisation tool

393
20
Ruby

hahwul/droid-hunter

(deprecated) Android application vulnerability analysis and Android pentest tool

260
84
Ruby

timcharper/role_requirement

Simple role based security for restful_authentication I am no longer involved in this project. If you are interested in becoming the new maintainer and making it...

253
32
Ruby

Fuzzapi/API-fuzzer

API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities...

243
70
Ruby

pglombardo/PasswordPusher

πŸ” PasswordPusher is an application to securely communicate passwords over the web. Passwords automatically expire after a certain number of views and/or time has...

553
149
Ruby

darkbitio/aws-recon

Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata....

287
23
Ruby