1. Home
  2. Ruby
  3. security

Top Ruby Frameworks & Libraries for security

presidentbeef/brakeman

A static analysis security vulnerability scanner for Ruby on Rails applications

6068
636
Ruby

wpscanteam/wpscan

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites....

5696
1000
Ruby

github/secure_headers

Manages application of security headers with many safe defaults

2870
235
Ruby

Arachni/arachni

Web Application Security Scanner Framework

2846
661
Ruby

SUSE/Portus

Authorization service and frontend for Docker registry (v2)

2805
482
Ruby

Netflix-Skunkworks/Scumblr

Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results...

2622
326
Ruby

inspec/inspec

InSpec: Auditing and Testing Framework

2310
621
Ruby

brunofacca/zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

1697
142
Ruby

eliotsykes/rails-security-checklist

:key: Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)...

1267
96
Ruby

noraj/OSCP-Exam-Report-Template-Markdown

:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

1605
395
Ruby

coreinfrastructure/best-practices-badge

🏆Core Infrastructure Initiative Best Practices Badge

931
153
Ruby

rastating/wordpress-exploit-framework

A Ruby framework designed to aid in the penetration testing of WordPress systems.

883
239
Ruby

markets/invisible_captcha

:honey_pot: Unobtrusive and flexible spam protection for Rails apps

862
52
Ruby

phatworx/devise_security_extension

An enterprise security extension for devise, trying to meet industrial standard security demands for web applications....

726
323
Ruby

mattbrictson/rails-template

Application template for Rails 6 projects; preloaded with best practices for TDD, security, deployment, and developer productivity....

772
197
Ruby

thesp0nge/dawnscanner

Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks....

648
86
Ruby

dev-sec/linux-baseline

DevSec Linux Baseline - InSpec Profile

534
133
Ruby

Fuzzapi/fuzzapi

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

523
153
Ruby

anaynayak/aws-security-viz

Visualize your aws security groups.

513
83
Ruby

dradis/dradis-ce

Dradis Framework: Colllaboration and reporting for IT Security teams

444
144
Ruby

starterkits/rails4-starterkit

Rails 4.1 starter app with production ready performance, security, and authentication.

397
100
Ruby

OWASP/glue

Application Security Automation

416
100
Ruby

m0nad/HellRaiser

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

423
138
Ruby

dev-sec/chef-os-hardening

This chef cookbook provides numerous security-related configurations, providing all-round base protection....

388
134
Ruby

michenriksen/birdwatcher

Data analysis and OSINT framework for Twitter

356
68
Ruby

dev-sec/cis-docker-benchmark

CIS Docker Benchmark - InSpec Profile

322
66
Ruby

inossidabile/protector

Comfortable (seriously) white-list security restrictions for models on a field level

276
28
Ruby

stelligent/cfn_nag

Linting tool for CloudFormation templates

837
154
Ruby

rubysec/bundler-audit

Patch-level verification for Bundler

2293
206
Ruby

devise-security/devise-security

A security extension for devise, meeting industrial standard security demands for web applications.

300
115
Ruby