675 Open source projects that are alternatives of or similar to Awesome Ruby Security

network visualization & vulnerability management/reporting

Performing security tests inside your CI

Security scanner coordinator

⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket

Web Scan Lazy Tools - Python Package

Ansible: Ruby on Rails Server

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

Sample source for the 2017 edition of Everyday Rails Testing with RSpec.

Collaborative malware analysis framework

An automated target reconnaissance pipeline.

Ruby Web Dev: The Other Way. Personal best practices guide.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯

A rapid Rails 6 application template for personal use bundled with Tailwind CSS

syzkaller is an unsupervised coverage-guided kernel fuzzer

A tool for identifying misconfigured CloudFront domains

Web-based Source Code Vulnerability Scanner

A Deep Graph-based Toolbox for Fraud Detection

A lightweight Facebook library supporting the Graph, Marketing, and Atlas APIs, realtime updates, test users, and OAuth.

This repository created for personal use and added tools from my latest blog post.

A repository for maintaining lists of things like malicious URLs, fake token addresses, and so forth. We love lists.

Simple Rails & AWS Lambda Integration 🐑🛤

NERVE Continuous Vulnerability Scanner

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Automated cacert.pem management for PHP projects

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

Workarea is an enterprise-grade Ruby on Rails commerce platform

Secure, Unified, Powerful and Extensible Rust Android Analyzer

A REST API security testing framework.

Modlishka. Reverse Proxy.

Next generation web scanner

👻Impost3r -- A linux password thief

Fully automated offensive security framework for reconnaissance and vulnerability scanning

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

secureCodeBox (SCB) - continuous secure delivery out of the box

🔎 shodansploit > v1.3.0

Help building an adaptive and fine-grained pod security policy

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

A learning management system (LMS) that lets you run an asynchronous online school, where learning is achieved through focused tasks, directed feedback, an iterative workflow, and community interaction.

Database validations for ActiveRecord

The open curriculum for learning web development

Elasticsearch integrations for ActiveModel/Record and Ruby on Rails

CodeFund is an open source platform that helps fund maintainers, bloggers, and builders through non-tracking ethical ads

A robust Admin Interface for Ruby on Rails apps

Search for Directory Traversal Vulnerabilities

YARA malware query accelerator (web frontend)

Monitor performance of you Rails applications

IAST 灰盒扫描工具

Bandit is a tool designed to find common security issues in Python code.

My simple Swiss Army knife for http/https troubleshooting and profiling.

Kubernetes RBAC static Analysis & visualisation tool

Credentials catching honeypot

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

☕ Bamboofox CTF training platform

TappingDevice makes objects tell you what they do, so you don't need to track them yourself.

🔨 Manage your website via terminal

A Python Tool For google Hacking