Secure Ruby Development Guide
This guide focuses on secure development of software in Ruby and Ruby on Rails and to provide developers with a guidelines and recommendations illustrated on examples of real-world attacks. Contributing: This guide lives in github and fedorahosted repos. If you find any issues, please open a new Github issue. Building: Building is automated in Makefile - typing make will build html, epub and pdf by default. Building requires publican package and publican-fedora package for branding.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A lightweight CTF platform with simple setup and difficulty-based scoring that removes timezone advantages from competitions.
A Node.js Ebook by GENTILHOMME Thomas, covering Node.js development and resources
An easy-to-use and lightweight API wrapper for Censys APIs with support for Python 3.8+.
Bane is an automated AppArmor profile generator for Docker containers that simplifies the creation of security policies with file globbing support and Docker integration.
NightShade is a Django-based capture the flag framework that enables organizations to create and manage cybersecurity competitions with support for multiple contest formats and multi-tenant architecture.
A tool for SSH server auditing with comprehensive analysis capabilities.
Docker file for building Androguard dependencies with an optional interactive shell environment.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.