Rack-timesec gem
Rack middleware to prevent timing attacks
Ruby-SSLscanner gem
A simple and easy to use SSL Cipher scanner
Straightforward Rails Authorization with Pundit
This is a second article in the “Authorization with Rails” series.
Attacking Ruby on Rails Applications
Interesting attack paths and techniques for Rails 3 (and some for Rails 4) in one write up.
SMS Verification With Rails
SSL tools we wish we’d known about earlier
Here’s a couple of new tools, and a couple of different ways to use old tools, that the CertSimple team wish we knew about earlier.
Check out the new #Rails security gems, tutorials and tools No. 2 https://t.co/denmBiW6z6 with @joernchen @jmccartie @bodrovis @mikemaccana
— Rails Security (@rorsecurity) 30. Oktober 2015
Like this kind of articles?
Subscribe to hear about new Rails security resources first. Only helpful articles and guides. Monthly(ish) updates, no spam.
