Rails security gems, tutorials and tools #2

Rack-timesec gem

Rack middleware to prevent timing attacks

Ruby-SSLscanner gem

A simple and easy to use SSL Cipher scanner

Straightforward Rails Authorization with Pundit

This is a second article in the “Authorization with Rails” series.

Attacking Ruby on Rails Applications

Interesting attack paths and techniques for Rails 3 (and some for Rails 4) in one write up.

SMS Verification With Rails

SSL tools we wish we’d known about earlier

Here’s a couple of new tools, and a couple of different ways to use old tools, that the CertSimple team wish we knew about earlier.

Like this kind of articles?

Subscribe to hear about new Rails security resources first. Only helpful articles and guides. Monthly(ish) updates, no spam.

Unsubscribe at any time. Powered by ConvertKit