A static analysis security vulnerability scanner for Ruby on Rails applications
created at Aug. 27, 2010, midnight
Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.
created at April 4, 2013, 1:06 p.m.
Securely manage passwords, certs, and other secrets in Chef
created at April 8, 2013, 6:05 p.m.
ansible-lint checks playbooks for practices and behavior that could potentially be improved and can fix some of the most common ones for you
created at Aug. 14, 2013, 11:08 a.m.
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
created at Oct. 22, 2013, 8:26 p.m.
Safely store secrets in Git/Mercurial/Subversion
created at April 6, 2014, 5:53 p.m.
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
created at Sept. 19, 2014, 2:53 p.m.
A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.
created at Oct. 14, 2014, 10:10 a.m.
Memorable site for testing clients against bad SSL configs.
created at April 7, 2015, 10:37 p.m.
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
created at May 11, 2015, 12:57 a.m.
Prevents you from committing secrets and credentials into git repositories
created at July 15, 2015, 8:41 p.m.