About | FAQ | Backlog
Open Source projects, categorized.
add filters by typing...
...or clicking
asm authentication authorization backup bsd c c++ certificate crypto cryptography csrf cvs cypherpunk datamapper decentralized developerfriendly distributed dsl education encrypted encryption engineering exploit exploits file file-transfer-protocol-(ftp) firewall free freebsd frontend git github glade gnupg gpg gpl gpl2 gps gtk hack hacker-friendly hacking honeypot html i18n identity ids injection insecurity ip irb j2ee jaas janrain java javaee javascript jquery ldap lfi libpcap log mathematics metasploit middleware modular netflow network networking non-corporate non-profit openbsd openid openpgp open-source openvpn osx overlay packet packetfilter packet-fu parallel pcap pentest pf pgp php platform plot plugin plugins portable python rails rake rdoc realtime remote remoteaccess repertoire repository reverse-require rfc2440 rfc4880 rfi rpc rspec rubygem rubyonrails sake saml scan scientific scm scruby secure server shellcode shells simulation singlesignon single-sign-on sql ssh ssl sun svn sysadmin system systems-administration tcp template token typo udp unix url utility visualisation vpn wardriving web web2.0 webservices wireshark ws-trust xacml xss パケット パケットフ
[42 users on Ohloh]
The Open Web SSO project provides core identity services to simplify the implementation of transparent single sign-on as a security component in a network infrastructure. It provides the foundation for integrating diverse web applications that might typically operate against a disparate set of identity repositories and are hosted on a variety of platforms such as web and application servers.
Metasploit Framework
[26 users on Ohloh]
The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. The framework is written in the Ruby programming language and includes components written in C and assembler.
[3 users on Ohloh]
DenySSH monitors the auth log of a BSD system for failed SSH login attempts and adds repeat attackers to a Packet Filter table, allowing you to define PF rules to block the attacking hosts or redirect them to a honeypot for your amusement.
[2 users on Ohloh]
Tags: backup security remote encrypted ruby
Crackup is a pretty simple, pretty secure remote backup solution for folks who want to keep their data securely backed up but aren't particularly concerned about bandwidth usage.
[2 users on Ohloh]
Tags: ruby security
Net::SSH is to SSH as Net::Telnet is to Telnet and Net::HTTP is to HTTP. Perform non-interactive SSH processing, purely from Ruby!
[1 users on Ohloh]
Ronin is a Ruby platform designed for information security and data exploration tasks. Ronin allows for the rapid development and distribution of code over many of the common Source-Code-Management (SCM) systems.
[1 users on Ohloh]
Tags: ssl c++ ruby cryptography security
PKI programs for Ruby scripting language (Ruby: www.ruby-lang.org): OpenSSL for Ruby (checkout homepage, CVS, files), RubyCA (not started yet)
[1 users on Ohloh]
OpenPGP.rb is a pure-Ruby implementation of the OpenPGP Message Format (RFC 4880).
[1 users on Ohloh]
PacketFu is a mid-level, cross-platform packet manipulation library for Ruby, allowing for easy Layer 4 and below packet creation and parsing.

It requires:

Ruby (1.8.6 or later)
PcapRub (0.8-dev or later)
BinData (0.9.3 or later)

Both PcapRub and BinData are distributed as part of PacketFu distro.

PacketFu is also itself packaged with Metasploit for packet crafting goodness.

[0 users on Ohloh]
pp-VIS (spelled pipi-VIS, germans with bad humour will understand the joke) is a tool that can visualize different fields of network packets in a parallel coordinate plot. This tool was made in search of a Linux and realtime version of Rumint. Its written in Ruby with support for pcap and netflow. pp-VIS uses Opengl for displaying data.
[0 users on Ohloh]
PKI build on Ruby on Rails.
[0 users on Ohloh]
Pure Ruby tempfile implementations appear to suffer from well-known race conditions. The 'mkstemp' family of functions now popular on Linux & *BSD attempt to work around these issues. This module makes them available to Ruby programmers on platforms where they are present.
[0 users on Ohloh]
Tags: rubyonrails csrf xss web janrain security plugins rails ruby
secure_action is a ruby on rails plugin which makes it easy to defend your site against assumed logged in attacks, also called CSRF(cross site request forgery) attacks.

In an assumed logged in attack, a malicious site assumes the visitor is logged into a target site. The malicious site crafts a URL to a destructive action on the target site (change email, delete account, etc) and opens the URL to that action in a hidden iframe. The browser then sends the user's cookies and actions may be...

[0 users on Ohloh]
Monitors the SSH authorization log, and directs firewall software (ipfw by default) to blacklist IPs which are exhibiting suspicious behavior, and whitelist IPs which make successful logins. You can use it to greatly increase the time necessary for a cracker to mount a successful dictionary attack on your server.

The utility is configurable, so it can be used to monitor any log (not just SSH) for any good / bad behavior patterns, and take any command-line action as a response.


substitution solver
[0 users on Ohloh]
This program solves simple substitution ciphers like the cryptoquotes found in the newspaper. It does not need wordlength to be effective. I'm submitting this project to rubyforge in the hopes it may be useful or perhaps just entertaining to other users.
[0 users on Ohloh]
The Sulawesi Software Collective have no illusions about making lots of money, attracting hordes of code-groupies, or saving the world. We don't even think we are all that clever. But coding can be fun, and we aim to have fun.

All software you may find in this project is subject to the Apache License, Version 2.

[0 users on Ohloh]
Tags: tld ruby urlhijacking typosquatting url typo security
UrlCrazy is for the study of domainname typos / url hijacking.

It generates domainname typo permutations then tests them to learn if they are in use, estimates their popularity and more.

TYPES OF TYPOS SUPPORTEDCharacter Omission.These typos are created by leaving out a letter of the domain name, one letter at a time. For example, www.goole.com and www.gogle.com

Adjacent Character Swap.These typos are created by swapping the order of adjacent letters in the domain nam...

[0 users on Ohloh]
Details will follow - soon.
[0 users on Ohloh]
Tags: simulation security networking ruby honeypot
What is myvnet?It's a virtual honeypot for GNU/Linux systems, written in Ruby. A C++ version is planned after the architecture is fully stable.

DocumentationGo to the myvnet Wiki.

DevelopersFilipe David Borba Manana, fdmanana (at) gmail (dot) com

Development environmentDebian GNU/Linux Ruby 1.8.7 NetBeans IDE 6.1 Getting myvnetMake sure you have the Subversion client installed on your machine. Then run:

svn checkout https://myvnet.googlecode.com/svn/tags/myvnet-v0....

[0 users on Ohloh]
Tags: ruby security file-transfer-protocol-(ftp)
Net::Netrc is a pure Ruby library providing ftp(1)-compatible .netrc file parsing