Skip to content
/ rubygem_miner Public

This script will look for basic vulnerabilities in ruby gems, it scrapes ruby gems.org for all gems that begin with letter $argument

License

MIT license
7 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

lcashdol/rubygem_miner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
vuln_scraper.sh
vuln_scraper.sh
 
 

Repository files navigation

rubygem_miner

This script will look for basic vulnerabilities in ruby gems, it scrapes rubygems.org for all gems that begin with letter $argument.

So $> ./vuln_scrape.sh A

The above command will download all ruby gems that start with the letter A and look for simple vulnerabilities. There are false positives but in a sea of code, you'll get a lake of possible vulnerabilities to look at.

Also there is much room for improvement, this should really be re-written to use the rubygems.org API.

And please don't pound the living shit out of rubygems.org. I would try to run this off hours and I would often put a sleep 1 in the for loops.

About

This script will look for basic vulnerabilities in ruby gems, it scrapes ruby gems.org for all gems that begin with letter $argument

Resources

Readme

License

MIT license
Activity

Stars

7 stars

Watchers

4 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages