This document discusses various tools for logging and security testing like Burp, Nikto, and Brakeman. It then covers Devise authentication gems and using UUIDs for contacts. Models are shown for Users that belong to Teams, and Teams that have many Users. Methods are updated to scope contacts to the current user's team by using current_user.team instead of just current_user. RailsConf 2015 talks on security are mentioned and contact info is provided for a security company.