GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → security-code-scan → Security Code Scan

security-code-scan / Security Code Scan

Licence: lgpl-3.0
Vulnerability Patterns Detector for C# and VB.NET

Labels

securitydotnetstatic-analysisscanneranalysiscodestatic-code-analysisanalyzerowaspstaticroslynscan

Projects that are alternatives of or similar to Security Code Scan

Phan
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Stars: ✭ 5,194 (+844.36%)
Mutual labels:  static-analysis, analysis, static-code-analysis, analyzer
Sonar Java
☕️ SonarSource Static Analyzer for Java Code Quality and Security
Stars: ✭ 745 (+35.45%)
Mutual labels:  static-analysis, analysis, static-code-analysis, analyzer
Static Analysis
⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+1592.73%)
Mutual labels:  static-analysis, static-code-analysis, analysis
Analyzer
🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (-80.36%)
Mutual labels:  static-analysis, analysis, analyzer
lints
Lint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command
Stars: ✭ 14 (-97.45%)
Mutual labels:  analysis, static-code-analysis, static-analysis
Detekt
Static code analysis for Kotlin
Stars: ✭ 4,169 (+658%)
Mutual labels:  analysis, static, static-analysis
Blackwidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+61.27%)
Mutual labels:  scanner, owasp, scan
tryceratops
A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).
Stars: ✭ 381 (-30.73%)
Mutual labels:  static-code-analysis, code, static-analysis
Dg
[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Stars: ✭ 242 (-56%)
Mutual labels:  static-analysis, analysis, static-code-analysis
custom-bytecode-analyzer
Java bytecode analyzer customizable via JSON rules
Stars: ✭ 66 (-88%)
Mutual labels:  analysis, static-analysis, analyzer
sonarlint4netbeans
SonarLint integration for Apache Netbeans
Stars: ✭ 23 (-95.82%)
Mutual labels:  static-code-analysis, static-analysis, analyzer
analysis-net
Static analysis framework for .NET programs.
Stars: ✭ 19 (-96.55%)
Mutual labels:  analysis, static-code-analysis, static-analysis
Seriloganalyzer
Roslyn-based analysis for code using the Serilog logging library. Checks for common mistakes and usage problems.
Stars: ✭ 214 (-61.09%)
Mutual labels:  analysis, roslyn, analyzer
Zxinglite
🔥 ZXing的精简版,优化扫码和生成二维码/条形码,内置闪光灯等功能。扫描风格支持:微信的线条样式,支付宝的网格样式。几句代码轻松拥有扫码功能 ,ZXingLite让集成更简单。(扫码识别速度快如微信)
Stars: ✭ 2,117 (+284.91%)
Mutual labels:  scanner, scan, code
Horusec
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Stars: ✭ 311 (-43.45%)
Mutual labels:  static-analysis, analysis, scanner
vulnscan
A static binary vulnerability scanner
Stars: ✭ 47 (-91.45%)
Mutual labels:  analysis, scanner, static
Chronos
Chronos - A static race detector for the go language
Stars: ✭ 272 (-50.55%)
Mutual labels:  static-analysis, analysis, static-code-analysis
Sonar Dotnet
Code analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.html
Stars: ✭ 466 (-15.27%)
Mutual labels:  static-analysis, roslyn, static-code-analysis
Phpstan Symfony
Symfony extension for PHPStan
Stars: ✭ 360 (-34.55%)
Mutual labels:  static-analysis, static-code-analysis
Wssat
WEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (-34.55%)
Mutual labels:  static-analysis, scanner
View All Similar Projects ➔

Security Code Scan
Vulnerability Patterns Detector for C# and VB.NET - Website

Build status

Downloading

Official releases are available as nuget package and as Visual Studio extension.
Nightly builds are available from appveyor (go to Configuration: Release -> Artifacts).

Building

git clone https://github.com/security-code-scan/security-code-scan.git
cd security-code-scan

Open SecurityCodeScan.sln in Visual Studio or build from command line:

nuget restore SecurityCodeScan.sln
msbuild SecurityCodeScan.sln

Contributing

Tests

Most of the tests are written in two languages: C# and VB.NET. If you aren't an expert in VB.NET (me neither) use any online converter to create the VB.NET counterpart from tested C# code example.
Tests are ideal for developing features and fixing bugs as it is easy to debug.

Debugging

In case you are not sure what is wrong or you see AD0001 error with an exception, it is possible to debug the analysis of problematic Visual Studio solution.

Visual Studio offloads some static analysis work to a separate process. It is a good idea to uncomment the lines to have a chance to debug the child process.

First, make sure there are no Security Code Scan Visual Studio extensions installed to avoid interference.
Right click SecurityCodeScan.Vsix project in the solution and choose Set as StartUp project.
Start debugging in Visual Studio. It will open another instance of Visual Studio with debugger attached.
Open the solution with the problematic source.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].