420 Open source projects that are alternatives of or similar to codecat

Integration of Clair and Docker Registry

Extra strict and opinionated rules for PHPStan

Open Source SIEM (Security Information and Event Management system).

A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead

An NFC research toolkit application for Android

Sonar plugin to analyze ESQL-sourcecode of IBM Integration Bus projects

Advanced vulnerability scanning with Nmap NSE

A linter, formatter for finding and removing unused import statements.

Pentest Report Generator

List of packages that use `standard`

Explore your own text collection with a topic model – without prior knowledge.

Static analysis framework for .NET programs.

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

A plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Static call graph generator. The official Python 3 version. Development repo.

Security advisory database for Rust crates published through crates.io

Detection of design principle violations in Kotlin as a plugin to detekt.

Pretty vulnerable flask app..

OpenStaticAnalyzer is a source code analyzer tool, which can perform deep static analysis of the source code of complex systems.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

EBA is a static bug finder for C.

NebulousAD automated credential auditing tool.

🔎 Nodejs Reflection API for PHP files based on the php-parser

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

identypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).

Flask application generating interactive visualisations from bank statements PDF documents

Comments Bitbucket Server (or Stash) pull requests with static code analyzer findings.

Tracking CVEs for the linux Kernel

Static program analysis framework for Ethereum smart contract bytecode.

🎯 Server Side Template Injection Payloads

unimport is a Go static analysis tool to find unnecessary import aliases.

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Rubocop extension for enforcing graphql-ruby best practices

Lint only the files your branch touches

PHPStan extension for webmozart/assert

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

Simple and powerful standalone project for clang-based tools using libtooling (e.g. refactoring, auto-completion, etc.)

🕵️‍♀️ MixAudit provides a mix deps.audit task to scan a project Mix dependencies for known Elixir security vulnerabilities

Docker image with uWSGI and Nginx for Flask applications in Python running in a single container. Optionally with Alpine Linux.

Technical details that a programmer of a web application should consider before making the site public.

Comic reading website built by flask.

eclipse-pmd has been moved to

API development made easy: a smart Python 3 API framework

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Listen-now, 提供了多音乐平台的音乐搜索、播放、歌单播放、同步平台歌单到本地数据库，并计划开发智能音乐推荐系统。listen-now主要由学生层级的同学一起开发。

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

An unofficial API for JioSaavn written in Python 3

Web Scan Lazy Tools - Python Package

Python爬虫和Flask实现小说网站

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Nette Framework class reflection extension for PHPStan & framework-specific rules

Systemd Linter

LIFARS Networking Security GNU/Linux distro

🌐 dynamic tile server for visualizing rasters in Jupyter with ipyleaflet or folium

Audits Python environments and dependency trees for known vulnerabilities

NsDepCop is a static code analysis tool that helps to enforce namespace dependency rules in C# projects. No more unplanned or unnoticed dependencies in your system.

Security tool to trace URL's jumps across the rel links to obtain the last URL

Standalone linter for ABAP