399 Open source projects that are alternatives of or similar to Crepe

Gradle plugin for PIT Mutation Testing

A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)

Dynamic definitions and types provider for ruby static analysis

A set of custom fixers for PHP CS Fixer

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

Soot - A Java optimization framework

sonar-swift.SonarQube iOS Plugin, Support Objective-C And Swift, Support Infer (SonarQube iOS 代码扫描插件，支持 Objective-C 和 Swift ，支持 Infer 结果导入 ) base on https://github.com/Idean/sonar-swift

A parser and source code analyzer for PL/SQL and Oracle SQL.

Run a security scan on your terraform with the very nice https://github.com/liamg/tfsec

This repo aims at providing practical examples on how to use r2frida

Security-focused static analysis for the Phoenix Framework

Argus static analysis framework

DEPRECATED. USE INSTEAD github.com/blockspacer/flextool

GCC plugin that embeds CPython inside the compiler

Spoon is a metaprogramming library to analyze and transform Java source code (up to Java 15). 🥄 is made with ❤️, 🍻 and ✨. It parses source files to build a well-designed AST with powerful analysis and transformation API.

A tool to automatically fix PHP Coding Standards issues

CogniCrypt is an Eclipse plugin that supports Java developers in using Java Cryptographic APIs.

Scanning APK file for URIs, endpoints & secrets.

APISan: Sanitizing API Usages through Semantic Cross-Checking

The Java Disassembler

PHP Implementation of the VS Code Language Server Protocol 🆚↔🖥

Semgrep rules registry

Vulnerability Static Analysis for Containers

Haxe Checkstyle

A static analyzer for Java, C, C++, and Objective-C

High-level library for executable binary file analysis

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

Docker image that provides static analysis tools for PHP

A curated list of mathematics documents ,Concepts, Study Materials , Algorithms and Codes available across the internet for machine learning and deep learning

DEPRECATED -- DevSkim plugin for Sublime Text 3.

GopherCI was a project to help you maintain high-quality Go projects, by checking each GitHub Pull Request, for backward incompatible changes, and a suite of other third party static analysis tools.

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

Parser for Angular projects.

A curated list of awesome Go linters. More than 60 linters and tools!

Binary Analysis Platform

Static Analyzer for Solidity

Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.

Awesome Python Security resources 🕶🐍🔐

A libre cross-platform disassembler.

🚦 An extensible linter for the TypeScript language

PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.

SonarSource Static Analyzer for JavaScript and TypeScript

Awesome Golang Security resources 🕶🔐

scalastyle

Converts JavaScript to TypeScript and TypeScript to better TypeScript.

Catch common Java mistakes as compile-time errors

Extension for PHPStan to allow analysis of Drupal code.

Andromeda - Interactive Reverse Engineering Tool for Android Applications

TypeScript Compiler API wrapper for static analysis and programmatic code changes.

Pacman-inspired game, for teaching testing purposes.

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

Java Code Static Metrics (Cohesion, Coupling, etc.)

A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code

Toolkit for enriching and speeding up static malware analysis

Securify v2.0