Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: β 10,212 (+7816.28%)
SobelowSecurity-focused static analysis for the Phoenix Framework
Stars: β 1,103 (+755.04%)
PhpinspectionseaA Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Stars: β 1,211 (+838.76%)
ApisanAPISan: Sanitizing API Usages through Semantic Cross-Checking
Stars: β 46 (-64.34%)
BapBinary Analysis Platform
Stars: β 1,385 (+973.64%)
Sonar Swiftsonar-swift.SonarQube iOS Plugin, Support Objective-C And Swift, Support Infer (SonarQube iOS 代η ζ«ζζδ»ΆοΌζ―ζ Objective-C ε Swift οΌζ―ζ Infer η»ζε―Όε
₯ ) base on https://github.com/Idean/sonar-swift
Stars: β 70 (-45.74%)
SpoonSpoon is a metaprogramming library to analyze and transform Java source code (up to Java 15). π₯ is made with β€οΈ, π» and β¨. It parses source files to build a well-designed AST with powerful analysis and transformation API.
Stars: β 1,078 (+735.66%)
Jpacman FrameworkPacman-inspired game, for teaching testing purposes.
Stars: β 95 (-26.36%)
Pestπ Primitive Erlang Security Tool
Stars: β 79 (-38.76%)
ClairVulnerability Static Analysis for Containers
Stars: β 8,356 (+6377.52%)
GopherciGopherCI was a project to help you maintain high-quality Go projects, by checking each GitHub Pull Request, for backward incompatible changes, and a suite of other third party static analysis tools.
Stars: β 105 (-18.6%)
Php Cs FixerA tool to automatically fix PHP Coding Standards issues
Stars: β 10,709 (+8201.55%)
Anchore EngineA service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Stars: β 1,192 (+824.03%)
PanopticonA libre cross-platform disassembler.
Stars: β 1,376 (+966.67%)
Terraform Security ScanRun a security scan on your terraform with the very nice https://github.com/liamg/tfsec
Stars: β 64 (-50.39%)
ZpaA parser and source code analyzer for PL/SQL and Oracle SQL.
Stars: β 124 (-3.88%)
CxxctpDEPRECATED. USE INSTEAD github.com/blockspacer/flextool
Stars: β 58 (-55.04%)
Phpstan DrupalExtension for PHPStan to allow analysis of Drupal code.
Stars: β 97 (-24.81%)
CognicryptCogniCrypt is an Eclipse plugin that supports Java developers in using Java Cryptographic APIs.
Stars: β 50 (-61.24%)
Php Language ServerPHP Implementation of the VS Code Language Server Protocol πβπ₯
Stars: β 1,019 (+689.92%)
Sea DsaA new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
Stars: β 90 (-30.23%)
CryptoanalysisCogniCrypt_SAST: CrySL-to-Static Analysis Compiler
Stars: β 36 (-72.09%)
PhpstanPHP Static Analysis Tool - discover bugs in your code without running it!
Stars: β 10,534 (+8065.89%)
Config LintCommand line tool to validate configuration files
Stars: β 118 (-8.53%)
CodecheckerCodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
Stars: β 1,209 (+837.21%)
Sast ScanFully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
Stars: β 104 (-19.38%)
Php codesnifferPHP_CodeSniffer is a set of two PHP scripts; the main phpcs script that tokenizes PHP, JavaScript and CSS files to detect violations of a defined coding standard, and a second phpcbf script to automatically correct coding standard violations. PHP_CodeSniffer is an essential development tool that ensures your code remains clean and consistent.
Stars: β 9,004 (+6879.84%)
RadonVarious code metrics for Python code
Stars: β 1,193 (+824.81%)
CrabCoRnucopia of ABstractions: a library for building abstract interpretation-based analyses
Stars: β 102 (-20.93%)
Kube LinterKubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.
Stars: β 1,177 (+812.4%)
Setup PhpGitHub action to set up PHP with extensions, php.ini configuration, coverage drivers, and various tools.
Stars: β 1,945 (+1407.75%)
Static AnalysisβοΈ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: β 9,310 (+7117.05%)
IkosStatic analyzer for C/C++ based on the theory of Abstract Interpretation.
Stars: β 1,368 (+960.47%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: β 1,112 (+762.02%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: β 128 (-0.78%)
CombInteractive code auditing and grep tool in Emacs Lisp
Stars: β 58 (-55.04%)
SquealerTelling tales on you for leaking secrets!
Stars: β 97 (-24.81%)
Clj KondoA linter for Clojure code that sparks joy.
Stars: β 1,083 (+739.53%)
AbaplintStandalone linter for ABAP
Stars: β 111 (-13.95%)
Pysonar2PySonar2: an advanced semantic indexer for Python
Stars: β 1,074 (+732.56%)
UnimportA linter, formatter for finding and removing unused import statements.
Stars: β 96 (-25.58%)
IntellidroidA targeted input generator for Android that improves the effectiveness of dynamic malware analysis.
Stars: β 46 (-64.34%)
ReadingA list of computer-science readings I recommend
Stars: β 1,919 (+1387.6%)
StoatSTatic (LLVM) Object file Analysis Tool
Stars: β 44 (-65.89%)
AmdhAndroid Mobile Device Hardening
Stars: β 95 (-26.36%)
DomtresatDominator Tree LLVM Pass to Test Satisfiability
Stars: β 42 (-67.44%)
StingrayIDAPython plugin for finding function strings recursively
Stars: β 110 (-14.73%)
Securify2Securify v2.0
Stars: β 92 (-28.68%)
Ruby Type InferenceDynamic definitions and types provider for ruby static analysis
Stars: β 129 (+0%)
Find Sec BugsThe SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Stars: β 1,748 (+1255.04%)
Argus SafArgus static analysis framework
Stars: β 117 (-9.3%)
Analyzerπ Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: β 108 (-16.28%)
FlorentinoFast Static File Analysis Framework
Stars: β 92 (-28.68%)