UnimportA linter, formatter for finding and removing unused import statements.
Stars: ✭ 96 (-31.43%)
Setup PhpGitHub action to set up PHP with extensions, php.ini configuration, coverage drivers, and various tools.
Stars: ✭ 1,945 (+1289.29%)
IkosStatic analyzer for C/C++ based on the theory of Abstract Interpretation.
Stars: ✭ 1,368 (+877.14%)
Kube LinterKubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.
Stars: ✭ 1,177 (+740.71%)
ReadingA list of computer-science readings I recommend
Stars: ✭ 1,919 (+1270.71%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: ✭ 132 (-5.71%)
Php codesnifferPHP_CodeSniffer is a set of two PHP scripts; the main phpcs script that tokenizes PHP, JavaScript and CSS files to detect violations of a defined coding standard, and a second phpcbf script to automatically correct coding standard violations. PHP_CodeSniffer is an essential development tool that ensures your code remains clean and consistent.
Stars: ✭ 9,004 (+6331.43%)
StingrayIDAPython plugin for finding function strings recursively
Stars: ✭ 110 (-21.43%)
CrabCoRnucopia of ABstractions: a library for building abstract interpretation-based analyses
Stars: ✭ 102 (-27.14%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: ✭ 1,112 (+694.29%)
SquealerTelling tales on you for leaking secrets!
Stars: ✭ 97 (-30.71%)
Just Another Android AppAn Android base app with loads of cool libraries/configuration NOT MAINTAINED
Stars: ✭ 1,654 (+1081.43%)
AmdhAndroid Mobile Device Hardening
Stars: ✭ 95 (-32.14%)
Config LintCommand line tool to validate configuration files
Stars: ✭ 118 (-15.71%)
Sea DsaA new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
Stars: ✭ 90 (-35.71%)
I18n TasksManage translation and localization with static analysis, for Ruby i18n
Stars: ✭ 1,748 (+1148.57%)
CodecheckerCodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
Stars: ✭ 1,209 (+763.57%)
AbaplintStandalone linter for ABAP
Stars: ✭ 111 (-20.71%)
RadonVarious code metrics for Python code
Stars: ✭ 1,193 (+752.14%)
Frama C SnapshotRelease snapshots of the Frama-C platform for source code analysis
Stars: ✭ 129 (-7.86%)
Static Analysis⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+6550%)
PhpstanPHP Static Analysis Tool - discover bugs in your code without running it!
Stars: ✭ 10,534 (+7424.29%)
BapBinary Analysis Platform
Stars: ✭ 1,385 (+889.29%)
SobelowSecurity-focused static analysis for the Phoenix Framework
Stars: ✭ 1,103 (+687.86%)
Find Sec BugsThe SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Stars: ✭ 1,748 (+1148.57%)
PanopticonA libre cross-platform disassembler.
Stars: ✭ 1,376 (+882.86%)
TypestatConverts JavaScript to TypeScript and TypeScript to better TypeScript.
Stars: ✭ 136 (-2.86%)
ZpaA parser and source code analyzer for PL/SQL and Oracle SQL.
Stars: ✭ 124 (-11.43%)
Phpstan DrupalExtension for PHPStan to allow analysis of Drupal code.
Stars: ✭ 97 (-30.71%)
Jpacman FrameworkPacman-inspired game, for teaching testing purposes.
Stars: ✭ 95 (-32.14%)
Argus SafArgus static analysis framework
Stars: ✭ 117 (-16.43%)
Nodejsscannodejsscan is a static security code scanner for Node.js applications.
Stars: ✭ 1,874 (+1238.57%)
FlorentinoFast Static File Analysis Framework
Stars: ✭ 92 (-34.29%)
Php Cs FixerA tool to automatically fix PHP Coding Standards issues
Stars: ✭ 10,709 (+7549.29%)
Pest🐞 Primitive Erlang Security Tool
Stars: ✭ 79 (-43.57%)
PhpinspectionseaA Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Stars: ✭ 1,211 (+765%)
RstcheckChecks syntax of reStructuredText and code blocks nested within it
Stars: ✭ 130 (-7.14%)
Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: ✭ 10,212 (+7194.29%)
Anchore EngineA service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Stars: ✭ 1,192 (+751.43%)
Dependency CruiserValidate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.
Stars: ✭ 2,326 (+1561.43%)
Sonar Swiftsonar-swift.SonarQube iOS Plugin, Support Objective-C And Swift, Support Infer (SonarQube iOS 代码扫描插件,支持 Objective-C 和 Swift ,支持 Infer 结果导入 ) base on https://github.com/Idean/sonar-swift
Stars: ✭ 70 (-50%)
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (-22.86%)
Terraform Security ScanRun a security scan on your terraform with the very nice https://github.com/liamg/tfsec
Stars: ✭ 64 (-54.29%)
Ruby Type InferenceDynamic definitions and types provider for ruby static analysis
Stars: ✭ 129 (-7.86%)
GopherciGopherCI was a project to help you maintain high-quality Go projects, by checking each GitHub Pull Request, for backward incompatible changes, and a suite of other third party static analysis tools.
Stars: ✭ 105 (-25%)
MutantAutomated code reviews via mutation testing - semantic code coverage.
Stars: ✭ 1,794 (+1181.43%)
CscoutC code refactoring browser
Stars: ✭ 139 (-0.71%)
Php testabilityAnalyses and reports testability issues of a php codebase
Stars: ✭ 136 (-2.86%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (-8.57%)
Sast ScanFully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
Stars: ✭ 104 (-25.71%)