Forbidden ApisPoliceman's Forbidden API Checker
Stars: β 216 (+54.29%)
Vulny Code Static AnalysisPython script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Stars: β 207 (+47.86%)
SpotbugsSpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Stars: β 2,569 (+1735%)
SyftCLI tool and library for generating a Software Bill of Materials from container images and filesystems
Stars: β 196 (+40%)
BellybuttonCustom Python linting through AST expressions
Stars: β 196 (+40%)
DiktatStrict coding standard for Kotlin and a custom set of rules for detecting code smells, code style issues and bugs
Stars: β 196 (+40%)
CheckovPrevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Stars: β 3,572 (+2451.43%)
Wokeβ Detect non-inclusive language in your source code.
Stars: β 190 (+35.71%)
CodeclimateCode Climate CLI
Stars: β 2,273 (+1523.57%)
CkCode metrics for Java code by means of static analysis
Stars: β 187 (+33.57%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). π
Stars: β 187 (+33.57%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: β 2,982 (+2030%)
BodycloseAnalyzer: checks whether HTTP response body is closed and a re-use of TCP connection is not blocked.
Stars: β 181 (+29.29%)
SyntFind similar functions and classes in your JavaScript/TypeScript code
Stars: β 178 (+27.14%)
Securify[DEPRECATED] Security Scanner for Ethereum Smart Contracts
Stars: β 177 (+26.43%)
Rubysonaran advanced semantic indexer for Ruby
Stars: β 175 (+25%)
CrepeDatalog compiler in Rust as a procedural macro
Stars: β 175 (+25%)
PytA Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Stars: β 2,061 (+1372.14%)
InferA static analyzer for Java, C, C++, and Objective-C
Stars: β 12,823 (+9059.29%)
JpeekJava Code Static Metrics (Cohesion, Coupling, etc.)
Stars: β 168 (+20%)
R2frida WikiThis repo aims at providing practical examples on how to use r2frida
Stars: β 168 (+20%)
Phpstan Deprecation RulesPHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.
Stars: β 160 (+14.29%)
PhpmdPHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.
Stars: β 1,992 (+1322.86%)
CflintStatic code analysis for CFML (a linter)
Stars: β 156 (+11.43%)
ApkleaksScanning APK file for URIs, endpoints & secrets.
Stars: β 2,707 (+1833.57%)
I18n ExtractManage localization with static analysis. π
Stars: β 152 (+8.57%)
NgastParser for Angular projects.
Stars: β 152 (+8.57%)
Perl CriticThe leading static analyzer for Perl. Configurable, extensible, powerful.
Stars: β 149 (+6.43%)
Ts MorphTypeScript Compiler API wrapper for static analysis and programmatic code changes.
Stars: β 2,384 (+1602.86%)
SysSys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
Stars: β 149 (+6.43%)
Crab LlvmStatic Analyzer for LLVM bitcode based on Abstract Interpretation
Stars: β 143 (+2.14%)
SootSoot - A Java optimization framework
Stars: β 2,049 (+1363.57%)
Bytecode ViewerA Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
Stars: β 12,606 (+8904.29%)