VulsAgent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Stars: ✭ 8,844 (+11094.94%)
LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+11465.82%)
VulscanAdvanced vulnerability scanning with Nmap NSE
Stars: ✭ 2,305 (+2817.72%)
HoperSecurity tool to trace URL's jumps across the rel links to obtain the last URL
Stars: ✭ 50 (-36.71%)
WsltoolsWeb Scan Lazy Tools - Python Package
Stars: ✭ 288 (+264.56%)
PytypeA static type analyzer for Python code
Stars: ✭ 3,545 (+4387.34%)
PatrowlmanagerPatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (+359.49%)
TaipanWeb application vulnerability scanner
Stars: ✭ 359 (+354.43%)
WalaT.J. Watson Libraries for Analysis
Stars: ✭ 395 (+400%)
Kube ScoreKubernetes object analysis with recommendations for improved reliability and security
Stars: ✭ 1,128 (+1327.85%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (+616.46%)
NullawayA tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
Stars: ✭ 3,035 (+3741.77%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+3863.29%)
Static Analysis⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+11684.81%)
SuperSecure, Unified, Powerful and Extensible Rust Android Analyzer
Stars: ✭ 340 (+330.38%)
ApplicationinspectorA source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
Stars: ✭ 3,873 (+4802.53%)
PylintIt's not just a linter that annoys you!
Stars: ✭ 3,733 (+4625.32%)
Pep8speaksA GitHub app to automatically review Python code style over Pull Requests
Stars: ✭ 546 (+591.14%)
Security Code ScanVulnerability Patterns Detector for C# and VB.NET
Stars: ✭ 550 (+596.2%)
Phpdoc ParserNext-gen phpDoc parser with support for intersection types and generics
Stars: ✭ 569 (+620.25%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: ✭ 1,112 (+1307.59%)
CheckstyleCheckstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Stars: ✭ 6,481 (+8103.8%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+881.01%)
DependencycheckOWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
Stars: ✭ 3,571 (+4420.25%)
ChronosChronos - A static race detector for the go language
Stars: ✭ 272 (+244.3%)
Sonar Php 🐘 SonarPHP: PHP static analyzer for SonarQube & SonarLint
Stars: ✭ 288 (+264.56%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+3624.05%)
Reviewdog🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Stars: ✭ 4,541 (+5648.1%)
BanditBandit is a tool designed to find common security issues in Python code.
Stars: ✭ 3,763 (+4663.29%)
Salt ScannerLinux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Stars: ✭ 261 (+230.38%)
OssaOpen-Source Security Architecture | 开源安全架构
Stars: ✭ 796 (+907.59%)
MarsnakeSystem Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems
Stars: ✭ 16 (-79.75%)
SemgrepLightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Stars: ✭ 5,668 (+7074.68%)
PmdAn extensible multilanguage static code analyzer.
Stars: ✭ 3,667 (+4541.77%)
EngineDroidefense: Advance Android Malware Analysis Framework
Stars: ✭ 386 (+388.61%)
SecuritymanageframworkSecurity Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
Stars: ✭ 378 (+378.48%)
PhpinspectionseaA Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Stars: ✭ 1,211 (+1432.91%)
KraneKubernetes RBAC static Analysis & visualisation tool
Stars: ✭ 254 (+221.52%)
Sonar DotnetCode analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.html
Stars: ✭ 466 (+489.87%)
SalusSecurity scanner coordinator
Stars: ✭ 441 (+458.23%)
Jsprimea javascript static security analysis tool
Stars: ✭ 556 (+603.8%)
GosecGolang security checker
Stars: ✭ 5,694 (+7107.59%)
JackhammerJackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Stars: ✭ 633 (+701.27%)
PhanPhan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Stars: ✭ 5,194 (+6474.68%)
SonarjsSonarSource Static Analyzer for JavaScript and TypeScript
Stars: ✭ 696 (+781.01%)
Preallocprealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.
Stars: ✭ 419 (+430.38%)
Grauditgrep rough audit - source code auditing tool
Stars: ✭ 747 (+845.57%)
Sonar Java☕️ SonarSource Static Analyzer for Java Code Quality and Security
Stars: ✭ 745 (+843.04%)
Sn0intSemi-automatic OSINT framework and package manager
Stars: ✭ 814 (+930.38%)
BrakemanA static analysis security vulnerability scanner for Ruby on Rails applications
Stars: ✭ 6,281 (+7850.63%)
Golang TlsSimple Golang HTTPS/TLS Examples
Stars: ✭ 857 (+984.81%)
unimportA linter, formatter for finding and removing unused import statements.
Stars: ✭ 119 (+50.63%)
HellraiserVulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Stars: ✭ 413 (+422.78%)
InqlInQL - A Burp Extension for GraphQL Security Testing
Stars: ✭ 715 (+805.06%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+1035.44%)