932 Open source projects that are alternatives of or similar to Phan

☕️ SonarSource Static Analyzer for Java Code Quality and Security

Vulnerability Patterns Detector for C# and VB.NET

⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.

[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.

SonarLint integration for Apache Netbeans

Lint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command

Chronos - A static race detector for the go language

Java bytecode analyzer customizable via JSON rules

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

Static analysis framework for .NET programs.

Magic number detector for Go.

Nette Framework class reflection extension for PHPStan & framework-specific rules

PHPStan extension for webmozart/assert

unimport is a Go static analysis tool to find unnecessary import aliases.

CSS complexity linter

Work-in-progress tool to reverse unity's IL2CPP toolchain.

Golang security checker

EBA is a static bug finder for C.

A library to read static analysis reports into a Java object model

OpenStaticAnalyzer is a source code analyzer tool, which can perform deep static analysis of the source code of complex systems.

Code Climate Engine for ESLint

identypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).

An open-source cross-platform traceroute/ping analyser.

A plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.

Next-gen phpDoc parser with support for intersection types and generics

Code Climate engine for code duplication analysis

Automatic test case generation for python and static analysis library

Scalpel: The Python Static Analysis Framework

Kubernetes RBAC static Analysis & visualisation tool

A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead

Go Taint CHeck Analyser

Simple module to analyse bean construction in Java Spring

A GitHub app to automatically review Python code style over Pull Requests

A library for detecting swapped arguments in function calls, and a Clang Static Analyzer plugin used to demonstrate the library.

PHP Magic Number Detector

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

Github mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

SQL Server static code analysis rules for SSDT database projects

Code Climate Engine for PHP Code Sniffer

prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.

FindBugs static analysis plugin for sbt.

A linter, formatter for finding and removing unused import statements.

A Simple PE File Heuristics Scanners

🐘 SonarPHP: PHP static analyzer for SonarQube & SonarLint

A static type analyzer for Python code

Define and run pattern-based custom linting rules.

Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules

Binee: binary emulation environment

Extra strict and opinionated rules for PHPStan

⚙️ Scan your Java, Kotlin, PHP, Python, JavaScript, TypeScript projects at GitHub with Qodana

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

An extensible multilanguage static code analyzer.

Doctrine extensions for PHPStan

Static code analysis for Kotlin

It's not just a linter that annoys you!

The Exakat Engine : smart static analysis for PHP

T.J. Watson Libraries for Analysis

Duplicate code finder for Elixir

SDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.