Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+16.9%)
StingrayIDAPython plugin for finding function strings recursively
Stars: ✭ 110 (-95.69%)
Perl CriticThe leading static analyzer for Perl. Configurable, extensible, powerful.
Stars: ✭ 149 (-94.16%)
PhpstanPHP Static Analysis Tool - discover bugs in your code without running it!
Stars: ✭ 10,534 (+312.94%)
SyftCLI tool and library for generating a Software Bill of Materials from container images and filesystems
Stars: ✭ 196 (-92.32%)
Sast ScanFully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
Stars: ✭ 104 (-95.92%)
SysSys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
Stars: ✭ 149 (-94.16%)
CrabCoRnucopia of ABstractions: a library for building abstract interpretation-based analyses
Stars: ✭ 102 (-96%)
SyntFind similar functions and classes in your JavaScript/TypeScript code
Stars: ✭ 178 (-93.02%)
IkosStatic analyzer for C/C++ based on the theory of Abstract Interpretation.
Stars: ✭ 1,368 (-46.37%)
Crab LlvmStatic Analyzer for LLVM bitcode based on Abstract Interpretation
Stars: ✭ 143 (-94.39%)
SquealerTelling tales on you for leaking secrets!
Stars: ✭ 97 (-96.2%)
UnimportA linter, formatter for finding and removing unused import statements.
Stars: ✭ 96 (-96.24%)
AmdhAndroid Mobile Device Hardening
Stars: ✭ 95 (-96.28%)
Rubysonaran advanced semantic indexer for Ruby
Stars: ✭ 175 (-93.14%)
MutantAutomated code reviews via mutation testing - semantic code coverage.
Stars: ✭ 1,794 (-29.67%)
Sea DsaA new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
Stars: ✭ 90 (-96.47%)
DiktatStrict coding standard for Kotlin and a custom set of rules for detecting code smells, code style issues and bugs
Stars: ✭ 196 (-92.32%)
CscoutC code refactoring browser
Stars: ✭ 139 (-94.55%)
CodecheckerCodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
Stars: ✭ 1,209 (-52.61%)
PytA Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Stars: ✭ 2,061 (-19.21%)
Php codesnifferPHP_CodeSniffer is a set of two PHP scripts; the main phpcs script that tokenizes PHP, JavaScript and CSS files to detect violations of a defined coding standard, and a second phpcbf script to automatically correct coding standard violations. PHP_CodeSniffer is an essential development tool that ensures your code remains clean and consistent.
Stars: ✭ 9,004 (+252.96%)
I18n TasksManage translation and localization with static analysis, for Ruby i18n
Stars: ✭ 1,748 (-31.48%)
RadonVarious code metrics for Python code
Stars: ✭ 1,193 (-53.23%)
LibscoutLibScout: Third-party library detector for Java/Android apps
Stars: ✭ 217 (-91.49%)
Kube LinterKubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.
Stars: ✭ 1,177 (-53.86%)
Php testabilityAnalyses and reports testability issues of a php codebase
Stars: ✭ 136 (-94.67%)
Static Analysis⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+264.95%)
JpeekJava Code Static Metrics (Cohesion, Coupling, etc.)
Stars: ✭ 168 (-93.41%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: ✭ 1,112 (-56.41%)
Just Another Android AppAn Android base app with loads of cool libraries/configuration NOT MAINTAINED
Stars: ✭ 1,654 (-35.16%)
CombInteractive code auditing and grep tool in Emacs Lisp
Stars: ✭ 58 (-97.73%)
Woke✊ Detect non-inclusive language in your source code.
Stars: ✭ 190 (-92.55%)
Clj KondoA linter for Clojure code that sparks joy.
Stars: ✭ 1,083 (-57.55%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: ✭ 132 (-94.83%)
Pysonar2PySonar2: an advanced semantic indexer for Python
Stars: ✭ 1,074 (-57.9%)
IntellidroidA targeted input generator for Android that improves the effectiveness of dynamic malware analysis.
Stars: ✭ 46 (-98.2%)
Frama C SnapshotRelease snapshots of the Frama-C platform for source code analysis
Stars: ✭ 129 (-94.94%)
StoatSTatic (LLVM) Object file Analysis Tool
Stars: ✭ 44 (-98.28%)
Vulny Code Static AnalysisPython script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Stars: ✭ 207 (-91.89%)
DomtresatDominator Tree LLVM Pass to Test Satisfiability
Stars: ✭ 42 (-98.35%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (-94.98%)
CryptoanalysisCogniCrypt_SAST: CrySL-to-Static Analysis Compiler
Stars: ✭ 36 (-98.59%)
Bytecode ViewerA Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
Stars: ✭ 12,606 (+394.16%)
Cfmtcfmt is a tool to wrap Go comments over a certain length to a new line.
Stars: ✭ 28 (-98.9%)
CkCode metrics for Java code by means of static analysis
Stars: ✭ 187 (-92.67%)
ReadingA list of computer-science readings I recommend
Stars: ✭ 1,919 (-24.77%)
BoltBolt is a language with in-built data-race freedom!
Stars: ✭ 215 (-91.57%)
Forbidden ApisPoliceman's Forbidden API Checker
Stars: ✭ 216 (-91.53%)
SpotbugsSpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Stars: ✭ 2,569 (+0.71%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-92.67%)
ApkleaksScanning APK file for URIs, endpoints & secrets.
Stars: ✭ 2,707 (+6.12%)
Php Cs FixerA tool to automatically fix PHP Coding Standards issues
Stars: ✭ 10,709 (+319.8%)