487 Open source projects that are alternatives of or similar to phpcs-psr4-sniff

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

an advanced semantic indexer for Ruby

Extensions for PHPStan

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.

Java Code Static Metrics (Cohesion, Coupling, etc.)

Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.

Moved to Polymer/tools monorepo

Detect uses of legacy Java APIs

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

Tutorial and mock repository to teach people to contribute to open source

Scanning APK file for URIs, endpoints & secrets.

🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

Parser for Angular projects.

🐽 Tuned & very strict coding standards for PHP projects

TypeScript Compiler API wrapper for static analysis and programmatic code changes.

A set of utilities for checking Go sources. This repository has migrated to https://gitlab.com/opennota/check

Gradle plugin for PIT Mutation Testing

Duplicate code finder for Elixir

Soot - A Java optimization framework

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

GCC plugin that embeds CPython inside the compiler

SDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.

Semgrep rules registry

A plug-in for Google's Protocol Buffers (protobufs) compiler to lint .proto files for style violations.

A curated list of mathematics documents ,Concepts, Study Materials , Algorithms and Codes available across the internet for machine learning and deep learning

Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.

A reviewed list of useful PHP static analysis tools

Converts JavaScript to TypeScript and TypeScript to better TypeScript.

Go static program analyser

nodejsscan is a static security code scanner for Node.js applications.

LibScout: Third-party library detector for Java/Android apps

Checks syntax of reStructuredText and code blocks nested within it

A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

Dynamic definitions and types provider for ruby static analysis

Awesome Java Security Resources 🕶☕🔐

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Sturdy is a library for developing sound static analyses in Haskell.

A parser and source code analyzer for PL/SQL and Oracle SQL.

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

A list of computer-science readings I recommend

Argus static analysis framework

A tool to automatically fix Twig Coding Standards issues

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

Command line tool to validate configuration files

A tool to automatically fix PHP Coding Standards issues

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

GitHub action to set up PHP with extensions, php.ini configuration, coverage drivers, and various tools.

The Java Disassembler

FindBugs static analysis plugin for sbt.

Tool that generates unit test by C/C++ source code, trying to reach all branches and maximize code coverage

A Ruby code quality reporter

Custom Python linting through AST expressions

Standalone linter for ABAP

Haxe Checkstyle

Strict coding standard for Kotlin and a custom set of rules for detecting code smells, code style issues and bugs

IDAPython plugin for finding function strings recursively

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

Quality Police for Java projects

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.