AmdhAndroid Mobile Device Hardening
Stars: ✭ 95 (+216.67%)
sbt-findbugsFindBugs static analysis plugin for sbt.
Stars: ✭ 47 (+56.67%)
static file analysisAnalysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (+13.33%)
Securify2Securify v2.0
Stars: ✭ 92 (+206.67%)
Sea DsaA new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
Stars: ✭ 90 (+200%)
infrared✨🚀 Blazing fast, inferred static type checker for JavaScript.
Stars: ✭ 46 (+53.33%)
gqlanalysisgqlanalysis makes easy to develop static analysis tools for GraphQL in Go.
Stars: ✭ 36 (+20%)
illuaminateVery WIP static analysis for Lua
Stars: ✭ 21 (-30%)
ethereum-dasmAn ethereum evm bytecode disassembler and static/dynamic analysis tool
Stars: ✭ 121 (+303.33%)
SpotbugsSpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Stars: ✭ 2,569 (+8463.33%)
jayhornStatic checker for Java
Stars: ✭ 54 (+80%)
CodecheckerCodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
Stars: ✭ 1,209 (+3930%)
static-code-analysis-pluginA plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.
Stars: ✭ 36 (+20%)
checkupA health checkup for your project.
Stars: ✭ 76 (+153.33%)
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (+133.33%)
Php codesnifferPHP_CodeSniffer is a set of two PHP scripts; the main phpcs script that tokenizes PHP, JavaScript and CSS files to detect violations of a defined coding standard, and a second phpcbf script to automatically correct coding standard violations. PHP_CodeSniffer is an essential development tool that ensures your code remains clean and consistent.
Stars: ✭ 9,004 (+29913.33%)
BellybuttonCustom Python linting through AST expressions
Stars: ✭ 196 (+553.33%)
SixtyPicalA 6502-oriented low-level programming language supporting advanced static analysis
Stars: ✭ 25 (-16.67%)
RadonVarious code metrics for Python code
Stars: ✭ 1,193 (+3876.67%)
malossTowards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
Stars: ✭ 46 (+53.33%)
lintsLint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command
Stars: ✭ 14 (-53.33%)
clair-cicdMaking CoreOS' Clair easily work in CI/CD pipelines
Stars: ✭ 27 (-10%)
Kube LinterKubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.
Stars: ✭ 1,177 (+3823.33%)
BEFA-LibraryHigh-level library for executable binary file analysis
Stars: ✭ 14 (-53.33%)
CheckovPrevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Stars: ✭ 3,572 (+11806.67%)
JAWJAW: A Graph-based Security Analysis Framework for JavaScript and Client-side CSRF
Stars: ✭ 26 (-13.33%)
Static Analysis⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+30933.33%)
alpine-shellcheckDocker image for Alpine Linux with latest ShellCheck, a static analysis tool for shell scripts.
Stars: ✭ 12 (-60%)
iec-checkerStatic analysis of IEC 61131-3 programs
Stars: ✭ 36 (+20%)
clamStatic Analyzer for LLVM bitcode based on Abstract Interpretation
Stars: ✭ 180 (+500%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: ✭ 1,112 (+3606.67%)
surveyor📐 Tools for surveying Dart packages
Stars: ✭ 40 (+33.33%)
CombInteractive code auditing and grep tool in Emacs Lisp
Stars: ✭ 58 (+93.33%)
kccA Small C Compiler
Stars: ✭ 18 (-40%)
snapSnap Programming Language
Stars: ✭ 20 (-33.33%)
Clj KondoA linter for Clojure code that sparks joy.
Stars: ✭ 1,083 (+3510%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (+523.33%)
analysis-modelA library to read static analysis reports into a Java object model
Stars: ✭ 74 (+146.67%)
Pysonar2PySonar2: an advanced semantic indexer for Python
Stars: ✭ 1,074 (+3480%)
vscode-tenkawa-phpVisual Studio Code extension integrating Tenkawa PHP language server.
Stars: ✭ 28 (-6.67%)
UTBotCppTool that generates unit test by C/C++ source code, trying to reach all branches and maximize code coverage
Stars: ✭ 59 (+96.67%)
IntellidroidA targeted input generator for Android that improves the effectiveness of dynamic malware analysis.
Stars: ✭ 46 (+53.33%)
nestifDetect deeply nested if statements in Go source code
Stars: ✭ 30 (+0%)
Go ToolsStaticcheck - The advanced Go linter
Stars: ✭ 4,317 (+14290%)
aparoidStatic and dynamic Android application security analysis
Stars: ✭ 62 (+106.67%)
Ruby Type InferenceDynamic definitions and types provider for ruby static analysis
Stars: ✭ 129 (+330%)
EnlightnYour performance & security consultant, an artisan command away.
Stars: ✭ 378 (+1160%)