Static Code Scan
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Static Code Scan | 1,070 | 6 years ago | other | JavaScript | ||||||
| Run this quick static code scan on any URL to check for out-of-date libraries, layout issues and accessibility. | ||||||||||
| Burpfastjsonscan | 683 | a year ago | Java | |||||||
| 一款基于BurpSuite的被动式FastJson检测插件 | ||||||||||
| Folder Explorer | 578 | 6 months ago | 43 | mit | CSS | |||||
| 分析文件目录,统计数据并以树形结构和图表的形式展示结果,也可以导出多种格式留存 | ||||||||||
| Cloud Reports | 254 | 2 years ago | 6 | gpl-3.0 | TypeScript | |||||
| Scans your AWS cloud resources and generates reports. Check out free hosted version: | ||||||||||
| Nmap Formatter | 141 | 24 days ago | 15 | May 15, 2022 | 3 | mit | Go | |||
| A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot) or sqlite. Simply put it's nmap converter. | ||||||||||
| Ztag | 87 | 5 years ago | 19 | apache-2.0 | Python | |||||
| Tagging and annotation framework for scan data | ||||||||||
| Masscan | 53 | 7 months ago | 1 | apache-2.0 | Go | |||||
| Masscan is a golang library to run masscan scans, parse scan results. | ||||||||||
| Unicc | 46 | 10 months ago | 3 | mit | C | |||||
| LALR parser generator targetting C, C++, Python, JavaScript, JSON and XML | ||||||||||
| Fatherhood | 43 | 9 years ago | May 23, 2021 | mit | Go | |||||
| Fatherhood is a JSON stream decoding library wrapping megajson's scanner. | ||||||||||
| Keyv File | 37 |  | 7 | 21 | 2 years ago | 15 | May 15, 2020 | 9 | mit | TypeScript |
| File storage adapter for Keyv, using json to serialize data. | ||||||||||
THIS PROJECT IS DEPRECATED
This project is deprecated and no longer maintained. Please check sonar if you need a similar tool but more flexible and modern.
Static Scan
This tool analyzes the HTML, CSS, and JavaScript of a site or application for common coding issues. It warns about practices such as incomplete specification of CSS properties, invalid or incorrect doctypes, and obsolete versions of popular JavaScript libraries.
It's easiest to use modern.IE by going to the modern.IE site and entering the URL to scan there. To customize the scan, or to use the scan to process files behind a firewall, you can clone and build the files from this repo and run the scan locally.
How it works
The modern.IE local scan runs on a system behind your firewall; that system must have access to the internal web site or application that is to be scanned. Once the files have been analyzed, the analysis results are sent back to the modern.IE site to generate a complete formatted report that includes advice on remediating any issues. The report generation code and formatted pages from the modern.IE site are not included in this repo.
Since the local scan generates JSON output, you can alternatively use it as a standalone scanner or incorporate it into a project's build process by processing the JSON with a local script.
The main service for the scan is in the app.js file; it acts as an HTTP server.
It loads the contents of the web page and calls the individual tests, located in /lib/checks/.
Once all the checks have completed, it responds with a JSON object representing the results.
Installation and configuration
- Install node.js. You can use a pre-compiled Windows executable if desired. Version 0.10 or higher is required.
- If you want to modify the code and submit revisions, Install git. You can choose GitHub for Windows instead if you prefer. Then clone this repository. If you just want to run locally then downloading then you just need to download the latest version from here and unzip it
- Install dependencies. From the Modern.ie subdirectory, type:
npm install - If desired, set an environment variable
PORTto define the port the service will listen on. By default the port number is 1337. The Windows command to set the port to 8181 would be:set PORT=8181
CLI
The scanner has a CLI interface that prints directly the results for a website. You just have to run the following command to use it:
static-code-scan
Note: Windows users may need to navigate to the Modern.ie subdirectory and type npm link to get the static-code-scan command to work.
Via browser
- Start the scan service: From the Modern.ie subdirectory, type:
node app.jsand the service should respond with a status message containing the port number it is using. - Run a browser and go to the service's URL; assuming you are using the default port and are on the same computer, the URL would be:
http://localhost:1337/ - Follow the instructions on the page.
Testing
The project contains a set of unit tests in the /test/ directory. To run the unit tests, type grunt nodeunit.
JSON output
Once the scan completes, it produces a set of scan results in JSON format:
{
"testName" : {
"testName": "Short description of the test",
"passed" : true/false,
"data": { /* optional data describing the results found */ }
}
}
The data property will vary depending on the test, but will generally provide further detail about any issues found.
Code of Conduct
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact [email protected] with any additional questions or comments.
