Awesome Open Source

Programming Languages

Search results for python static analysis

static-analysis x

186 search results found

Ruff ⭐ 25,957

An extremely fast Python linter and code formatter, written in Rust.

Semgrep ⭐ 9,612

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Pyre Check ⭐ 6,606

Performant type-checking for python.

Checkov ⭐ 6,284

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

Awesome autocompletion, static analysis and refactoring library for python

Pytype ⭐ 4,464

A static type analyzer for Python code

Apkleaks ⭐ 4,293

Scanning APK file for URIs, endpoints & secrets.

Flake8 ⭐ 3,237

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

Codechecker ⭐ 2,023

CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

Cmake Init ⭐ 1,584

The missing CMake project initializer

Radon ⭐ 1,561

Various code metrics for Python code

Anchore Engine ⭐ 1,528

A service that analyzes docker images and scans for vulnerabilities

Pysonar2 ⭐ 1,248

PySonar2: a semantic indexer for Python with interprocedual type inference

Pylyzer ⭐ 1,123

A fast static code analyzer & language server for Python

Dagda ⭐ 1,051

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

Ipyflow ⭐ 1,030

A reactive Python kernel for Jupyter notebooks.

Qu1cksc0pe ⭐ 1,021

All-in-One malware analysis tool.

Horusec ⭐ 1,000

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

Crosshair ⭐ 924

An analysis tool for Python that blurs the line between testing and type systems.

Awesome Python Security ⭐ 867

Awesome Python Security resources 🕶🐍🔐

Sast Scan ⭐ 697

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

Pep8speaks ⭐ 601

A GitHub :octocat: app to automatically review Python code style over Pull Requests

Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

Habomalhunter ⭐ 567

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.

Huskyci ⭐ 557

Performing security tests inside your CI

Prometeo ⭐ 515

An experimental Python-to-C transpiler and domain specific language for embedded high-performance computing

Vehicle Security Toolkit ⭐ 502

汽车/安卓/固件/代码安全测试工具集

Mobsfscan ⭐ 491

mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.

Fuzzable ⭐ 475

Framework for Automating Fuzzable Target Discovery with Static Analysis. Featured at Black Hat Arsenal USA 2022.

Python source code auditing and static analysis on a large scale

IDA Pro script to add some useful runtime info to static analysis

Tryceratops ⭐ 409

A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

🐺 Malware analysis platform

📝 Source repository of Qodana Help

Cfripper ⭐ 384

Library and CLI tool for analysing CloudFormation templates and check them for security compliance.

Crabviz ⭐ 379

🦀 A tool to generate interactive call graphs for multiple languages

Automatically generates FORtran Documentation from comments within the code.

Njsscan ⭐ 318

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Slitherin ⭐ 313

Slither Detectors by Pessimistic.io

Ida Minsc ⭐ 304

A plugin based on IDAPython for a functional DWIM interface. This allows one to script w/o documentation, as many commands can infer their parameters from what you currently have selected. Ongoing development is currently in the "persistence-refactor" branch. Use "Wiki" or "Discussions" for examples, and smash that "Star" button if you like this.

An open source script to perform malware static analysis on Portable Executable

Dlint is a tool for encouraging best coding practices and helping ensure we're writing secure Python code.

Pyanalyze ⭐ 278

A Python type checker

Static Python call graph generator

Codecat ⭐ 264

CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.

Bellybutton ⭐ 259

Custom Python linting through AST expressions

Scalpel ⭐ 242

Scalpel: The Python Static Analysis Framework

Qodana Action ⭐ 232

⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

Rstcheck ⭐ 214

Checks syntax of reStructuredText and code blocks nested within it

Automatic test case generation for python and static analysis library

OPEM (Open Source PEM Fuel Cell Simulation Tool)

Route Detect ⭐ 178

Find authentication (authn) and authorization (authz) security bugs in web application routes.

H(igh) A(ssurance) ROS - Static analysis of ROS application code.

Phantom Types ⭐ 171

Phantom types for Python.

Pydoctor ⭐ 154

This is pydoctor, an API documentation generator that works by static analysis.

Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.

Amarna is a static-analyzer and linter for the Cairo programming language.

Gcc Python Plugin ⭐ 132

GCC plugin that embeds CPython inside the compiler

🎍 Universal, Multi Language, Multi Paradigm code analyzer

MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs.

Codeclimate Duplication ⭐ 109

Code Climate engine for code duplication analysis

Findimports ⭐ 106

Static analysis of Python import statements

Libsast ⭐ 106

Generic SAST Library

Codeql Docker ⭐ 82

Ready to use docker image for CodeQL

Sast Scan ⭐ 81

Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!

Ethereum Dasm ⭐ 75

An ethereum evm bytecode disassembler and static/dynamic analysis tool

A suite of utilities to help with software supply chain challenges on nix targets

Salvaging Static Analysis

`mllint` is a command-line utility to evaluate the technical quality of Python Machine Learning (ML) projects by means of static analysis of the project's repository.

Panoptisch ⭐ 68

A recursive dependency scanner for Python projects

Making code quality easier.

Firehose ⭐ 64

Interchange format for results for static analysis tools

Packware ⭐ 61

Effects of packers on machine-learning-based malware classifiers that use only static analysis

Syntactic detection of malicious (obfuscated) JavaScript files

Infer Types ⭐ 56

A CLI tool to automatically add type annotations into Python code. Must have tool for annotating existing code.

Static and dynamic Android application security analysis

Code Review ⭐ 54

Automated static analysis & linting bot for Mozilla repositories

Officedissector ⭐ 51

Static analysis tools for Microsoft Office Open XML files and documents

FUTAG (FUzzing Target Automated Generator) - автоматический генератор фаззинг-оберток для библиотек

Pyggester ⭐ 48

Elevate your 🐍 code with optimal data structure recommendations from pyggester.

WIP: Python Type Checker and LSP 🔎

This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than currently available tools.

"git diff" over abstract syntax trees

Papermachete ⭐ 41

A project that uses Binary Ninja and GRAKN.AI to perform static analysis on binary files with the goal of identifying bugs in software.

Deobshell ⭐ 39

Powershell script deobfuscation using AST in Python

Squabble ⭐ 38

An extensible linter for SQL queries and migrations.

SCRUB is a platform for orchestration and aggregation of static code analysis tools.

Iec Checker ⭐ 34

Static analysis of IEC 61131-3 programs

A Simple PE File Heuristics Scanners

Paroxython ⭐ 33

Tag and recommend Python exercises based on algorithmic features

Malware Detection using Machine Learning (MDML)

A tool that executes a suite of static analysis tools upon a Python project.

Torchfix ⭐ 33

TorchFix - a linter for PyTorch-using code with autofix support

Jsonschema Typed ⭐ 32

Use JSON Schema for type checking in Python

Inline Plz ⭐ 31

Inline your lint messages

Sixtypical ⭐ 31

MIRROR of https://codeberg.org/catseye/SixtyPical : A 6502-oriented low-level programming language supporting advanced static analysis

Shlibvisibilitychecker ⭐ 30

Tool for locating internal symbols unnecessarily exported from shared libraries.

Related Searches

Python Django (28,897)

Python Machine Learning (20,195)

Python Dataset (14,792)

Python Flask (14,408)

Python Docker (13,757)

Python Tensorflow (13,736)

Python Command Line (13,351)

Python Deep Learning (13,092)

Python Jupyter Notebook (12,976)

Python Network (11,495)

1-100 of 186 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.