Awesome Open Source

Programming Languages

Search results for static analysis

static-analysis x

1,078 search results found

Pysonar2 ⭐ 1,248

PySonar2: a semantic indexer for Python with interprocedual type inference

Lazy_importer ⭐ 1,227

library for importing functions from dlls in a hidden, reverse engineer unfriendly way

Phpqa ⭐ 1,169

Docker image that provides static analysis tools for PHP

Phpdoc Parser ⭐ 1,160

Next-gen phpDoc parser with support for intersection types and generics

Tai E ⭐ 1,143

An easy-to-learn/use static analysis framework for Java

Node.js dependency tracing utility

Pylyzer ⭐ 1,123

A fast static code analyzer & language server for Python

Cfn_nag ⭐ 1,105

Linting tool for CloudFormation templates

Eslint Plugin Sonarjs ⭐ 1,090

SonarJS rules for ESLint

Sonar Java ⭐ 1,068

☕ SonarSource Static Analyzer for Java Code Quality and Security

Php Language Server ⭐ 1,061

PHP Implementation of the VS Code Language Server Protocol 🆚↔🖥

Dagda ⭐ 1,051

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

R2frida ⭐ 1,045

Radare2 and Frida better together.

Ipyflow ⭐ 1,030

A reactive Python kernel for Jupyter notebooks.

Qu1cksc0pe ⭐ 1,021

All-in-One malware analysis tool.

Horusec ⭐ 1,000

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

Sonarjs ⭐ 982

SonarSource Static Analyzer for JavaScript and TypeScript

Opensca Cli ⭐ 964

OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.

Flowdroid ⭐ 957

FlowDroid Static Data Flow Tracker

PHP Architecture Tester - Easy to use architectural testing tool for PHP ✔️

Crosshair ⭐ 924

An analysis tool for Python that blurs the line between testing and type systems.

Jar Analyzer Gui ⭐ 900

建议使用新版：https://github.com/jar-analyzer/jar-analyze

Awesome Go Linters ⭐ 880

A curated list of awesome Go linters. More than 60 linters and tools!

Awesome Python Security ⭐ 867

Awesome Python Security resources 🕶🐍🔐

A LLVM-based static analysis framework.

Enlightn ⭐ 837

Your performance & security consultant, an artisan command away.

Security Code Scan ⭐ 801

Vulnerability Patterns Detector for C# and VB.NET

Meziantou.analyzer ⭐ 800

A Roslyn analyzer to enforce some good practices in C#.

Awesome Linters ⭐ 786

A community-driven list of awesome linters.

Rubocop Rspec ⭐ 777

Code style checking for RSpec files

The Felix Programming Language

Sonarts ⭐ 746

Static code analyzer for TypeScript

Go Ruleguard ⭐ 731

Define and run pattern-based custom linting rules.

Sonar Dotnet ⭐ 716

Code analyzer for C# and VB.NET projects

Security scanner coordinator

T.J. Watson Libraries for Analysis, with frontends for Java, Android, and JavaScript, and may common static program analyses

Semgrep Rules ⭐ 698

Semgrep rules registry

Sast Scan ⭐ 697

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

Andromeda ⭐ 688

Andromeda - Interactive Reverse Engineering Tool for Android Applications

Betterscan Ce ⭐ 673

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)

An experimental code analyzer for Julia. No need for additional type annotations.

Scalastyle ⭐ 657

Phpstan Symfony ⭐ 635

Symfony extension for PHPStan

IDAPython Made Easy

Kubernetes RBAC static analysis & visualisation tool

Saferwall ⭐ 632

☁️ Collaborative Malware Analysis Platform at Scale

Opentelemetry Php ⭐ 631

The OpenTelemetry PHP Library

Phpcs Calisthenics Rules ⭐ 612

Object Calisthenics rules for PHP_CodeSniffer

Pep8speaks ⭐ 601

A GitHub :octocat: app to automatically review Python code style over Pull Requests

Emacs Lisp Static Analyzer and gradual type system.

Apkhunt ⭐ 580

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

Habomalhunter ⭐ 567

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.

Huskyci ⭐ 557

Performing security tests inside your CI

Backwardcompatibilitycheck ⭐ 553

🆎 Tool to compare two revisions of a class API to check for BC breaks

Phpstan Doctrine ⭐ 542

Doctrine extensions for PHPStan

PHP Magic Number Detector

Jsprime ⭐ 529

a javascript static security analysis tool

Phpstan Strict Rules ⭐ 523

Extra strict and opinionated rules for PHPStan

Prometeo ⭐ 515

An experimental Python-to-C transpiler and domain specific language for embedded high-performance computing

Astroid ⭐ 509

A common base representation of python source code for pylint and other projects

Strict coding standard for Kotlin and a custom set of rules for detecting code smells, code style issues and bugs

Vehicle Security Toolkit ⭐ 502

汽车/安卓/固件/代码安全测试工具集

Awesome Llvm Security ⭐ 500

awesome llvm security [Welcome to PR]

A static code analysis tool for Crystal

Peframe ⭐ 495

PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.

Bolt is a language with in-built data-race freedom!

Mobsfscan ⭐ 491

mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.

Psychec ⭐ 486

A compiler frontend for the C programming language

Semgrep Rules ⭐ 478

A collection of my Semgrep rules to facilitate vulnerability research.

Codecompass ⭐ 478

CodeCompass is a software comprehension tool for large scale software written in C/C++ and Java

Go fearless SQL. Sqlvet performs static analysis on raw SQL queries in your Go code base.

Fuzzable ⭐ 475

Framework for Automating Fuzzable Target Discovery with Static Analysis. Featured at Black Hat Arsenal USA 2022.

Php_codesniffer ⭐ 472

PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.

🔐 A code style linter for Elixir

All-in-one devtool to automatically analyze, search and visualize dependencies from JavaScript, TypeScript (JSX/TSX) and Node.js (ES6, CommonJS)

Python source code auditing and static analysis on a large scale

Jar Analyzer ⭐ 467

Jar Analyzer - 一个JAR包分析工具，批量分析搜索，方法调用关系搜索，字符串搜索，Spring分析，CFG分析，JV Stack Frame分析，远程分析Tomcat，自定义SQL查询

Codeql Go ⭐ 455

The CodeQL extractor and libraries for Go.

Privado ⭐ 454

Open Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Data Safety Report.

Php Analyzer ⭐ 447

Performs advanced static analysis on PHP code

IDA Pro script to add some useful runtime info to static analysis

Binee: binary emulation environment

Prealloc ⭐ 436

prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.

Awesome Dotnet Security ⭐ 430

Awesome .NET Security Resources

Cake a C23 front end and transpiler written in C

Phpstan Phpunit ⭐ 413

PHPUnit extensions and rules for PHPStan

Inline_syscall ⭐ 412

Inline syscalls made easy for windows on clang

Tryceratops ⭐ 409

A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

Droidefense: Advance Android Malware Analysis Framework

🐺 Malware analysis platform

Seahorn ⭐ 391

SeaHorn Verification Framework

Static analysis and style linter for Ruby code.

📝 Source repository of Qodana Help

Cfripper ⭐ 384

Library and CLI tool for analysing CloudFormation templates and check them for security compliance.

The implementation of the Rascal meta-programming language (including interpreter, type checker, parser generator, compiler and JVM based run-time system)

Cargo Inspect ⭐ 381

Pssst!... see what Rust is doing behind the curtains 🕵🤫

Web Scripts ⭐ 380

DEPRECATED: A collection of base configs and CLI wrappers used to speed up development @ Spotify.

📄 Documented Style Sheets Parser

Crabviz ⭐ 379

🦀 A tool to generate interactive call graphs for multiple languages

101-200 of 1,078 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.