1,142 skills found · Page 4 of 39
microsoft / InfersharpInfer# is an interprocedural and scalable static code analyzer for C#. Via the capabilities of Facebook's Infer, this tool detects null dereferences, resource leaks, and thread-safety violations. It also performs taint flow tracking to detect critical security vulnerabilities like SQL injections.
MobSF / Mobsfscanmobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.
KDE / ClazyQt-oriented static code analyzer based on the Clang framework
davidfraser / Pyanpyan is a Python module that performs static analysis of Python code to determine a call dependency graph between functions and methods. This is different from running the code and seeing which functions are called and how often; there are various tools that will generate a call graph in that way, usually using debugger or profiling trace hooks - for example: https://pycallgraph.readthedocs.org/ This code was originally written by Edmund Horner, and then modified by Juha Jeronen. See README for the original blog posts and links to their repositories.
VKCOM / NoverifyPretty fast linter (code static analysis utility) for PHP
Privado-Inc / PrivadoOpen Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Data Safety Report.
mamuz / PhpDependencyAnalysisStatic code analysis to find violations in a dependency graph
david-a-wheeler / Flawfindera static analysis tool for finding vulnerabilities in C/C++ source code
crystal-ameba / AmebaA static code analysis tool for Crystal
Picodes / 4naly3erStatic smart contract code 4naly3er
cuttlebelle / CuttlebelleThe react static site generator that separates editing and code concerns
scapegoat-scala / ScapegoatScala compiler plugin for static code analysis
insidersec / InsiderStatic Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
HBehrens / PuncoverAnalyses C/C++ build output for code size, static variables, and stack usage
Lil-House / Pyarmor Static Unpack 1shot✅ No execution ✅ Pyarmor 8.0 - 9.2.x (latest) ✅ Universal ✅ Statically convert obfuscated Python scripts to disassembly and (experimentally) source code.
eclipse-steady / SteadyAnalyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/
Cryin / JavaIDjava source code static code analysis and danger function identify prog
maaaaz / AndrowarnYet another static code analyzer for malicious Android applications
houqp / SqlvetGo fearless SQL. Sqlvet performs static analysis on raw SQL queries in your Go code base.
SourceCode-AI / AuraPython source code auditing and static analysis on a large scale
