Topic: static-analysis Goto Github

Some thing interesting about static-analysis

👇 Here are 1776 public repositories matching this topic...

analysis-tools-dev / static-analysis

static-analysis,⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Organization: analysis-tools-dev

Home Page: https://analysis-tools.dev

static-analysis static-analyzers linter code-quality awesome-list static-code-analysis sast analysis

anchore / grype

static-analysis,A vulnerability scanner for container images and filesystems

Organization: anchore

containers security vulnerability docker golang go static-analysis container-image tool oci

anchore / syft

static-analysis,CLI tool and library for generating a Software Bill of Materials from container images and filesystems

Organization: anchore

containers docker go golang static-analysis tool oci sbom spdx cyclonedx

aquasecurity / tfsec

static-analysis,Security scanner for your Terraform code

Organization: aquasecurity

Home Page: https://aquasecurity.github.io/tfsec

terraform security scanner static-analysis ci aws azure google-cloud-platform compliance infrastructure-as-code

ast-grep / ast-grep

static-analysis,⚡A CLI tool for code structural search, lint and rewriting. Written in Rust

Organization: ast-grep

Home Page: https://ast-grep.github.io/

codemod linter ast babel command-line command-line-tool grep tree-sitter codereview rust

astral-sh / ruff

static-analysis,An extremely fast Python linter and code formatter, written in Rust.

Organization: astral-sh

Home Page: https://docs.astral.sh/ruff

linter pep8 python python3 ruff rust rustpython static-analysis static-code-analysis style-guide styleguide

bridgecrewio / checkov

static-analysis,Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

Organization: bridgecrewio

Home Page: https://www.checkov.io/

terraform static-analysis aws gcp azure aws-security cloudformation scans compliance kubernetes

static-analysis,Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.

Organization: checkstyle

Home Page: https://checkstyle.org

java static-code-analysis command-line-tool static-analysis code-quality

col-e / recaf

static-analysis,The modern Java bytecode editor

User: col-e

Home Page: https://coley.software/Recaf/

java bytecode bytecode-engineering reverse-engineering jvm-bytecode decompile decompiler agent asm javafx-application

crytic / slither

static-analysis,Static Analyzer for Solidity and Vyper

Organization: crytic

Home Page: https://blog.trailofbits.com/2018/10/19/slither-a-solidity-static-analysis-framework/

solidity ethereum static-analysis vyper

danmar / cppcheck

static-analysis,static analysis of C/C++ code

User: danmar

Home Page: https://cppcheck.sourceforge.io/

cppcheck c-plus-plus static-analysis cross-platform c cpp

davidhalter / jedi

static-analysis,Awesome autocompletion, static analysis and refactoring library for python

User: davidhalter

Home Page: http://jedi.readthedocs.io

static-analysis auto-complete python refactoring type-inference

detekt / detekt

static-analysis,Static code analysis for Kotlin

Organization: detekt

Home Page: https://detekt.dev

static analysis kotlin codesmells linter gradle-plugin static-analysis lint code-quality hacktoberfest

didi / booster

static-analysis,🚀Optimizer for mobile applications

Organization: didi

Home Page: https://booster.johnsonlee.io

android bytecode-manipulation gradle-plugin optimizer static-analysis

dominikh / go-tools

static-analysis,Staticcheck - The advanced Go linter

User: dominikh

Home Page: https://staticcheck.dev

linters static-analysis linter staticcheck sponsor

dsherret / ts-morph

static-analysis,TypeScript Compiler API wrapper for static analysis and programmatic code changes.

User: dsherret

Home Page: https://ts-morph.com

typescript ast code-generation javascript static-analysis

dwisiswant0 / apkleaks

static-analysis,Scanning APK file for URIs, endpoints & secrets.

User: dwisiswant0

mobile-security android-security reverse-engineering bugbounty static-analysis apk scanning-apk apk-parser

facebook / infer

static-analysis,A static analyzer for Java, C, C++, and Objective-C

Organization: facebook

Home Page: http://fbinfer.com/

static-analysis static-code-analysis code-quality java c cpp objective-c

facebook / pyre-check

static-analysis,Performant type-checking for python.

Organization: facebook

Home Page: https://pyre-check.org/

python typechecker type-check static-analysis ocaml code-quality abstract-interpretation security program-analysis taint-analysis

google / error-prone

static-analysis,Catch common Java mistakes as compile-time errors

Organization: google

Home Page: https://errorprone.info

java static-analysis

hadolint / hadolint

static-analysis,Dockerfile linter, validate inline bash, written in Haskell

Organization: hadolint

dockerfile linter shellcheck haskell dockerfile-linter docker static-analysis

horsicq / detect-it-easy

static-analysis,Program for determining types of files for Windows, Linux and MacOS.

User: horsicq

Home Page: http://ntinfo.biz

debugger detect unpacker disassembler reverse-engineering elf packer detector binary-analysis program-analysis

koalaman / shellcheck

static-analysis,ShellCheck, a static analysis tool for shell scripts

User: koalaman

Home Page: https://www.shellcheck.net

haskell shell static-analysis bash linter developer-tools

konloch / bytecode-viewer

static-analysis,A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

User: konloch

Home Page: https://bytecodeviewer.com

java-decompiler apk java procyon cfr fernflower krakatau bytecode-viewer bytecode smali

mgechev / revive

static-analysis,🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

User: mgechev

Home Page: https://revive.run

go golang linter static-analysis golint static-code-analysis hacktoberfest

mobsf / mobile-security-framework-mobsf

static-analysis,Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Organization: mobsf

Home Page: https://opensecurity.in

static-analysis dynamic-analysis mobsf android-security mobile-security windows-mobile-security ios-security api-testing web-security malware-analysis

nikic / php-parser

static-analysis,A PHP parser written in PHP

User: nikic

php parser ast static-analysis

ondrajz / go-callvis

static-analysis,Visualize call graph of a Go program using Graphviz

User: ondrajz

Home Page: https://ofabry.github.io/go-callvis

callgraph graphviz visualization golang golang-tools static-analysis awesome-go

owasp / owasp-mastg

static-analysis,The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

Organization: owasp

Home Page: https://mas.owasp.org/

mobile-app pentesting android-application ios-app runtime-analysis network-analysis static-analysis reverse-engineering dynamic-analysis mobile-security

palantir / tslint

static-analysis,:vertical_traffic_light: An extensible linter for the TypeScript language

Organization: palantir

Home Page: http://palantir.github.io/tslint/

typescript linting-rules linter tslint static-analysis octo-correct-managed

phan / phan

static-analysis,Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.

Organization: phan

Home Page: https://github.com/phan/phan/wiki

php static-analysis phan analysis analyzer static-code-analysis

php-cs-fixer / php-cs-fixer

static-analysis,A tool to automatically fix PHP Coding Standards issues

Organization: php-cs-fixer

Home Page: https://cs.symfony.com

code-standards code-style hacktoberfest php static-analysis

phpstan / phpstan

static-analysis,PHP Static Analysis Tool - discover bugs in your code without running it!

Organization: phpstan

Home Page: https://phpstan.org/

phpstan static-analysis php php7 testing static-code-analysis static-analyzer

pmd / pmd

static-analysis,An extensible multilanguage static code analyzer.

Organization: pmd

Home Page: https://pmd.github.io

code-analysis code-quality static-analysis static-code-analysis linter java apex plsql swift

presidentbeef / brakeman

static-analysis,A static analysis security vulnerability scanner for Ruby on Rails applications

User: presidentbeef

Home Page: https://brakemanscanner.org/

ruby rails security static-analysis vulnerabilities brakeman security-vulnerability security-tools security-audit

pylint-dev / pylint

static-analysis,It's not just a linter that annoys you!

Organization: pylint-dev

Home Page: https://pylint.readthedocs.io/en/latest/

static-analysis linter static-code-analysis code-quality pep8 closember hacktoberfest

quay / clair

static-analysis,Vulnerability Static Analysis for Containers

Organization: quay

Home Page: https://quay.github.io/clair/

containers static-analysis go kubernetes docker oci oci-image vulnerabilities clair

realm / swiftlint

static-analysis,A tool to enforce Swift style and conventions.

Organization: realm

Home Page: https://realm.github.io/SwiftLint

linter linting swift static-analysis code-quality hacktoberfest

reviewdog / reviewdog

static-analysis,🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

Organization: reviewdog

Home Page: https://medium.com/@haya14busa/reviewdog-a-code-review-dog-who-keeps-your-codebase-healthy-d957c471938b#.8xctbaw5u

linter go lint ci code-review github gitlab codereview cli code-quality

rrrene / credo

static-analysis,A static code analysis tool for the Elixir language with a focus on code consistency and teaching.

User: rrrene

Home Page: http://credo-ci.org/

elixir code-analysis static-analysis linter credo

rshipp / awesome-malware-analysis

static-analysis,Defund the Police.

User: rshipp

Home Page: https://blacklivesmatters.carrd.co/#donate

analysis-framework automated-analysis awesome awesome-list chinese chinese-translation domain-analysis drop-ice dynamic-analysis list malware-analysis malware-collection malware-research malware-samples network-traffic static-analysis threat-intelligence threat-sharing threatintel

securego / gosec

static-analysis,Go security checker

Organization: securego

Home Page: https://securego.io

golang security security-tools security-automation static-analysis static-code-analysis

semgrep / semgrep

static-analysis,Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Organization: semgrep

Home Page: https://semgrep.dev

static-analysis static-code-analysis java go sast semgrep r2c c python ruby

sonarsource / sonarqube

static-analysis,Continuous Inspection

Organization: sonarsource

Home Page: http://www.sonarqube.org

sonarqube code-quality static-analysis

squizlabs / php_codesniffer

static-analysis,PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.

Organization: squizlabs

automation cli coding-standards php qa static-analysis

sverweij / dependency-cruiser

static-analysis,Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.

User: sverweij

Home Page: https://npmjs.com/dependency-cruiser

dependency-cruiser typescript javascript static-analysis dependency-analysis dependency-graph circular-dependencies jsx tsx dependencies

ttroy50 / cmake-examples

static-analysis,Useful CMake Examples

User: ttroy50

Home Page: http://ttroy50.github.io/cmake-examples

cmake cpp tutorial clang cppcheck static-analysis clang-format unit-testing google-test catch

vimeo / psalm

static-analysis,A static analysis tool for finding errors in PHP applications

Organization: vimeo

Home Page: https://psalm.dev

static-analysis php type-inference security-analysis taint-analysis hacktoberfest

we5ter / scanners-box

static-analysis,A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

User: we5ter

pentesting-tools hacker-tools vulnerability-scanners information-security redteam-tools penetration-testing devsecops security-automation smart-contracts privacy-compliance

werwolv / imhex

static-analysis,🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

User: werwolv

Home Page: https://imhex.werwolv.net

hex-editor reverse-engineering ips dear-imgui disassembler analyzer mathematical-evaluator pattern-language dark-mode hacktoberfest