Topic: static-analysis Goto Github

👇 Here are 1832 public repositories matching this topic...

analysis-tools-dev / static-analysis
static-analysis,⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
Organization: analysis-tools-dev
Home Page: https://analysis-tools.dev
static-analysis static-analyzers linter code-quality awesome-list static-code-analysis sast analysis

anchore / grype
static-analysis,A vulnerability scanner for container images and filesystems
Organization: anchore
containers security vulnerability docker golang go static-analysis container-image tool oci

anchore / syft
static-analysis,CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Organization: anchore
containers docker go golang static-analysis tool oci sbom spdx cyclonedx hacktoberfest

aquasecurity / tfsec
static-analysis,Tfsec is now part of Trivy
Organization: aquasecurity
Home Page: https://aquasecurity.github.io/trivy/
terraform security scanner static-analysis ci aws azure google-cloud-platform compliance infrastructure-as-code

ast-grep / ast-grep
static-analysis,⚡A CLI tool for code structural search, lint and rewriting. Written in Rust
Organization: ast-grep
Home Page: https://ast-grep.github.io/
codemod linter ast babel command-line command-line-tool grep tree-sitter codereview rust static-analysis typescript refactoring search structural-search

astral-sh / ruff
static-analysis,An extremely fast Python linter and code formatter, written in Rust.
Organization: astral-sh
Home Page: https://docs.astral.sh/ruff
linter pep8 python python3 rust rustpython static-analysis static-code-analysis style-guide styleguide

bridgecrewio / checkov
static-analysis,Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Organization: bridgecrewio
Home Page: https://www.checkov.io/
terraform static-analysis aws gcp azure aws-security cloudformation scans compliance kubernetes

checkstyle / checkstyle
static-analysis,Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Organization: checkstyle
Home Page: https://checkstyle.org
java static-code-analysis command-line-tool static-analysis code-quality

col-e / recaf
static-analysis,The modern Java bytecode editor
User: col-e
Home Page: https://recaf.coley.software
java bytecode bytecode-engineering reverse-engineering jvm-bytecode decompile decompiler agent asm javafx-application

crytic / slither
static-analysis,Static Analyzer for Solidity and Vyper
Organization: crytic
Home Page: https://blog.trailofbits.com/2018/10/19/slither-a-solidity-static-analysis-framework/
solidity ethereum static-analysis vyper

danmar / cppcheck
static-analysis,static analysis of C/C++ code
User: danmar
Home Page: https://cppcheck.sourceforge.io/
cppcheck c-plus-plus static-analysis cross-platform c cpp

davidhalter / jedi
static-analysis,Awesome autocompletion, static analysis and refactoring library for python
User: davidhalter
Home Page: http://jedi.readthedocs.io
static-analysis auto-complete python refactoring type-inference

detekt / detekt
static-analysis,Static code analysis for Kotlin
Organization: detekt
Home Page: https://detekt.dev
analysis code-quality codesmells gradle-plugin hacktoberfest kotlin lint linter static static-analysis

didi / booster
static-analysis,🚀Optimizer for mobile applications
Organization: didi
Home Page: https://booster.johnsonlee.io
optimizer android gradle-plugin bytecode-manipulation static-analysis

dominikh / go-tools
static-analysis,Staticcheck - The advanced Go linter
User: dominikh
Home Page: https://staticcheck.dev
linters static-analysis linter staticcheck sponsor

dsherret / ts-morph
static-analysis,TypeScript Compiler API wrapper for static analysis and programmatic code changes.
User: dsherret
Home Page: https://ts-morph.com
typescript ast code-generation javascript static-analysis

dwisiswant0 / apkleaks
static-analysis,Scanning APK file for URIs, endpoints & secrets.
User: dwisiswant0
android-security apk apk-parser bugbounty mobile-security reverse-engineering scanning-apk static-analysis

facebook / infer
static-analysis,A static analyzer for Java, C, C++, and Objective-C
Organization: facebook
Home Page: http://fbinfer.com/
static-analysis static-code-analysis code-quality java c cpp objective-c

facebook / pyre-check
static-analysis,Performant type-checking for python.
Organization: facebook
Home Page: https://pyre-check.org/
python typechecker type-check static-analysis ocaml code-quality abstract-interpretation security program-analysis taint-analysis

google / error-prone
static-analysis,Catch common Java mistakes as compile-time errors
Organization: google
Home Page: https://errorprone.info
java static-analysis

hadolint / hadolint
static-analysis,Dockerfile linter, validate inline bash, written in Haskell
Organization: hadolint
dockerfile linter shellcheck haskell dockerfile-linter docker static-analysis

horsicq / detect-it-easy
static-analysis,Program for determining types of files for Windows, Linux and MacOS.
User: horsicq
Home Page: http://ntinfo.biz
debugger detect unpacker disassembler reverse-engineering elf packer detector binary-analysis program-analysis

koalaman / shellcheck
static-analysis,ShellCheck, a static analysis tool for shell scripts
User: koalaman
Home Page: https://www.shellcheck.net
bash developer-tools haskell linter shell static-analysis

konloch / bytecode-viewer
static-analysis,A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
User: konloch
Home Page: https://bytecodeviewer.com
java-decompiler apk java procyon cfr fernflower krakatau bytecode-viewer bytecode smali

mgechev / revive
static-analysis,🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
User: mgechev
Home Page: https://revive.run
go golang linter static-analysis golint static-code-analysis hacktoberfest

mobsf / mobile-security-framework-mobsf
static-analysis,Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Organization: mobsf
Home Page: https://opensecurity.in
static-analysis dynamic-analysis mobsf android-security mobile-security windows-mobile-security ios-security api-testing web-security malware-analysis

nikic / php-parser
static-analysis,A PHP parser written in PHP
User: nikic
ast parser php static-analysis

ondrajz / go-callvis
static-analysis,Visualize call graph of a Go program using Graphviz
User: ondrajz
Home Page: https://ofabry.github.io/go-callvis
callgraph graphviz visualization golang golang-tools static-analysis awesome-go

owasp / owasp-mastg
static-analysis,The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
Organization: owasp
Home Page: https://mas.owasp.org/
mobile-app pentesting android-application ios-app runtime-analysis network-analysis static-analysis reverse-engineering dynamic-analysis mobile-security

palantir / tslint
static-analysis,:vertical_traffic_light: An extensible linter for the TypeScript language
Organization: palantir
Home Page: http://palantir.github.io/tslint/
typescript linting-rules linter tslint static-analysis octo-correct-managed

phan / phan
static-analysis,Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Organization: phan
Home Page: https://github.com/phan/phan/wiki
php static-analysis phan analysis analyzer static-code-analysis

php-cs-fixer / php-cs-fixer
static-analysis,A tool to automatically fix PHP Coding Standards issues
Organization: php-cs-fixer
Home Page: https://cs.symfony.com
php static-analysis code-style code-standards

phpstan / phpstan
static-analysis,PHP Static Analysis Tool - discover bugs in your code without running it!
Organization: phpstan
Home Page: https://phpstan.org/
phpstan static-analysis php php7 testing static-code-analysis static-analyzer

pmd / pmd
static-analysis,An extensible multilanguage static code analyzer.
Organization: pmd
Home Page: https://pmd.github.io
code-analysis code-quality static-analysis static-code-analysis linter java apex plsql swift

presidentbeef / brakeman
static-analysis,A static analysis security vulnerability scanner for Ruby on Rails applications
User: presidentbeef
Home Page: https://brakemanscanner.org/
brakeman rails ruby security security-audit security-tools security-vulnerability static-analysis vulnerabilities

pylint-dev / pylint
static-analysis,It's not just a linter that annoys you!
Organization: pylint-dev
Home Page: https://pylint.readthedocs.io/en/latest/
static-analysis linter static-code-analysis code-quality pep8 closember hacktoberfest

quay / clair
static-analysis,Vulnerability Static Analysis for Containers
Organization: quay
Home Page: https://quay.github.io/clair/
containers static-analysis go kubernetes docker oci oci-image vulnerabilities clair

realm / swiftlint
static-analysis,A tool to enforce Swift style and conventions.
Organization: realm
Home Page: https://realm.github.io/SwiftLint
linter linting swift static-analysis code-quality hacktoberfest

reviewdog / reviewdog
static-analysis,🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Organization: reviewdog
Home Page: https://medium.com/@haya14busa/reviewdog-a-code-review-dog-who-keeps-your-codebase-healthy-d957c471938b#.8xctbaw5u
linter go lint ci code-review github gitlab codereview cli code-quality

rrrene / credo
static-analysis,A static code analysis tool for the Elixir language with a focus on code consistency and teaching.
User: rrrene
Home Page: http://credo-ci.org/
elixir code-analysis static-analysis linter credo

rshipp / awesome-malware-analysis
static-analysis,Defund the Police.
User: rshipp
Home Page: https://blacklivesmatters.carrd.co/#donate
malware-analysis awesome awesome-list list malware-samples analysis-framework dynamic-analysis static-analysis threat-intelligence automated-analysis

securego / gosec
static-analysis,Go security checker
Organization: securego
Home Page: https://securego.io
golang security security-tools security-automation static-analysis static-code-analysis

semgrep / semgrep
static-analysis,Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Organization: semgrep
Home Page: https://semgrep.dev
static-analysis static-code-analysis java go sast semgrep r2c c python ruby

sonarsource / sonarqube
static-analysis,Continuous Inspection
Organization: sonarsource
Home Page: http://www.sonarqube.org
sonarqube code-quality static-analysis

squizlabs / php_codesniffer
static-analysis,PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.
Organization: squizlabs
automation cli coding-standards php qa static-analysis

sverweij / dependency-cruiser
static-analysis,Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.
User: sverweij
Home Page: https://npmjs.com/dependency-cruiser
dependency-cruiser typescript javascript static-analysis dependency-analysis dependency-graph circular-dependencies jsx tsx dependencies

ttroy50 / cmake-examples
static-analysis,Useful CMake Examples
User: ttroy50
Home Page: http://ttroy50.github.io/cmake-examples
cmake cpp tutorial clang cppcheck static-analysis clang-format unit-testing google-test catch

vimeo / psalm
static-analysis,A static analysis tool for finding errors in PHP applications
Organization: vimeo
Home Page: https://psalm.dev
static-analysis php type-inference security-analysis taint-analysis hacktoberfest

we5ter / scanners-box
static-analysis,A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
User: we5ter
pentesting-tools hacker-tools vulnerability-scanners information-security redteam-tools penetration-testing devsecops security-automation smart-contracts privacy-compliance apk-analysis binary-analysis exploitation-framework malware-analysis security-audit code-analyzer static-analysis wifi-hacking wifi-security

werwolv / imhex
static-analysis,🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
User: werwolv
Home Page: https://imhex.werwolv.net
hex-editor reverse-engineering ips dear-imgui disassembler analyzer mathematical-evaluator pattern-language dark-mode hacktoberfest