Trending repositories for topic static-analysis
An extremely fast Python linter and code formatter, written in Rust.
Program for determining types of files for Windows, Linux and MacOS.
A fast, feature-rich static code analyzer & language server for Python
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
β‘A CLI tool for code structural search, lint and rewriting. Written in Rust
π A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Flowistry is an IDE plugin for Rust that helps you focus on relevant code.
π₯ ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hackers and developers identify and address sensitive information wi...
π Policy driven vetting of open source packages with malicious code analysis
A fast, feature-rich static code analyzer & language server for Python
Links to Fortran compilers, preprocessors, formatters, static analyzers, transpilers, IDEs, build systems, etc.
pg-index-health is a Java library for analyzing and maintaining indexes and tables health in Postgresql databases.
Flowistry is an IDE plugin for Rust that helps you focus on relevant code.
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
View8 - Decompiles serialized V8 objects back into high-level readable code.
Program for determining types of files for Windows, Linux and MacOS.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
A CLI to run all kinds of code quality measurements to align your team with company goals
β‘A CLI tool for code structural search, lint and rewriting. Written in Rust
An extremely fast Python linter and code formatter, written in Rust.
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
Program for determining types of files for Windows, Linux and MacOS.
π₯ ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
π A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
A fast, feature-rich static code analyzer & language server for Python
β‘A CLI tool for code structural search, lint and rewriting. Written in Rust
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Flowistry is an IDE plugin for Rust that helps you focus on relevant code.
πΆ Automated code review tool integrated with any code analysis tools regardless of programming language
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hackers and developers identify and address sensitive information wi...
AI-driven Static Analyzer. Supports Rust and Smart contracts: Solana based on Rust, Ethereum based on Solidity.
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
π₯ ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
π Policy driven vetting of open source packages with malicious code analysis
Flowistry is an IDE plugin for Rust that helps you focus on relevant code.
A fast, feature-rich static code analyzer & language server for Python
pg-index-health is a Java library for analyzing and maintaining indexes and tables health in Postgresql databases.
SherlockElf is a powerful tool designed for both static and dynamic analysis of Android ELF binaries and dynamic iOS Macho-O binaries (experimental).
Program for determining types of files for Windows, Linux and MacOS.
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
An extremely fast Python linter and code formatter, written in Rust.
π A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
β‘A CLI tool for code structural search, lint and rewriting. Written in Rust
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
Program for determining types of files for Windows, Linux and MacOS.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
π₯ ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
πΆ Automated code review tool integrated with any code analysis tools regardless of programming language
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
apkInspector is a tool designed to provide detailed insights into the zip structure of APK files, offering the capability to extract content and decode the AndroidManifest.xml file.
π Policy driven vetting of open source packages with malicious code analysis
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
π PHP unused code detection via PHPStan extension. Detects dead cycles, supports libs like Symfony, Doctrine, PHPUnit etc. Can automatically remove dead PHP code. Able to detect dead code used only i...
Interface with the rustc compiler for the purpose of program verification
Companion Repository for the Lecture Slides for the Clang Libraries
A code quality control tool for PHP that will give you an idea of the composition of comments in the codebase, and help improve documentation
A suite of utilities to help with software supply chain challenges on nix targets
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompile, custom rule, and is compatible with th...
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
SherlockElf is a powerful tool designed for both static and dynamic analysis of Android ELF binaries and dynamic iOS Macho-O binaries (experimental).
A code quality control tool for PHP that will give you an idea of the composition of comments in the codebase, and help improve documentation
Alternative vulnhuntr + Rust implementation + tree-sitter multilingual support
π A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
An extremely fast Python linter and code formatter, written in Rust.
β‘A CLI tool for code structural search, lint and rewriting. Written in Rust
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
A vulnerability scanner for container images and filesystems
Program for determining types of files for Windows, Linux and MacOS.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
A fast, feature-rich static code analyzer & language server for Python
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Dockerfile linter, validate inline bash, written in Haskell
πΆ Automated code review tool integrated with any code analysis tools regardless of programming language
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Static analyzer for C/C++ based on the theory of Abstract Interpretation.
βοΈ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
π PHP unused code detection via PHPStan extension. Detects dead cycles, supports libs like Symfony, Doctrine, PHPUnit etc. Can automatically remove dead PHP code. Able to detect dead code used only i...
A CLI to run all kinds of code quality measurements to align your team with company goals
SherlockElf is a powerful tool designed for both static and dynamic analysis of Android ELF binaries and dynamic iOS Macho-O binaries (experimental).
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
A code quality control tool for PHP that will give you an idea of the composition of comments in the codebase, and help improve documentation
View8 - Decompiles serialized V8 objects back into high-level readable code.
QtREAnalyzer, a Ghidra extension to reverse-engineer Qt binaries.
Scout is an extensible open-source tool intended to assist Stellar Soroban smart contract developers and auditors detect common security issues and deviations from best practices.
apkInspector is a tool designed to provide detailed insights into the zip structure of APK files, offering the capability to extract content and decode the AndroidManifest.xml file.
π€ A friendly error formatter extension for PHPStan that provides more readable and informative output, including code snippets and color highlighting.
MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analyzes headers, APIs, and strings, giving quick insights for threa...
JavaScript Reverse Engineering Toolkit (JSRETK) - Experimental tools for analyzing (minified/obfuscated) JavaScript