Trending repositories for topic static-analysis
An extremely fast Python linter and code formatter, written in Rust.
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
Program for determining types of files for Windows, Linux and MacOS.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
TypeScript Compiler API wrapper for static analysis and programmatic code changes.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
A static tool that detects centralized security risks in smart contracts
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
AI-driven Static Analyzer. Supports Rust and Smart contracts: Solana based on Rust, Ethereum based on Solidity.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
💀 PHP unused code detection via PHPStan extension. Detects dead cycles, supports libs like Symfony, Doctrine, PHPUnit etc. Can automatically remove dead PHP code.
The Golang linter that checks usage of github.com/stretchr/testify.
Interface with the rustc compiler for the purpose of program verification
View8 - Decompiles serialized V8 objects back into high-level readable code.
An extremely fast Python linter and code formatter, written in Rust.
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
Program for determining types of files for Windows, Linux and MacOS.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
A fast, feature-rich static code analyzer & language server for Python
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls...
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
A static tool that detects centralized security risks in smart contracts
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
View8 - Decompiles serialized V8 objects back into high-level readable code.
AI-driven Static Analyzer. Supports Rust and Smart contracts: Solana based on Rust, Ethereum based on Solidity.
The Golang linter that checks usage of github.com/stretchr/testify.
💀 PHP unused code detection via PHPStan extension. Detects dead cycles, supports libs like Symfony, Doctrine, PHPUnit etc. Can automatically remove dead PHP code.
An extremely fast Python linter and code formatter, written in Rust.
Static analyzer for C/C++ based on the theory of Abstract Interpretation.
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Program for determining types of files for Windows, Linux and MacOS.
⚡A CLI tool for code structural search, lint and rewriting. Written in Rust
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Jar Analyzer - 一个JAR包分析工具,批量分析,SCA漏洞分析,方法调用关系搜索,字符串搜索,Spring组件分析,信息泄露检查,CFG程序分析,JVM栈帧分析,进阶表达式搜索,字节码指令级的动态调试分析,反编译JAR包一键导出,一键提取序列化数据恶意代码,一键分析BCEL字节码
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
Static analyzer for C/C++ based on the theory of Abstract Interpretation.
Find leaking classes that you never use... and get rid of them.
💀 PHP unused code detection via PHPStan extension. Detects dead cycles, supports libs like Symfony, Doctrine, PHPUnit etc. Can automatically remove dead PHP code.
Jar Analyzer - 一个JAR包分析工具,批量分析,SCA漏洞分析,方法调用关系搜索,字符串搜索,Spring组件分析,信息泄露检查,CFG程序分析,JVM栈帧分析,进阶表达式搜索,字节码指令级的动态调试分析,反编译JAR包一键导出,一键提取序列化数据恶意代码,一键分析BCEL字节码
The Golang linter that checks usage of github.com/stretchr/testify.
A CLI to run all kinds of code quality measurements to align your team with company goals
View8 - Decompiles serialized V8 objects back into high-level readable code.
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
A linter with superpowers! 🔥 Use LLMs to enforce best practices across your codebase.
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
💀 PHP unused code detection via PHPStan extension. Detects dead cycles, supports libs like Symfony, Doctrine, PHPUnit etc. Can automatically remove dead PHP code.
Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
SherlockElf is a powerful tool designed for both static and dynamic analysis of Android ELF binaries and dynamic iOS Macho-O binaries (experimental).
AI-driven Static Analyzer. Supports Rust and Smart contracts: Solana based on Rust, Ethereum based on Solidity.
A tool for analyzing and visualizing complex software architecture hierarchies
A code quality control tool for PHP that will give you an idea of the composition of comments in the codebase, and help improve documentation
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
An extremely fast Python linter and code formatter, written in Rust.
⚡A CLI tool for code structural search, lint and rewriting. Written in Rust
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...
A vulnerability scanner for container images and filesystems
Program for determining types of files for Windows, Linux and MacOS.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Static analysis tool to detect potential nil panics in Go code
A fast, feature-rich static code analyzer & language server for Python
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Dockerfile linter, validate inline bash, written in Haskell
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
A CLI to run all kinds of code quality measurements to align your team with company goals
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...
💀 PHP unused code detection via PHPStan extension. Detects dead cycles, supports libs like Symfony, Doctrine, PHPUnit etc. Can automatically remove dead PHP code.
Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
SherlockElf is a powerful tool designed for both static and dynamic analysis of Android ELF binaries and dynamic iOS Macho-O binaries (experimental).
🤝 A friendly error formatter extension for PHPStan that provides more readable and informative output, including code snippets and color highlighting.
A code quality control tool for PHP that will give you an idea of the composition of comments in the codebase, and help improve documentation
Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.
A tool for analyzing and visualizing complex software architecture hierarchies
Performant static analyzer for PHP, which is extremely easy to use. It helps you catch common mistakes in your PHP code.
View8 - Decompiles serialized V8 objects back into high-level readable code.
QtREAnalyzer, a Ghidra extension to reverse-engineer Qt binaries.
apkInspector is a tool designed to provide detailed insights into the zip structure of APK files, offering the capability to extract content and decode the AndroidManifest.xml file.