/

static-analysis

linter
code-quality
static-code-analysis
hacktoberfest
security
reverse-engineering
python
pep8
devsecops
java
code-review
lint
ruby
code-analysis
haskell
windows
binary-analysis
disassembler
rust
styleguide
style-guide
python3
swift
ast
malware-analysis
dynamic-analysis
cpp
sast
analysis
docker
command-line-tool
ci

koalaman/shellcheck
503日前34.4k

ShellCheck, a static analysis tool for shell scripts

bash
haskell
shell
linter
developer-tools
static-analysis

WerWolv/ImHex
502日前31.8k

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

dark-mode
hex-editor
ips
dear-imgui
analyzer
mathematical-evaluator
pattern-language
hacktoberfest
windows
multi-platform
static-analysis
c-plus-plus
reverse-engineering
forensics
binary-analysis
disassembler

astral-sh/ruff
501日前23.7k

An extremely fast Python linter and code formatter, written in Rust.

python
rustpython
ruff
rust
styleguide
linter
style-guide
static-code-analysis
static-analysis
python3
pep8

realm/SwiftLint
503日前18.1k

A tool to enforce Swift style and conventions.

code-quality
swift
hacktoberfest
linter
linting
static-analysis

nikic/PHP-Parser
504日前16.5k

A PHP parser written in PHP

php
static-analysis
parser
ast

MobSF/Mobile-Security-Framework-MobSF
501日前15.9k

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

mobile-security
web-security
devsecops
static-analysis
api-testing
malware-analysis
dynamic-analysis
owasp
apk
rest
mobsf
android-security
windows-mobile-security
ios-security
runtime-security
cwe

facebook/infer
503日前14.6k

A static analyzer for Java, C, C++, and Objective-C

code-quality
cpp
objective-c
c
java
static-code-analysis
static-analysis

analysis-tools-dev/static-analysis
503日前12.6k

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

code-quality
linter
static-code-analysis
static-analysis
awesome-list
static-analyzers
sast
analysis

hadolint/hadolint
503日前9.5k

Dockerfile linter, validate inline bash, written in Haskell

docker
haskell
linter
static-analysis
dockerfile
shellcheck
dockerfile-linter

SonarSource/sonarqube
503日前8.4k

Continuous Inspection

code-quality
static-analysis
sonarqube

checkstyle/checkstyle
503日前8.1k

Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.

code-quality
java
static-code-analysis
static-analysis
command-line-tool

reviewdog/reviewdog
503日前7.1k

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

code-quality
cli
code-review
go
lint
linter
static-code-analysis
github
ci
gitlab
static-analysis
codereview
bitbucket

presidentbeef/brakeman
502日前6.9k

A static analysis security vulnerability scanner for Ruby on Rails applications

vulnerabilities
brakeman
ruby
security
rails
security-tools
static-analysis
security-audit
security-vulnerability

facebook/pyre-check
503日前6.6k

Performant type-checking for python.

code-quality
python
security
static-analysis
ocaml
typechecker
type-check
abstract-interpretation
program-analysis
taint-analysis
control-flow-analysis

aquasecurity/tfsec
502日前6.5k

Security scanner for your Terraform code

vulnerability-scanners
security
misconfiguration
terraform
aws
azure
compliance
devsecops
infrastructure-as-code
linter
ci
google-cloud-platform
static-analysis
devops
scanner
digitalocean

bridgecrewio/checkov
502日前6.4k

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

terraform
aws-security
scans
aws
azure
hacktoberfest
kubernetes
compliance
infrastructure-as-code
gcp
static-analysis
devops
cloudformation

horsicq/Detect-It-Easy
501日前6.3k

Program for determining types of files for Windows, Linux and MacOS.

packer
elf
macho
entropy
unpacker
malware-research
mach-o
debugger
detect
static-analysis
reverse-engineering
binary-analysis
malware-analysis
disassembler
program-analysis
detector

detekt/detekt
503日前5.9k

Static code analysis for Kotlin

code-quality
hacktoberfest
kotlin
static
lint
linter
static-analysis
analysis
codesmells
gradle-plugin

ast-grep/ast-grep
503日前5.2k

⚡A CLI tool for code structural search, lint and rewriting. Written in Rust

typescript
babel
rust
search
command-line
linter
codemod
static-analysis
command-line-tool
ast
grep
tree-sitter
codereview
refactoring
structural-search

pylint-dev/pylint
504日前5.0k

It's not just a linter that annoys you!

code-quality
hacktoberfest
linter
static-code-analysis
static-analysis
pep8
closember

rrrene/credo
503日前4.8k

A static code analysis tool for the Elixir language with a focus on code consistency and teaching.

elixir
linter
static-analysis
code-analysis
credo

pmd/pmd
504日前4.6k

An extensible multilanguage static code analyzer.

code-quality
swift
java
linter
static-code-analysis
static-analysis
code-analysis
apex
plsql

vuejs/eslint-plugin-vue
507日前4.3k

Official ESLint plugin for Vue.js

npm
vue
eslint
hacktoberfest
html
javascript
npm-module
npm-package
eslint-plugin
static-analysis

troessner/reek
505日前4.0k

Code smell detector for Ruby

linters
parsing
smell
smell-warnings
smell-detector
ruby
static-analysis
quality

PyCQA/flake8
502日前3.2k

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

python
linter-flake8
flake8
complexity-analysis
styleguide
linter
style-guide
static-code-analysis
static-analysis
python3
stylelint
pep8

codeclimate/codeclimate
508日前2.5k

Code Climate CLI

code-quality
docker
static-code-analysis
static-analysis
quality
climate-cli
codeclimate
codeclimate-engine

ajinabraham/nodejsscan
505日前2.3k

nodejsscan is a static security code scanner for Node.js applications.

nodejs
security
node
code-review
javascript
lint
devsecops
static-analysis
sast
code-analysis
security-scanner
node-security
nodejsscan

mbj/mutant
505日前1.9k

Automated code reviews via mutation testing - semantic code coverage.

ruby
code-review
static-analysis
code-quality-analyzer
coverage
mutation-testing
rspec
minitest
mutant
uncovered-semantics
dynamic-analysis
static-anaysis

JustasMasiulis/lazy_importer
503日前1.4k

library for importing functions from dlls in a hidden, reverse engineer unfriendly way

cpp
hashing
anti-reversing
game-hacking
malware
getprocaddress
obfuscation
getmodulehandle
compile-time
small
windows
export
import
static-analysis
reverse-engineering
header-only