static-analyzer

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

php clean-code pmd static-analysis static-analyzer hacktoberfest mess-detector

UpdatedMar 18, 2025
PHP

KeenSecurityLab /BinAbsInspector

Star1.6k

BinAbsInspector: Vulnerability Scanner for Binaries

security reverse-engineering static-analyzer binary-analysis abstract-interpretation vulnerability-scanner ghidra

UpdatedJun 17, 2024
Java

SVF-tools /SVF

Star1.5k

Static Value-Flow Analysis Framework for Source Code

llvm static-analysis dependency-analysis code-analysis static-analyzer pointer-analysis points-to-analysis source-code-analysis code-security static-value-flow

UpdatedMar 26, 2025
C++

kalessil /phpinspectionsea

Star1.5k

A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)

java php awesome php7 static-code-analysis intellij static-analysis phpstorm intellij-plugin static-analyzer phpstorm-plugin

UpdatedSep 26, 2024
Java

phpstan /phpdoc-parser

Sponsor

Star1.4k

Next-gen phpDoc parser with support for intersection types and generics

testing php php7 static-code-analysis static-analysis phpdoc static-analyzer phpstan

UpdatedMar 24, 2025
PHP

sleekbyte /tailor

Star1.4k

Cross-platform static analyzer and linter for Swift.

swift apple linter static-analyzer

UpdatedFeb 27, 2021
Java

fkie-cad /cwe_checker

Star1.2k

cwe_checker finds vulnerable patterns in binary executables

security reverse-engineering static-analyzer binary-analysis program-analysis security-scanner cwe vulnerability-scanner ghidra cwe-checker

UpdatedDec 17, 2024
Rust

SonarSource /sonar-java

Star1.2k

☕ SonarSource Static Analyzer for Java Code Quality and Security

java quality analysis static-code-analysis static-analysis sonarqube analyzer static-analyzer sonarlint sonarcloud language-team

UpdatedMar 25, 2025
Java

SonarSource /SonarJS

Star1.1k

SonarSource Static Analyzer for JavaScript and TypeScript

javascript typescript static-code-analysis static-analysis sonarqube code-quality static-analyzer sonarcloud language-team

UpdatedMar 26, 2025
TypeScript

SonarSource /sonar-dotnet

Star825

Code analyzer for C# and VB.NET projects

c-sharp static-code-analysis roslyn visual-basic static-analysis sonarqube code-quality static-analyzer language-team

UpdatedMar 25, 2025
C#

Cyber-Buddy /APKHunt

Star788

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

security static-analysis owasp penetration-testing code-review infosec pentesting static-analyzer android-security pentest information-security secure-coding security-tools sast pentesting-tools owasp-mobile-top mstg masvs mobile-sec-android apkhunt

UpdatedJan 17, 2025
Go

alexkohler /prealloc

Star650

prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.

go golang static-code-analysis static-analysis slice static-analyzer prealloc-suggestions

UpdatedApr 11, 2024
Go

phpstan /phpstan-doctrine

Sponsor

Star618

Doctrine extensions for PHPStan

testing php php7 static-code-analysis doctrine static-analysis static-analyzer doctrine2 phpstan

UpdatedMar 24, 2025
PHP

kowainik /stan

Star578

🕵️ Haskell STatic ANalyser

haskell analysis static-analyzer hacktoberfest ghc hie

UpdatedJan 20, 2025
Haskell

insidersec /insider

Star528

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Ful…

nodejs javascript android kotlin swift cli ios csharp maven dotnet static-analysis owasp static-analyzer android-security ios-security security-scanner security-automation security-tools sast insider

UpdatedApr 10, 2022
Go

Improve this page

Add a description, image, and links to thestatic-analyzer topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with thestatic-analyzer topic, visit your repo's landing page and select "manage topics."

Learn more

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly