#Static-analyzer

Showing 20 of 20 repositories tagged #static-analyzer, ranked by stars

e-m-b-a
e-m-b-a
emba

EMBA - The firmware security analyzer

Score
100
โ˜… 3.5k โ‘‚ 312 +4/day
Shell
Ericsson
Ericsson
codechecker

CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools.

Score
100
โ˜… 2.6k โ‘‚ 471 โ€”
Python
KeenSecurityLab
KeenSecurityLab
BinAbsInspector

BinAbsInspector: Vulnerability Scanner for Binaries

Score
67
โ˜… 1.7k โ‘‚ 245 โ€”
Java
sleekbyte
sleekbyte
tailor

Cross-platform static analyzer and linter for Swift.

Score
100
โ˜… 1.4k โ‘‚ 48 โ€”
Java
fkie-cad
fkie-cad
cwe_checker

cwe_checker finds vulnerable patterns in binary executables

Score
50
โ˜… 1.3k โ‘‚ 141 โ€”
Rust
Cyber-Buddy
Cyber-Buddy
APKHunt

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

Score
67
โ˜… 968 โ‘‚ 102 โ€”
Go
alexkohler
alexkohler
prealloc

prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.

Score
100
โ˜… 665 โ‘‚ 26 โ€”
Go
CodeSentryAI
CodeSentryAI
lockbud

Detect concurrency and memory bugs and possible panic locations in Rust projects

Score
0
โ˜… 590 โ‘‚ 39 โ€”
Rust
insidersec
insidersec
insider

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Score
0
โ˜… 552 โ‘‚ 80 โ€”
Go
Chanzi-keji
Chanzi-keji
chanzi

"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompile, custom rule, and is compatible with the technology stacks of Servlet&filter, Spring,struts,Dubbo,Thrift, jax-rs,jax-ws,JFinal,Netty,MyBatis,and JSP.

Score
83
โ˜… 489 โ‘‚ 15 โ€”
ajinabraham
ajinabraham
njsscan

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Score
17
โ˜… 434 โ‘‚ 106 โ€”
JavaScript
slowql
slowql
slowql

Next-generation SQL static analyzer written in Rust. 282+ rules. Zero false positives. Security, performance, reliability, cost, compliance, quality. 14 SQL dialects. Offline. CI/CD ready.

Score
50
โ˜… 215 โ‘‚ 13 +2/day
Rust
cr0hn
cr0hn
dockerfile-security

Static security checker for Dockerfiles

Score
0
โ˜… 106 โ‘‚ 11 +1/day
Go
zboralski
zboralski
unflutter

Static analyzer for Flutter/Dart AOT snapshots

Score
33
โ˜… 94 โ‘‚ 17 โ€”
Go
lambdasec
lambdasec
autogrep

Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.

Score
0
โ˜… 87 โ‘‚ 8 +3/day
Python
Inversive-Labs
Inversive-Labs
eloizer

Static analyzer tool for Solana

Score
0
โ˜… 86 โ‘‚ 11 โ€”
Rust
lisa-analyzer
lisa-analyzer
lisa

๐Ÿ“š a modular easy to use Library for Static Analysis aiming at multi-language analysis

Score
33
โ˜… 83 โ‘‚ 36 โ€”
Java
alexkohler
alexkohler
unimport

unimport is a Go static analysis tool to find unnecessary import aliases.

Score
0
โ˜… 71 โ‘‚ 2 โ€”
Go
collab-uniba
collab-uniba
pynblint

Pynblint is a linter for Python Jupyter notebooks.

Score
0
โ˜… 47 โ‘‚ 2 โ€”
Python
forefy
forefy
eburger

eBurger is a static analysis tool that provides a way to quickly query and analyze solidity smart contracts.

Score
0
โ˜… 37 โ‘‚ 6 โ€”
Python
Related Topics
#static-analysis#security#security-tools#reverse-engineering#sast#binary-analysis#vulnerability-scanner#static-analyzers#linter#devsecops#infosec#linux

ยฉ 2026 GitRepoTrend ยท GitHub repositories by topic ยท Updated weekly