Flawfinder searches through source code looking for potential security flaws. It will provide a list of potential security flaws, sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function. Flawfinder ignores text inside comments and strings.
LANforge is a unified multi-protocol network traffic generation and WAN emulation application. It allows users to generate real world customer traffic in a controllable manner. The WAN emulator allows the injection of latency and other network oddities like dropped, duplicated, and re-ordered packets. LANforge includes a drag-and-drop virtual network builder that supports virtual routers, WAN links, traffic-generating nodes, and more. It provides a scriptable command line interface with Perl libraries as well as a graphical user interface.
Jameleon is an automated testing framework that can be used by technical and non-technical users alike. One of the main concepts behind it is to create a group of keywords or tags that represent different screens of an application. All of the logic required to automate each particular screen can be defined in Java and mapped to these keywords. The keywords can then be organized with different data sets to form test scripts without requiring an in-depth knowledge of how the application works. The test scripts are then used for both testing automation and test case document generation.
GNATS is a portable incident/bug report/help request-tracking system which runs on UNIX-like operating systems. It easily handles thousands of problem reports, has been in wide use since the early 90s, and can do most of its operations over e-mail. Several front end interfaces exist, including command line, emacs, and Tcl/Tk interfaces. There are also a number of Web (CGI) interfaces written in scripting languages like Perl and Python.
FunkLoad is a functional and load Web tester whose main use cases are functional testing of Web projects (and thus regression testing as well), performance testing, load testing (such as volume testing or longevity testing), and stress testing. It can also be used to write Web agents to script any Web repetitive task.
PHPXref is a Perl script that cross-references classes, functions, variables, and SQL tables used in a PHP-based Web site and generates simple HTML output designed to make browsing through code easy. In addition, it can extract phpdoc style comments from the PHP files to provide browsable documentation.
Hammerhead is a stress testing tool for Web sites. It initiates connections from multiple IP aliases and simulates a user from each alias. It is fully configurable, and there are numerous other options for creating problems with a site. Extensive data collection is also available.
FishEye opens your source code repository to help you understand your code and keep tabs on the people who write it. It lets you view user activity, track code changes, and search and navigate through your repository from any Web browser. Nearly everything in your repository has its own URL, down to every single line of code for every revision. Files, branches, repositories, projects, and even people have their own activity stream. FishEye provides easy navigation, powerful search, historical reporting, configurable file annotation and diff views, changeset analysis, RSS feeds, and integration with JIRA, Crucible, Bamboo, Eclipse, and IntelliJ IDEA. FishEye works with Subversion, CVS, Perforce, Git or Mercurial.