RSS 9 projects tagged "static analysis"

No download No website Updated 17 Sep 2013 ShellCheck

Screenshot
Pop 33.59
Vit 14.55

ShellCheck is a static analysis tool for shell scripts. Its goals are to point out and clarify typical beginner's syntax issues that causes a shell to give cryptic error messages, to point out and clarify typical intermediate level semantic problems that causes a shell to behave strangely and counter-intuitively, and to point out subtle caveats, corner cases, and pitfalls that may cause an advanced user's otherwise working script to fail under future circumstances.

No download Website Updated 04 Oct 2012 Frama-C

Screenshot
Pop 99.40
Vit 5.06

Frama-C is a suite of tools dedicated to the analysis of the source code of software written in C. Frama-C gathers several static analysis techniques in a single collaborative framework. The collaborative approach allows static analyzers to build upon the results already computed by other analyzers in the framework. It provides sophisticated tools, such as a slicer and dependency analysis.

Download Website Updated 06 May 2013 CoFlo

Screenshot
Pop 117.73
Vit 2.05

CoFlo is a source code analysis tool that generates and analyzes control flow graphs from C and C++ sources. Control flow graphs can be output in graphical or textual format.

No download Website Updated 06 Aug 2009 Goanna

Screenshot
Pop 42.14
Vit 1.77

Goanna is an Eclipse plugin that does static analysis of C/C++ source code with model checking. It detects many instances of null pointer de-referencing, double free(), buffer overruns, uninitialized variables, and other common programming mistakes.

No download Website Updated 05 Jul 2012 Lua for IntelliJ IDEA

Screenshot
Pop 51.64
Vit 1.72

Lua for IntelliJ IDEA is a plugin that provides support for semantic aware editing of Lua language programs in IntelliJ IDEA. It includes many useful features such as code formatting, semantic identifier coloring, code inspection and refactoring, and much more.

Download Website Updated 22 May 2012 shanal

Screenshot
Pop 33.85
Vit 1.44

shanal provides a modular framework for static analysis of scripts in bash, basic plugins for analysis, and a simple application which uses the framework.

Download No website Updated 26 Mar 2013 ThreadFix

Screenshot
Pop 40.36
Vit 1.06

ThreadFix is a software vulnerability aggregation and management system that reduces the time it takes to fix software vulnerabilities. It imports the results from dynamic, static, and manual testing to provide a centralized view of software security defects across development teams and applications. The system allows companies to correlate testing results and streamline software remediation efforts by simplifying feeds to software issue trackers. By auto-generating application firewall rules, this tool allows organizations to continue remediation work uninterrupted. ThreadFix empowers managers with vulnerability trending reports that show progress over time, giving them justification for their efforts.

Download No website Updated 22 Apr 2009 Yasca

Screenshot
Pop 38.99
Vit 1.00

Yasca is a program that looks for security vulnerabilities, code-quality, performance, and conformance to best practices in program source code. It integrates other open source programs, including FindBugs, PMD, JLint, JavaScript Lint, PHPLint, Cppcheck, and Pixy to scan certain file types, as well as custom scanners written for Yasca. It is a command-line tool, with reports generated in HTML, CSV, XML, SQLite, and other formats.

Download Website Updated 17 Sep 2013 checkbashisms

Screenshot
Pop 50.97
Vit 1.00

checkbashisms is a static analysis tool for shell scripts. It looks for particular patterns which indicate a script might be relying on /bin/sh being bash.

Screenshot

Project Spotlight

libdvbpsi

A library designed for MPEG TS and DVB PSI tables decoding and generation.

Screenshot

Project Spotlight

queXS

A Web based computer assisted telephone interviewing system.