⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
☆14,627Jun 10, 2026Updated last week
Alternatives and similar repositories for static-analysis
Users that are interested in static-analysis are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.☆1,095Jun 7, 2026Updated 2 weeks ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆15,562Updated this week
- A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on…☆5,844Apr 3, 2024Updated 2 years ago
- A static analyzer for Java, C, C++, and Objective-C☆15,649Updated this week
- OSS-Fuzz - continuous fuzzing for open source software.☆12,345Updated this week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ShellCheck, a static analysis tool for shell scripts☆39,590Updated this week
- A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.☆14,426Jan 11, 2026Updated 5 months ago
- Go security checker☆8,866Updated this week
- Vulnerability Static Analysis for Containers☆11,011Updated this week
- An incremental parsing system for programming tools☆25,919Updated this week
- CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security☆9,725Updated this week
- A curated list of resources for learning about application security☆6,965Feb 22, 2025Updated last year
- Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…☆3,264Updated this week
- Find secrets with Gitleaks 🔑☆27,736Jun 13, 2026Updated last week
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- UNIX-like reverse engineering framework and command-line toolset☆24,155Updated this week
- Defund the Police.☆13,862Jun 7, 2024Updated 2 years ago
- Curated list of awesome resources on Compilers, Interpreters and Runtimes☆9,810May 26, 2024Updated 2 years ago
- A collection of awesome penetration testing resources, tools and other shiny things☆26,417Jan 25, 2026Updated 4 months ago
- syzkaller is an unsupervised coverage-guided kernel fuzzer☆6,227Jun 12, 2026Updated last week
- Checklist of the most important security countermeasures when designing, testing, and releasing your API☆23,258Feb 10, 2026Updated 4 months ago
- A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications☆2,203Dec 25, 2020Updated 5 years ago
- Bandit is a tool designed to find common security issues in Python code.☆8,090May 25, 2026Updated 3 weeks ago
- A command-line benchmarking tool☆28,317Apr 30, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ripgrep recursively searches directories for a regex pattern while respecting your gitignore☆65,034Jun 5, 2026Updated 2 weeks ago
- Secure and fast microVMs for serverless computing.☆34,977Updated this week
- A tool for exploring each layer in a docker image☆54,224Dec 15, 2025Updated 6 months ago
- Find, verify, and analyze leaked credentials☆26,826Updated this week
- A curated list of awesome command-line frameworks, toolkits, guides and gizmos. Inspired by awesome-php.☆37,127Aug 28, 2025Updated 9 months ago
- Performant type-checking for python.☆7,171Updated this week
- Parsing, analyzing, and comparing source code across many languages☆9,045Apr 1, 2025Updated last year
- A simple, fast and user-friendly alternative to 'find'☆43,371Jun 6, 2026Updated 2 weeks ago
- A powerful and user-friendly binary analysis platform!☆8,907Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A collection of links related to Linux kernel security and exploitation☆6,501May 29, 2026Updated 3 weeks ago
- Scalable fuzzing infrastructure.☆5,575Updated this week
- A LLVM-based static analysis framework.☆1,045Jun 11, 2026Updated last week
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,187Updated this week
- A syntax-highlighting pager for git, diff, grep, rg --json, and blame output☆31,166Mar 28, 2026Updated 2 months ago
- SQL powered operating system instrumentation, monitoring, and analytics.☆23,315Jun 11, 2026Updated last week
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,429Mar 26, 2026Updated 2 months ago