david-a-wheeler / flawfinderLinks
a static analysis tool for finding vulnerabilities in C/C++ source code
☆528Updated 10 months ago
Alternatives and similar repositories for flawfinder
Users that are interested in flawfinder are comparing it to the libraries listed below
Sorting:
- cwe_checker finds vulnerable patterns in binary executables☆1,227Updated 2 months ago
- The 'exploitable' GDB plugin☆733Updated 2 years ago
- A collection of my Semgrep rules to facilitate vulnerability research.☆645Updated last month
- Binary Analysis Next Generation (BANG)☆503Updated this week
- ☆853Updated this week
- An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.☆696Updated 8 months ago
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆491Updated 6 months ago
- Fuzz anything with Program Environment Fuzzing☆389Updated 4 months ago
- ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.☆1,007Updated last month
- Checksec tool in Python, Rich output. Based on LIEF☆336Updated this week
- Security-related flags and options for C compilers☆193Updated 2 years ago
- Splint - annotation-assisted static program checker☆322Updated 6 months ago
- Set of tests for fuzzing engines☆1,447Updated 3 years ago
- Automatically exported from code.google.com/p/rough-auditing-tool-for-security☆86Updated 4 years ago
- A set of vulnerable C code snippets (with mapped CVEs)☆78Updated 11 months ago
- A LLVM-based static analysis framework.☆988Updated this week
- A fork of AFL for fuzzing Windows binaries☆2,439Updated last week
- A lightweight dynamic instrumentation library☆1,259Updated 2 months ago
- AFLNet: A Greybox Fuzzer for Network Protocols (https://thuanpv.github.io/publications/AFLNet_ICST20.pdf)☆933Updated 3 weeks ago
- Clang's scan-build re-implementation in python☆379Updated 2 years ago
- Split information output of pwndbg output☆197Updated last year
- Library for structured fuzzing with protobuffers☆619Updated 2 months ago
- The Firmware Security Testing Methodology (FSTM) is composed of nine stages tailored to enable security researchers, software developers,…☆421Updated 3 years ago
- Fuzz Introspector -- introspect, extend and optimise fuzzers☆418Updated this week
- FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.☆420Updated 2 weeks ago
- A powerful static binary rewriting tool☆1,019Updated 2 months ago
- SymCC: efficient compiler-based symbolic execution☆817Updated last month
- Source code counter and metrics tool for C++, C, and Java☆65Updated 2 years ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆926Updated this week
- Tracking CVEs for the linux Kernel☆747Updated last year