Alternatives and similar repositories for flawfinder

Users that are interested in flawfinder are comparing it to the libraries listed below

• google / fuzztest
  ☆931Updated this week
• armijnhemel / binaryanalysis-ng
  Binary Analysis Next Generation (BANG)
  ☆516Updated last week
• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆434Updated last week
• fkie-cad / cwe_checker
  cwe_checker finds vulnerable patterns in binary executables
  ☆1,295Updated 8 months ago
• analysis-tools-dev / dynamic-analysis
  ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
  ☆1,052Updated 2 months ago
• 0xdea / semgrep-rules
  A collection of my Semgrep rules to facilitate vulnerability research.
  ☆755Updated this week
• splintchecker / splint
  Splint - annotation-assisted static program checker
  ☆330Updated last year
• google / clusterfuzzlite
  ClusterFuzzLite - Simple continuous fuzzing that runs in CI.
  ☆511Updated last week
• hardik05 / Damn_Vulnerable_C_Program
  An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.
  ☆711Updated last year
• andrew-d / rough-auditing-tool-for-security
  Automatically exported from code.google.com/p/rough-auditing-tool-for-security
  ☆88Updated 4 years ago
• uds-se / FormatFuzzer
  FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.
  ☆432Updated 6 months ago
• conikeec / seeve
  A set of vulnerable C code snippets (with mapped CVEs)
  ☆78Updated last year
• airbus-seclab / c-compiler-security
  Security-related flags and options for C compilers
  ☆198Updated 3 years ago
• GJDuck / EnvFuzz
  Fuzz anything with Program Environment Fuzzing
  ☆394Updated 10 months ago
• intel / cve-bin-tool
  The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnera…
  ☆1,564Updated last week
• google / fuzzbench
  FuzzBench - Fuzzer benchmarking as a service.
  ☆1,162Updated last week
• google / centipede
  ☆252Updated 2 years ago
• aflnet / aflnet
  AFLNet: A Greybox Fuzzer for Network Protocols (https://thuanpv.github.io/publications/AFLNet_ICST20.pdf)
  ☆974Updated 6 months ago
• sarnold / cccc
  Source code counter and metrics tool for C++, C, and Java
  ☆69Updated 2 years ago
• google / libprotobuf-mutator
  Library for structured fuzzing with protobuffers
  ☆637Updated 8 months ago
• nccgroup / fuzzowski
  the Network Protocol Fuzzer that we will want to use.
  ☆787Updated last year
• CycloneDX / cyclonedx-conan
  Creates CycloneDX Software Bill of Materials (SBOM) documents for C/C++ projects using Conan
  ☆26Updated 2 years ago
• google / fuzzer-test-suite
  Set of tests for fuzzing engines
  ☆1,453Updated 4 years ago
• Ericsson / CodeCompass
  CodeCompass is a software comprehension tool for large scale software written in C/C++ and Java
  ☆581Updated this week
• secure-software-engineering / phasar
  A LLVM-based static analysis framework.
  ☆1,015Updated this week
• aboutcode-org / vulnerablecode
  A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…
  ☆641Updated last week
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆44Updated last year
• gcovr / gcovr
  Generate code coverage reports with gcc/gcov
  ☆966Updated last week
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆166Updated this week
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆585Updated 8 months ago