a static analysis tool for finding vulnerabilities in C/C++ source code
☆570May 17, 2026Updated 2 weeks ago
Alternatives and similar repositories for flawfinder
Users that are interested in flawfinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- static analysis of C/C++ code☆6,636Updated this week
- A collection of my Semgrep rules to facilitate vulnerability research.☆814Apr 12, 2026Updated last month
- Splint - annotation-assisted static program checker☆331Mar 14, 2026Updated 2 months ago
- cwe_checker finds vulnerable patterns in binary executables☆1,336Apr 10, 2025Updated last year
- Display the status of C++ feature flags☆20Jun 6, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Pin-Based Constant Execution Checker (Pin-based CEC)☆20Mar 31, 2025Updated last year
- CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools.☆2,571May 20, 2026Updated last week
- ☆99Nov 10, 2021Updated 4 years ago
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆367Mar 25, 2021Updated 5 years ago
- ☆18Aug 5, 2020Updated 5 years ago
- Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…☆3,212Updated this week
- ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The foc…☆14,573May 18, 2026Updated last week
- BinAbsInspector: Vulnerability Scanner for Binaries☆1,669Jun 17, 2024Updated last year
- Analyse binaries for missing security features, information disclosure and more...☆89Aug 7, 2023Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Static code analysis test source code☆36Aug 30, 2023Updated 2 years ago
- Flint++ is cross-platform, zero-dependency port of flint, a lint program for C++ developed and used at Facebook.☆265Sep 25, 2019Updated 6 years ago
- EMBA - The firmware security analyzer☆3,478Updated this week
- A Coverage-Based fuzzing tools☆23Aug 9, 2021Updated 4 years ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆15,324Updated this week
- Firmware Analysis and Comparison Tool☆1,442May 24, 2026Updated last week
- ☆15Jan 24, 2023Updated 3 years ago
- ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …☆77Nov 19, 2024Updated last year
- A LLVM-based static analysis framework.☆1,042May 21, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A set of Code-ql/Joern queries to find vulnerabilities☆67May 22, 2021Updated 5 years ago
- An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.☆591May 22, 2026Updated last week
- Karonte is a static analysis tool to detect multi-binary vulnerabilities in embedded firmware☆426Sep 18, 2021Updated 4 years ago
- Fuzzware's main repository. Start here to install.☆370Dec 18, 2025Updated 5 months ago
- Static Value-Flow Analysis Framework for Source Code☆1,680May 20, 2026Updated last week
- TROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Indicators☆214Jun 23, 2020Updated 5 years ago
- Examples of clang-tidy plugins☆36Apr 8, 2025Updated last year
- Framework for Automating Fuzzable Target Discovery with Static Analysis.☆550Feb 1, 2024Updated 2 years ago
- Exploit for uTorrent vulnerability CVE-2020-8437 by mavlevin☆11Feb 1, 2026Updated 4 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆227Jul 25, 2024Updated last year
- Raw binary firmware analysis software☆578Jun 6, 2024Updated last year
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,170Updated this week
- A fork and successor of the Sulley Fuzzing Framework☆2,331May 18, 2026Updated last week
- Fuzzing IoT Devices Using the Router TL-WR902AC as Example☆130Nov 15, 2025Updated 6 months ago
- A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.☆300Jan 31, 2026Updated 4 months ago
- Code and artifacts related to the Asia CCS 2022 paper☆38Nov 8, 2021Updated 4 years ago