flawfinder

Vulnerability scanner

Analyzes C/C++ source code for security vulnerabilities and reports potential flaws.

a static analysis tool for finding vulnerabilities in C/C++ source code

GitHub
489 stars
17 watching
82 forks
Language: Python
last commit: 4 months ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
designsecurity/progpilot An application security testing tool for identifying vulnerabilities in PHP code 330
pyupio/safety Detects known security vulnerabilities in Python dependencies and provides recommendations for remediation. 1,731
r0075h3ll/oralyzer A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. 753
swisskyrepo/vulny-code-static-analysis A script to detect vulnerabilities in PHP source code using static analysis and regular expressions. 398
kathanp19/gaussrf A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. 165
fkie-cad/cwe_checker Automated binary analysis tool to detect common software vulnerabilities 1,124
jackofmosttrades/gadgetinspector Analyzes Java applications for potential deserialization gadget chains to help identify vulnerabilities and prioritize remediation. 996
sukelluskello/vectorattackscanner A tool to analyze and detect vulnerable points in software applications 5
hackthelegacy/hack400tool A set of tools for gathering information and exploiting vulnerabilities in IBM Power Systems 96
security-code-scan/security-code-scan Detects vulnerabilities in C# and VB.NET code 944
1n3/blackwidow A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. 1,526
s0md3v/striker An offensive information and vulnerability scanner that identifies potential security issues in web applications 2,234
ke0z/vulchatgpt An IDA PRO plugin to analyze binaries for potential vulnerabilities using AI-powered decompilation and static analysis 352
sectooladdict/wavsep An open-source tool for evaluating web application vulnerabilities by analyzing the separation of concerns in web applications. 228
m0nad/hellraiser Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API 562