Flawfinder is a program that examines C source code and reports possible security weaknesses (``flaws'') sorted by risk level. It's very useful for quickly finding and removing some security problems before a program is widely released.
- Easy to use
- Easy to install
- Reports on a number of different types of vulnerabilities
- CWE compatible
flawfinder is fast and stable