Static source code analysis tool for C and C++ code
Static analysis of C/C++ code. Checks for: memory leaks, mismatching allocation-deallocation, buffer overrun, and many more. The goal is 0% false positives. See http://cppcheck.sourceforge.net for more information.
Tool to detect and correct vulnerabilities in PHP web applications
WAP automatic detects and corrects input validation vulnerabilities in web applications written in PHP Language (version 4.0 or higher) and with a low rate of false positives. WAP detects the following vulnerabilities: - SQL injection using MySQL, PostgreSQL and DB2 DBMS - Reflected cross-site scripting (XSS) - Stored XSS - Remote file inclusion - Local file inclusion - Directory traversal - Source code disclosure - OS command injection - PHP code injection WAP is a static analysis tool that performs taint analysis to detect vulnerabilities, tracking malicious users inputs and checking if they reach calls of sensitive functions. It has a low rate of false positives because has implemented a data mining module to predict false positives when detects vulnerabilities. The output of the tool is: - shows the vulnerabilities found and how they are corrected - new files with the corrections
A tool to help developers and security professionals conduct manual security code reviews in a consistent and repeatable way. Agnitio aims to replace the adhoc nature of manual security code review documentation, create an audit trail and reporting.
C and C++ control flow graph generator and analyzer
CoFlo generates Control-Flow Graphs from C and C++ source code. It can then output the graphs in a number of ways and perform various control flow analyses.
Management of source code quality is possible.
Metrix++ is an extendable tool to collect and analyse code metrics. - Multiple languages supported - Multiple metrics available - Configurable. Every metric has got 'turn-on' and other configuration options. There are no predefined thresholds for metrics or rules. You can choose and configure any limit you want. - High-performance. Processes thousands of files per minutes. - Seamless application to legacy code due to embedded capability to differentiate new code, modified and legacy.
Hexjector is an Opensource,Cross Platform PHP script to automate Site Pentest for SQL Injection Vulnerabilties.
For converting ARM ASM Insctruction to Hexadecimal
This application is very useful to perform reverse engineering, this application uses Linux binaries based command line provided and made by Cygwin.
Cuenta líneas de código Java, C, C++ en un proyecto
Esta aplicación cuenta el nº de líneas (con o sin comentarios y líneas vacías) de un proyecto Java, C, C++. No sigue ninguna métrica de estimación de la complejidad del código como la complejidad ciclomática, etc. Sólo cuenta las líneas de código teniendo en cuenta líneas vacías, comentarios y corchetes para hacerse un idea del tamaño del proyecto sin más pretensiones.
CSS Scanner helps you clean and tidy up your css/stylesheet
A static source code analyser for Fortran 90 and C++
ChkSem is a static Fortran 90 and C++ source code analyser. Fortran codes are analysed to find potential problems and dead code. This project allows ( for the moment ) to find useless includes and to find missing direct includes for helping programmers to clean C++ codes. This can potentially reduce building time from small programs to huge solutions. This tool is not finalized and new versions will follow, with a GUI with even more features. The project is written in Java to ensure cross-platform compatibility.
ccglue is a complementary tool to cscope and ctags. The tool builds a cross-reference symbol database from cscope [and ctags] databases that can be used to display dependency-graphs (aka call-trees, code flow). Visualization can be done with the Vim CCTree plugin (http://www.vim.org/scripts/script.php?script_id=2368), or the built-in stand-alone command-line tracer.
Plugin for Qt Creator IDE
This plugin adds info string to the Qt Creator Editor toolbar that counts lines in the current file and whole project if pro-file opened. Required Qt Creator 3.4.0. If you use Qt Creator above 3.4.0 version - download source files and follow the instructions in README (Part 1: MAKING FROM SOURCE). Check README for installation and building instructions. v.0.9.4 2015-04-09 * Ported to Qt5 and QtCreator 3.4.0 rc1. * Internationalization added. * Russian translation added. * Fixed zero project lines count at the begining Qt Creator session. * Minor tests improvements.
Open source and free source code static analyzer
AdLint is a source code static analyzer. It can point out insecure or nonportable code fragments, and can measure various quality metrics of the source code. It (currently) can analyze source code compliant with ANSI C89 / ISO C90 and partly ISO C99. AdLint is written in Ruby. So, it is available for Windows, Mac OS X, GNU/Linux, FreeBSD and any other platforms supported by Ruby.
An interactive binary search tree. The user may interact with the tree by performing rotations, balancing, insertions, and deletions. For educational purposes
Just another manual code analysis tool and static analysis tool.
Just another manual code analysis tool and static analysis tool. https://github.com/CoolerVoid/codewarrior
Recursive source code line counter for C, BASIC, and web files.
Recursively count lines of source code and comments through files and sub-directories. Created to parse entire projects rather than individual files. C, BASIC, and web files (general) supported.
This is a python program which generates python file for a given .glade file (LibGlade fmt)
Java Cobol Lexer take a cobol source program and return it as a list of lexical tokens. Library takes source code in fixed, free and mixed formats. It recognizes standard Cobol 85.
Tool for code duplication detection in QtCreator projects.
This plugin intergate simian (Similarity Analysis) tool into QtCreator IDE. Fast and customizable source code checking for duplicated code fragments. Double click on similarity record open source code file and highlight text fragment. See wiki page for more info about settings and advanced using.
A c++ wrapper around HTML Tidy Lib
This wrapper is meant to use curl in an OOP manner while preserving the programming style / API style of tidylib. This is more like an object oriented c++ bind rather than a wrapper, as it tries to keep the api as simple and as close to the original as possible without wrapping unnecessary stuff.
Utilities for AdLint the source code static analyzer
AdLint Goodies is a collection of miscellaneous utilities for AdLint. All goodies are written in Ruby and available for Windows, Mac OS X, GNU/Linux, FreeBSD and any other platforms supported by Ruby.
A text adventure in Java which is also a tutorial for coders.
This project builds up a classic text adventure which is customisable from XML. It also includes a tutorial which explains how the java code was put together and how it works. Ideal for beginner java coders. For the full tutorial go to the Wiki.
Aurelia is a framework for program transformation based on a C++0x development environment. It provides libraries and tools for term rewriting, strategic programming, AST type generation, parsing.
State Dependency deconstructor and mapper for C source code.
Flowcharts not telling you what you want to know about some C source code? Try a State Dependency map! Every C source file is an implemention of a state machine. Implicit in the definition of a state machine is a network of dependencies between the states. The Automalator * deconstructs the C code into the core state machine * collates the transactions into the dependency net * generates a diagram-format file with the states and dependencies as the nodes and edges. Pre-requisites * Perl - tested with versions 5.12.3, 5.14.2 and 5.20.2, Windows, Linux and MAC * Get the Automalator by downloading the zip, or checking out or exporting the SVN trunk * copy the source code of interest into "project.c" * windows - double-click "src2map.bat" * linux & MAC - navigate the command line to the "project" folder, then run "src2map.sh" * open "project.gml" file with diagramming software.
Sterling Integrator BP utilities
BPUtils is a Sterling Integrator BP file manipulation program. It features : - XPath expressions control : BPUtils checks that the XPath expressions defined in the BP file are correct - Consistency control : Controls that the sequences and the on faults are named in a correct way - Auto layout formatting : Formats automatically your BP layouts ! - BP tree printing : BPUtils is able to print to the console standard output the BP tree - BP dependencies analysis : Get the list of service configurations used by the BP And, implements your own functionality by using the Java BPUtils library ! BP loading from : - single BP file - XML resource export file - Automatic BP check out from server