Code security review tool for C/C++, C#, VB, PHP, Java and PL/SQL.
VCG is an automated code security review tool for C++, C#, VB, PHP, Java and PL/SQL which is intended to drastically speed up the code review process by identifying bad/insecure code. It has a few features that should make it useful. In addition to performing some more complex checks it also has a config file for each language that basically allows you to add any bad functions (or other text) that you want to search for. It attempts to find phrases within comments that can indicate broken code and it provides stats and a pie chart (for the entire codebase and for individual files) showing relative proportions of code, whitespace, comments, 'ToDo' style comments and bad code. I've tried to produce something which searches intelligently for buffer overflows and signed/unsigned comparison in C, violations of OWASP recommendations in Java code, etc. Current version: 2.1.0
ccglue is a complementary tool to cscope and ctags. The tool builds a cross-reference symbol database from cscope [and ctags] databases that can be used to display dependency-graphs (aka call-trees, code flow). Visualization can be done with the Vim CCTree plugin (http://www.vim.org/scripts/script.php?script_id=2368), or the built-in stand-alone command-line tracer.
Search files for a text string. Like grep but really dumbed down
A library for monitoring the garbage collection of app objects
gcRadar is not a static code anayser but it is a library using which is ment to beused in your source code and it will monitor and report the lifetime events of yuor objects. gcRadar can provide this information by using callbacks, log4j & polling. gcRadar can monitor entities ranging from individula objects to full object trees comprising of is-a & has-a relationships. By using gcRadar you can monitor the lifetime of the objects that are created by your application in runtime, gcRadar enables the application to be aware of the memory constaraints that arise at runtime. The workings of the mythical Java Garbage Collector have for long eluded the common developer. Now by gcRadar enable you to record the life and death of objects at runtime.
C++ analysis IDE with auto class, sequence, zone, dependency, diagrams
The Oovcde project has been renamed to OovAide. Downloades from either location work for now. The Oovcde project is a C++ IDE for Windows or Linux with an automated multi-tasking build system, cross compiler support, an analysis tool based on CLang that creates UML class, component, sequence as well as zone and portion diagrams from C++ source, static analysis and test coverage. The diagrams allow navigation through the source code, and can be edited manually and saved as .SVG files. It creates CMake files and can be built using Eclipse or CMake. Export to SQLite is supported.
A web application that assists users in evaluating OS software.
Makes a C function call tree as Graphviz DOT file from CScope output.
The purpose of the project is generating a function call tree for a software application written in C. This utility takes as input an uncompressed CScope (http://cscope.sourceforge.net/) output file. With a few options, an output DOT language file can be generated. The DOT file may be used as input for Graphviz (http://www.graphviz.org/) to make an image of the function call tree (see screenshot examples for tceetree run over its sources). For more information, see the Wiki page.
A c++ wrapper around HTML Tidy Lib
This wrapper is meant to use curl in an OOP manner while preserving the programming style / API style of tidylib. This is more like an object oriented c++ bind rather than a wrapper, as it tries to keep the api as simple and as close to the original as possible without wrapping unnecessary stuff.