Flawfinder
Flawfinder examines source code and reports possible security weaknesses (``flaws'') sorted by risk level. It's very useful for quickly finding and removing at least some potential security problems...
View ArticleEDoC++
EDoC++ is a C++ source analysis tool designed to identify problems associated with the use of exceptions in C++ code. Additionally EDoC++ can be used to generate detailed documentation
View ArticleSplint
Splint is a tool for statically checking C programs for security vulnerabilities and coding mistakes. With minimal effort, Splint can be used as a better lint. If additional effort is invested adding...
View ArticlePVS-Studio
PVS-Studio is a static analyzer that detects errors in source code of C/C++/C++11 applications. The PVS-Studio tool is intended for developers of contemporary applications and it integrates into the...
View ArticleCoverity Scan
Coverity Scan Static Analysis allows to find and fix defects in your Java, C/C++ or C# open source project for free. It tests every line of code and potential execution path. The root cause of each...
View ArticleVisualCodeGrepper
VCG is an automated code security review tool that handles C/C++, Java, C#, VB and PL/SQL. It has a few features that should hopefully make it useful to anyone conducting code security reviews,...
View ArticleLDRA Testbed
LDRA Testbed provides the core static and dynamic analysis engines for both host and embedded software. LDRA Testbed provides the means to enforce compliance with coding standards such as MISRA, JSF++...
View Article
