FlowDroid
FlowDroid is a context-, flow-, field-, object-sensitive and lifecycle-aware static taint analysis tool for Android applications.
NodeJsScan is a static security code scanner (SAST) for Node.js applications powered by libsast and semgrep. It is made in India and supports NodeJsScan through donations via Paypal. The tool can be run using Docker or set up locally by installing Postgres and configuring SQLALCHEMY_DATABASE_URI. It also provides a web user interface, a Command Line Interface (CLI), a Python API, and integrations with Slack for alerts.
FlowDroid is a context-, flow-, field-, object-sensitive and lifecycle-aware static taint analysis tool for Android applications.
Mitigate security concerns of Dependency Confusion supply chain security risks.
An insecure web application with multiple vulnerable web service components for learning real-world web service vulnerabilities.
Insider is a source code analysis tool focusing on OWASP Top 10 vulnerabilities with easy integration into DevOps pipelines.
A static analysis tool for Android apps that detects malware and other malicious code
Statistical renaming, Type inference, and Deobfuscation tool for JavaScript code.