Infer
Facebook Infer is a static analysis tool - if you give Infer some Objective-C, Java, or C code, it produces a list of potential bugs.
Splint
Splint is a tool for statically checking C programs for security vulnerabilities and coding mistakes. With minimal effort, Spl ...
Coverity Scan
Coverity Scan Static Analysis allows to find and fix defects in your Java, C/C++ or C# open source project for free. It tests ...
lgtm.com
lgtm.com is a platform for code analytics. It's free to use for open source software; results for over 55k projects are readil ...
PVS-Studio
PVS-Studio is a static analyzer that detects errors in source code of C, C++ and C# applications. The PVS-Studio tool is inten ...
Flawfinder
Flawfinder examines source code and reports possible security weaknesses (``flaws'') sorted by risk level. It's very useful fo ...
Cppcheck
Cppcheck is an static analysis tool for C/C++ code. Unlike C/C++ compilers and many other analysis tools it does not detect sy ...
Clang Static Analyzer
The Clang Static Analyzer is a source code analysis tool that finds bugs in C, C++, and Objective-C programs.
VisualCodeGrepper
VCG is an automated code security review tool that handles C/C++, Java, C#, VB and PL/SQL. It has a few features that should h ...
EDoC++
EDoC++ is a C++ source analysis tool designed to identify problems associated with the use of exceptions in C++ code. Addition ...