#codeanalysis

svn-extractor on offsec.tools
Featured
svn-extractor

Simple script to extract all web resources by means of .SVN folder exposed over network.

jswzl on offsec.tools
jswzl

Improve your web application aecurity testing with rich data from static analysis.

Pyscan on offsec.tools
Pyscan

A dependency vulnerability scanner for your python projects, straight from the terminal.

Frida on offsec.tools
Frida

Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.

murphysec on offsec.tools
murphysec

An open source tool focused on software supply chain security.

repo-supervisor on offsec.tools
repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets.

talisman on offsec.tools
talisman

Validate the outgoing changeset for things that look suspicious such as tokens, passwords and keys.

git-secrets on offsec.tools
git-secrets

Prevents you from committing secrets and credentials into git repositories.

gef on offsec.tools
gef

A modern experience for GDB with advanced debugging capabilities.

QuadraInspect on offsec.tools
QuadraInspect

A comprehensive approach to the vulnerability analysis of Android application.

ggshield on offsec.tools
ggshield

Find multiple types of hardcoded secrets & types of infrastructure-as-code misconfigurations.

GitHacker on offsec.tools
GitHacker

A Git source leak exploit tool that restores the entire Git repository, including data from stash.

Nosey Parker on offsec.tools
Nosey Parker

Command-line tool that finds secrets and sensitive information in textual data and Git history.

drek on offsec.tools
drek

A static-code-analysis tool for performing security-focused code reviews.

detect-secrets on offsec.tools
detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.

EarlyBird on offsec.tools
EarlyBird

Sensitive data detection tool capable of scanning source code repositories.

Mosca on offsec.tools
Mosca

Manual search tool to find bugs like a grep unix command.

Sourcegraph on offsec.tools
Sourcegraph

Search millions of open source repositories.

localdataHog on offsec.tools
localdataHog

String-based secret-searching tool, high entropy and regexes.

StaCoAn on offsec.tools
StaCoAn

Crossplatform tool which help to perform static code analysis on mobile applications.

Betterscan on offsec.tools
Betterscan

Code Scanning/SAST/static analysis/linting using many tools/scanners with one report.

Whispers on offsec.tools
Whispers

Identify hardcoded secrets in static structured text.

Yet Another Robber on offsec.tools
Yet Another Robber

Yar is a tool for plunderin' organizations, users and/or repositories...

TruffleHog on offsec.tools
TruffleHog

Find credentials all over the place.