code-audit
There are 26 repositories under code-audit topic.
FeeiCN/Cobra
Source Code Security Audit (源代码安全审计)
j3ers3/Hello-Java-Sec
☕️ Java Security,安全编码和代码审计
bloodzer0/ossa
Open-Source Security Architecture | 开源安全架构
lintsinghua/XCodeReviewer
XCodeReviewer 是一款基于大语言模型(LLM)的智能审计工具,支持 GPT、Claude、Gemini、通义千问、DeepSeek、Ollama 等十余主流 AI 模型。它能够自动检测代码中的安全漏洞、性能问题和代码异味,显著提升代码质量与安全性。XCodeReviewer 支持 GitHub/GitLab 集成,可无缝嵌入 CI/CD 流程,实现自动化代码审查与持续安全保障,同时兼容十多种编程语言,满足多样化项目需求。
whgojp/JavaSecLab
JavaSecLab is a comprehensive Java vulnerability platform| JavaSecLab是一款综合型Java漏洞平台,提供相关漏洞缺陷代码、修复代码、漏洞场景、审计SINK点、安全编码规范,覆盖多种漏洞场景,友好用户交互UI……
SpringKill-team/CodeAuditAssistant
🔍 CodeAuditAssistant - IDEA代码审计插件(公测中) ⚡ 精准追踪复杂调用链 | 🚀 毫秒级方法搜索 | 🔥 内置高危漏洞检测 原生集成 | 反编译/路径分析 | 内存优化 | 安全审计利器 🔍 CodeAuditAssistant - JetBrains Code Audit Plugin (Beta) ⚡ Deep Call-Chain Tracking | 🚀 Method/Class Search | 🔥 Prebuilt Vuln Sinks Native Integration | Decompiler/Path Finder | Memory Optimized
Ky0toFu/Mirror-Flowers
Mirror Flowers 是一个开箱即用的代码安全审计工具,集成本地静态扫描(行级污点追踪 + AST)与 AI 验证,帮助你快速发现并定位高风险问题,并给出修复建议。
Secrover/Secrover
Open-source security reports — no paywalls, just actionable insights.
Night-Master/sdlc_python
sdlc_python 是一个基于python语言构建的devsecops平台,旨在促进 DevSecOps 和安全开发生命周期 (SDLC) 实践。它通过模拟常见漏洞来增强开发人员的安全意识(对应sdlc中对开发人员的安全培训),并且使用了大模型进行代码安全审计(对应sdlc中代码审计阶段),帮助企业进行安全左移。除了用于 DevSecOps 实践外,sdlc_python 还可以用于学习漏洞知识、渗透测试和代码审计。本项目采用了前后端分离的设计模式,其中后端利用了轻量级框架 Flask,而前端则使用了 Vue 3。
WangYihang/Find-PHP-Vulnerabilities
:bug: A plug-in of sublime 2/3 which is able to find PHP vulnerabilities
Nayjest/Gito
An AI-powered GitHub code review tool that uses LLMs to detect high-confidence, high-impact issues—such as security vulnerabilities, bugs, and maintainability concerns.
c0brabaghdad1/DVPA
Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
nocomplexity/codeaudit
Codeaudit - Modern Python source code analyzer based on distrust.
jianmou/MiniProject_PHP_Code_audit
MiniProject_PHP_Code_audit | PHP代码审计小练习
Veallym0n/Daimaku
顾名思义,一个代码的数据库....
belane/CodeAuditor
Take notes and categorize issues during a source code audit.
t3hp0rP/Code-Audit-Challenges-Docker
Code-Audit-Challenges-Docker
SZFsir/Code-Audit-Challenges
Code-Audit-Challenges
tin-z/Audits
My personal smart contract findings during code audit sessions
0xh4ty/CnF-Infinity
CnF-Infinity is a Rust-based canvas tool for managing and linking notes and code.
ajitpanja22/DeepSeek-Pentest-AI
🔍 Automate vulnerability testing and payload generation in web applications with DeepSeek Pentest AI, a powerful Burp Suite extension.
MhagoChris/XCodeReviewer
🤖 Simplify code reviews with XCodeReviewer, your smart partner for efficient and effective code audits in any development project.
seecode-audit/sdl-docs
Security Development Lifecycle related documentation
sunriseXu/code-audit-search
Save and resume your search history during code audit
Hacker-One/graudit
grep rough audit - source code auditing tool
keywolf/keywolf.github.io
Smart Contract auditing