Category Archives: Source Code Scanner

PMD – Extensible Multilanguage Static Code Analyzer

PMD is a source code analyzer. It finds common programming flaws like unused variables, empty catch blocks, unnecessary object creation, and so forth.

Find Security Bugs – SpotBugs plugin for Java

Find Security Bugs is a well-known plugin for security audits of Java web applications. the tool have a large list of rules to identify security

Graudit – Grep Rough Audit – Source Code Auditing Tool

graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility grep.

Bandit – Find Common Security Vulnerabilities in Python Code

Bandit is a tool designed to find common security issues in Python code. To do this the tool processes each file, builds an AST from it