Open Source C Source Code Analysis Tools
Sort By:
C Source Code Analysis Tools
View 5588 business solutionsBrowse free open source C Source Code Analysis Tools and projects below. Use the toggles on the left to filter open source C Source Code Analysis Tools by OS, license, language, programming language, and project status.
-
Passwordless Authentication and Passwordless SecurityIt’s no secret — passwords can be a real headache, both for the people who use them and the people who manage them. Over time, we’ve created hundreds of passwords, it’s easy to lose track of them and they’re easily compromised. Fortunately, passwordless authentication is becoming a feasible reality for many businesses. Duo can help you get there.
-
Build Securely on AWS with Proven FrameworksMoving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
-
1
Doxygen is a JavaDoc like documentation system for C++, C, Java and IDL.
-
2
Source Navigator NG is a source code analysis tool. With it, you can edit your source code, display relationships between classes and functions and members, and display call trees. You can navigate your source code and easily get to declarations or implementations of functions, variables and macros (commonly called "symbols") which helps you discovering and mapping unknown source code for enhancement or maintenance tasks.
-
3
Checked C
Checked C is an extension to C that lets programmers write C code
Checked C is an extension to C that lets programmers write C code that is guaranteed by the compiler to be type-safe. The goal is to let people easily make their existing C code type-safe and eliminate entire classes of errors. Checked C does not address use-after-free errors. Checked C adds static and dynamic checking to C to detect or prevent common programming errors such as buffer overruns and out-of-bounds memory accesses. The goal of the project is to improve systems programming by making fundamental improvements to C. This repo contains sample code, the extension specification, and test code. The Checked C project is extending the C programming language so that programmers can write more secure and reliable C programs. The project is developing an extension to C called Checked C that adds checking to C to detect or prevent common programming errors such as buffer overruns, out-of-bounds memory accesses, and incorrect type casts. -
4
cline
Command line tool for counting source code lines
cline is a command line tool that counts code lines or non-whitespace characters in your project folder. It is designed to recursively find any source file matching specific rules and count the line breaks within that file. You may specify file suffixes to include or exclude as well as regular expressions for code lines that shall be excluded (e.g. to exclude comments). By default a heuristic algorithm skips binary files. You may configure the restrictiveness of this algorithm with command line options. -
Build Securely on Azure with Proven FrameworksMoving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
-
5
CrtDbg for WinCE
Port of MS _CrtDbg Memory Leak Detection for WinCE
You are searching _CrtDumpMemoryLeaks(), _CrtSetReportMode() and all the well known Win32 stuff? But you don't find it for your Windows CE or Windows Mobile native C or C++ development? Get tired of Memory Leaks? Handle Leaks? Trouble with Appverify (Application Verifier for WinCE)? Stop searching. Congratulations, you got it! -
6
Code-warrior
Just another manual code analysis tool and static analysis tool.
Just another manual code analysis tool and static analysis tool. https://github.com/CoolerVoid/codewarrior -
7
Diff-ext is an extension for filemanagers such as Windows Explorer and Nautilus that allows to launch diff/merge tools on selected files.
-
8
CoFlo
C and C++ control flow graph generator and analyzer
CoFlo generates Control-Flow Graphs from C and C++ source code. It can then output the graphs in a number of ways and perform various control flow analyses. NOTE: CoFlo has not been under active development for several years. At this time, I suggest you look into LLVM-based tooling to see if there is anything similar to CoFlo which will meet your needs. -
9
CTREE Graphic Tree Generator for C
An analysis tool showing the structure of a C program
CTREE is a command line utility providing analysis tools useful to software engineers tasked with tracking down problems or verifying a program's soundness. It is also an aid to understanding the structure of unfamiliar programs. As it works with standard C it finds most of its utility in embedded systems and older software. CTREE comes with a comprehensive manual. CTREE is is released by Cleveland Engineering Design, LLC - developer of the CoRTOS cooperative RTOS https://sourceforge.net/projects/cortos-simple/ and PRTOS pre-emptive RTOS https://sourceforge.net/projects/prtos-preemptive-rtos/ V 1.01 - fixed bug that could cause lock-ups or garbage output with some coding styles. -
Our Free Plans just got better! | Auth0 by OktaYou asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your secuirty. Auth0 now, thank yourself later.
-
10
CodeCounter
Recursive source code line counter for C, BASIC, and web files.
Recursively count lines of source code and comments through files and sub-directories. Created to parse entire projects rather than individual files. C, BASIC, and web files (general) supported. -
11
tceetree
Makes a C function call tree as Graphviz DOT file from CScope output.
The purpose of the project is generating a function call tree for a software application written in C. This utility takes as input an uncompressed CScope (http://cscope.sourceforge.net/) output file. With a few options, an output DOT language file can be generated. The DOT file may be used as input for Graphviz (http://www.graphviz.org/) to make an image of the function call tree (see screenshot examples for tceetree run over its sources). For more information, see the Wiki page. -
12
Automalator
State Dependency deconstructor and mapper for C source code.
Flowcharts not telling you what you want to know about some C source code? Try a State Dependency map! Every C source file is an implemention of a state machine. Implicit in the definition of a state machine is a network of dependencies between the states. The Automalator * deconstructs the C code into the core state machine * collates the transactions into the dependency net * generates a diagram-format file with the states and dependencies as the nodes and edges. Pre-requisites * Perl - tested with versions 5.12.3, 5.14.2 and 5.20.2, Windows, Linux and MAC * Get the Automalator by downloading the zip, or checking out or exporting the SVN trunk * copy the source code of interest into "project.c" * windows - double-click "src2map.bat" * linux & MAC - navigate the command line to the "project" folder, then run "src2map.sh" * open "project.gml" file with diagramming software. -
13
C Algorithm Viewer
C/C++,Assembly source code flowchart
This is a small program that shows flowchart from C source code . This program may help the user analyze C/C++ source and Assembly(x86,PIC MCU(16fxx,24fxx))code by navigating the flowcharts. -
14
Cov is a code coverage tool to get your code coverage after your runuing some steps for your programs.It is based on llvm(Low Level Virtual Machine,http://llvm.org/).Now,it's only a begining,so welcome anybody to join in.
-
15
DEEEP
Detector of Integer Vulnerabilities in Software Portability
DEEEP is a open source static analysis tool to detect, in C programs, integer vulnerabilities caused by the bad adaption of aplications from ILP32 to LP64. It uses the tools Lint and Splint, and runs over Open Solaris and Linux operating systems. This tool semantically analyses source code. More precisely, it does type checking, data-flow analysis, and it automatically correlates the results of these two types of analysis. Type checking is used for finding bugs on the way integers are handled, and data-flow analysis is used to see if hazardous functions (eg. memcpy, strcpy) are accessible from outside the program. After this two analyses, the tool correlates the results from the previous phases to attain if the data that comes from the inputs are affected by vulnerabilities from porting to LP64, and if these are handled by dangerous functions (memcpy, strcpy,...). In resume, identify if the found bugs -
16
Ohcount is the source code line counter that powers Ohloh. Ohcount supports over 70 programming languages. Ohcount can also detect popular open source licenses such as GPL determine if code targets a particular programming API, such as Win32 or KDE.
-
17
ParTools
Support for manual parallelization of sequential C programs.
ParTools allows the interactive analysis of a C program execution profile and data dependencies to facilitate the discovery and selection of suitable parallelization candidates in a manual parallelization process. The flow does not assume any specific parallelization technique, thus it can be broadly applied. The original (serial) C source is automatically annotated to trace the execution profile and data dependencies at run-time. The annotated program is then executed using a significant (but small) data set selected by the developer. The data collected is cross-referenced with the original source and can be interactively analyzed graphically to determine the best parallelization candidates and techniques. -
18
This package will allow people to check, change, update the license of their projects. It will conform to all new licenses available.
-
19
REL (Research and Education Language) is a simple but very powerfull language with a compiler, an interpreter and a verifier.
-
20
RemoveComments
Remove Comments from source code.
With this tiny program, you can remove comments easily from source code. -
21
TR-Indentator
This software Indent your program files.
This software Indent your c,cpp,java and c# program files.indentation make your code more readable. -
22
-
23
ansvif
An advanced cross platform fuzzing framework suited to find code bugs.
ansvif, or A Not So Very Intelligent Fuzzer, suited to find bugs in code by throwing garbage arguments, files, and environment variables at the target program, that you may or may not have the source code to. It supports many features, such as buffer size, randomization of the buffer size, random data injection, templates, and much more. The purpose of this project is to identify bugs in software, specifically bugs that can induce a segmentation fault under various conditions. This aids security researchers in writing buffer overflows, input validation vulnerabilities, as well as helping one audit code for general logic mistakes. -
24
CPIP is a C/C++ preprocessor implemented in Python. CPIP exposes all aspects of preprocessing for inspection. NOTE: This project has now moved to https://github.com/paulross/cpip. This is no reflection on Sourceforge, indeed I am very grateful for them hosting CPIP for may years. It is merely because I can't manage two workflows!
-
25
Note: this tool has moved to github, this repository is not maintained any more. See https://github.com/turdusmerula/ftrace GScopeLog is a tool for instrumenting c++ code through gcc. The main purpose is to trace entry/exit point of functions. A status file may be generated to give overview of functions calls and timing informations with minimal impact on performances.
