boned101 / Secode

python3 script which detects and provides alternates for insecure C code.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Secode

  • Secode - a python3 command line static code analyzer for C source files. It analyzes the code line by line and creates a list for each vulnerability with a scale of severity for each hit ranging from 1 to 5.
  • It also prints out suggestions/alternate functions for each hit on each line .
  • It has a ruleset with a total of 233 insecure C functions which it compares during its analysis.

This Version

  • this is the build that i maintained on my system , i prefer how its laid out . I contributed to secode's development on the main repo.
  • check out https://github.com/AliasgarSabunwala/Secode if you wish to see the full release version . There is no difference between the core logic of the two repos, only cosmetic and licensing .

i would like to thank all other contributers to this project , which we made for our second undergrad security project :

  1. AliasgarSabunwala - https://github.com/AliasgarSabunwala
  2. Noel Varghese - https://github.com/NoelV11
  3. Oorja Rungta - (...)

About

python3 script which detects and provides alternates for insecure C code.

License:Other


Languages

Language:Python 44.7%Language:Roff 25.6%Language:C 25.1%Language:Makefile 4.4%Language:Lex 0.2%