Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/FeeiCN/Cobra

Source Code Security Audit (源代码安全审计)
https://github.com/FeeiCN/Cobra

cobra code-audit security-audit security-scanner security-tools sourcecode-analysis

Last synced: about 1 month ago
JSON representation

Source Code Security Audit (源代码安全审计)

Host: GitHub
URL: https://github.com/FeeiCN/Cobra
Owner: FeeiCN
License: mit
Archived: true
Created: 2016-04-15T08:41:15.000Z (over 8 years ago)
Default Branch: master
Last Pushed: 2022-09-16T17:46:29.000Z (about 2 years ago)
Last Synced: 2024-07-30T14:19:12.394Z (5 months ago)
Topics: cobra, code-audit, security-audit, security-scanner, security-tools, sourcecode-analysis
Language: Python
Homepage: http://cobra.feei.cn
Size: 23.8 MB
Stars: 3,130
Watchers: 156
Forks: 953
Open Issues: 81
Metadata Files:
- Readme: README.md
- Changelog: CHANGES.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Code of conduct: .github/CODE_OF_CONDUCT.md

Awesome Lists containing this project

awesome-hacking-lists - FeeiCN/Cobra - Source Code Security Audit (源代码安全审计) (Python)

README

        # Cobra

[![Build Status](https://travis-ci.org/WhaleShark-Team/cobra.svg?branch=master)](https://travis-ci.org/WhaleShark-Team/cobra)

[![Coverage Status](https://coveralls.io/repos/github/WhaleShark-Team/cobra/badge.svg?branch=master)](https://coveralls.io/github/WhaleShark-Team/cobra?branch=master)

[![GitHub (pre-)release](https://img.shields.io/github/release/WhaleShark-Team/cobra/all.svg)](https://github.com/WhaleShark-Team/cobra/releases)

[![license](https://img.shields.io/github/license/mashape/apistatus.svg?maxAge=2592000)](https://github.com/WhaleShark-Team/cobra/blob/master/LICENSE)

[![asciicast](https://raw.githubusercontent.com/WhaleShark-Team/cobra/master/docs/report_03.jpg)](https://asciinema.org/a/132572)

**该项目设计已无法实现当前白盒扫描要求，已不在维护，仅做研究使用，请勿在生产环境使用**

## Introduction（介绍）

Cobra是一款**源代码安全审计**工具，支持检测多种开发语言源代码中的**大部分显著**的安全问题和漏洞。

## Features（特点）

#### Multi-language Supported（支持多种开发语言）

> 支持PHP、Java等开发语言，并支持数十种类型文件。

#### Multi-Vulnerabilities Supported（支持多种漏洞类型）

> 首批开放数万条不安全的依赖检查规则和数十条代码安全扫描规则，后续将持续开放更多扫描规则。

#### GUI/CLI/API Mode（命令行模式和API模式）

> 提供本地Web Server服务，可使用GUI可视化操作，也可支持本地API接口，方便和其它系统（发布系统、CI等）对接扩展。

## Screenshot（截图）

[![report01](https://raw.githubusercontent.com/whaleshark-team/cobra/master/docs/report_01.jpg)](https://whaleshark-team.github.io/cobra/api)

[![report02](https://raw.githubusercontent.com/whaleshark-team/cobra/master/docs/report_02.jpg)](https://whaleshark-team.github.io/cobra/api)

## Contributors（贡献者）

项目由[Feei](https://github.com/FeeiCN)发起并主导，核心开发者[LiGhT1EsS](https://github.com/LiGhT1EsS)、[BlBana](https://github.com/BlBana)、[40huo](https://github.com/40huo)、[braveghz](https://github.com/braveghz)，也感谢其他[贡献者](https://github.com/WhaleShark-Team/cobra/graphs/contributors)，欢迎提交PR。

## Links（链接）

- [Cobra文档](https://whaleshark-team.github.io/cobra/)