AI tools for code auditing stars>50
Related Tools:
Rowy
Rowy is a low-code backend platform that allows users to manage their database on a spreadsheet-like interface and build powerful backend cloud functions without leaving their browser. It offers a variety of features such as derivative fields, action fields, extensions, webhooks, and integrations with popular tools like Google Vision, GPT-3, Figma, and Webflow. Rowy is designed to be accessible to both developers and non-technical users, making it a versatile tool for building and managing backend applications.
Smaty.xyz
Smaty.xyz is a comprehensive platform that provides a suite of tools for code generation and security auditing. With Smaty.xyz, developers can quickly and easily generate high-quality code in multiple programming languages, ensuring consistency and reducing development time. Additionally, Smaty.xyz offers robust security auditing capabilities, enabling developers to identify and address vulnerabilities in their code, mitigating risks and enhancing the overall security of their applications.
Benjamin S Powell
Benjamin S Powell is a leading AI consultant specializing in implementing powerful AI tools and strategies to help businesses reduce operational costs, boost productivity, and enhance workforce performance. With over 20 years of experience in entrepreneurship and product leadership, Benjamin has successfully founded multiple companies and steered them to profitable exits, taking on several C-Level roles along the way. His expertise lies in auditing and optimizing workflows, designing secure, impactful AI-driven tools, and sharing deep insights into emerging AI technologies through public speaking engagements.
Benjamin S Powell
Benjamin S Powell is a leading AI consultant specializing in implementing powerful AI tools and strategies to help businesses reduce operational costs, boost productivity, and enhance workforce performance. With over 20 years of experience in entrepreneurship and product leadership, Benjamin has successfully founded multiple companies and steered them to profitable exits. His expertise lies in auditing and optimizing workflows, designing secure, impactful AI-driven tools, and sharing deep insights into emerging AI technologies through public speaking engagements.
Chrome for Developers
Chrome for Developers is a powerful web development platform that offers a wide range of tools and resources to help developers build, grow, and innovate on the web. It provides features such as DevTools, Lighthouse, Chrome UX Report, and Accessibility tools to create the best user experience. With ready-made libraries like Workbox and Puppeteer, developers can get things done quicker and neater. The platform also focuses on AI performance, CSS and UI design, identity management, payments, and privacy and security. Chrome for Developers is a one-stop solution for web development needs, offering documentation, tutorials, and resources to help developers succeed.
AI Code Reviewer
AI Code Reviewer is a tool that uses artificial intelligence to review code. It can help you find bugs, improve code quality, and enforce coding standards.
Code Genius
Code Genius is an AI code generator designed to enhance developers' coding experience by offering real-time code analysis, intelligent suggestions, and code improvements. It can generate unit tests, provide clear code documentation, and streamline workflow. The tool aims to optimize code, save time, and improve efficiency for developers worldwide.
404 Error Page
The website displays a 404 error message indicating that the deployment cannot be found. It provides a code (DEPLOYMENT_NOT_FOUND) and an ID (sin1::rxfc2-1757785703946-87c02c710626) for reference. Users are directed to consult the documentation for further information and troubleshooting.
AI Code Translator
AI Code Translator is an online tool that allows users to translate code or natural language into multiple programming languages. It is powered by artificial intelligence (AI) and provides intelligent and efficient code translation. With AI Code Translator, developers can save time and effort by quickly converting code between different languages, optimizing their development process.
Code Generator for Arduino
The Code Generator for Arduino is an AI-powered tool that assists users in generating code for Arduino projects. It provides a user-friendly interface where users can input project details and receive customized Arduino code. The tool is designed to simplify the coding process for Arduino boards, sensors, motors, and other components, making it easier for both beginners and experienced users to create functional projects.
ObfusCat
ObfusCat is an AI code assistant that ensures the privacy and security of your code by masking it locally before sending prompts to ChatGPT for code generation. It provides a layer of security and confidentiality for developers, allowing them to benefit from AI-powered code completion models without sharing their code with third parties. ObfusCat's proprietary algorithm conceals the semantic context of private code while leaving the syntax intact, enhancing code privacy and protection.
TimeComplexity.ai
TimeComplexity.ai is an AI tool that helps users analyze the runtime complexity of their code. It works seamlessly across different programming languages without the need for headers, imports, or a main statement. Users can input their code and receive insights on its runtime efficiency. However, it's important to note that the results may not always be accurate, so caution is advised when using the tool.
PLEASEDONTCODE
PLEASEDONTCODE is an AI Code Generator designed for Arduino and ESP32 embedded systems. It simplifies coding processes, automates code generation, and helps users overcome common obstacles in software development for embedded systems. The platform offers a guided interface with six steps to take users from concept to working code efficiently. By leveraging AI technology, PLEASEDONTCODE ensures error-free, syntactically correct, and logically sound code generation, allowing users to focus on their projects rather than troubleshooting.
DryRun Security
DryRun Security is an AI-driven application security tool that provides Contextual Security Analysis to detect and prevent logic flaws, authorization gaps, IDOR, and other code risks. It offers features like code insights, natural language code policies, and customizable notifications and reporting. The tool benefits CISOs, security leaders, and developers by enhancing code security, streamlining compliance, increasing developer engagement, and providing real-time feedback. DryRun Security supports various languages and frameworks and integrates with GitHub and Slack for seamless collaboration.
CodeConverter.com
CodeConverter.com is an AI code converter tool that allows users to convert code instantly across 120 programming languages. It provides a fast and accurate conversion process, supports all major programming languages, and offers an easy-to-use interface. The platform is completely online, secure, and private, ensuring user data privacy. CodeConverter.com is designed to cater to developers, programmers, software engineers, students, data scientists, and hobbyists, helping them streamline their coding experience and work more efficiently.
CodeConvert AI
CodeConvert AI is an online tool that allows users to convert code across 25+ programming languages with a simple click of a button. It offers high-quality code conversion using advanced AI models, eliminating the need for manual rewriting. Users can convert code without the hassle of downloading or installing any software, ensuring privacy and security as the tool does not retain user input or generated output code. CodeConvert AI provides unlimited usage on paid plans and supports a wide range of programming languages, making it a valuable resource for developers looking to save time and effort in code conversion.
CodeMate
CodeMate is an AI pair programmer tool designed to help developers write error-free code faster. It offers features like code navigation, understanding complex codebases, intuitive interface for smarter coding, instant debugging, code refactoring, and AI-powered code reviews. CodeMate supports all programming languages and provides suggestions for code optimizations. The tool ensures the security and privacy of user code and offers different pricing plans for individual developers, teams, and enterprises. Users can interact with their codebase, documentation, and Git repositories using CodeMate Chat. The tool aims to improve code quality and productivity by acting as a co-developer while programming.
Code Explain
This tool uses AI to explain any piece of code you don't understand. Simply paste the code in the code editor and press "Explain Code" and AI will output a paragraph explaining what the code is doing.
Code Language Converter
Code Language Converter is an AI-powered tool that allows you to convert code from one programming language to another. Simply paste your code snippet into the converter and select the desired output language. The AI will then generate the converted code, which you can download or copy and paste into your project.Code Language Converter is a valuable tool for developers of all levels. It can save you time and effort by automating the code conversion process. Additionally, the converter can help you to learn new programming languages by providing you with a way to see how code is written in different languages.
SpellBox
SpellBox is a versatile AI coding assistant that helps developers of all levels write code faster and more efficiently. With SpellBox, you can say goodbye to hours of frustrating coding and hello to quick, easy solutions. SpellBox creates the code you need from simple prompts, so you can solve your toughest programming problems in seconds.
Code Like a GOAT 🐐🧙🏻♂️
Unleash Your Inner GOAT in Coding! Be the ultimate full-stack developer with unrivaled skills in all coding languages and platforms. Write elegant, secure code, and more. Excel in cybersecurity and innovate with your comprehensive expertise. Ready to code like never before?
Code Mentor
A code review bot that offers insightful advice based on NextJs Documentation.
CodeGPT
This GPT can generate code for you. For now it creates full-stack apps using Typescript. Just describe the feature you want and you will get a link to the Github code pull request and the live app deployed.
Quick Code Snippet Generator
Generates concise, copy-paste code snippets quickly no unnecessary text.
Code Buddy
Your own personal senior software engineer mentor critiquing and optimizing your code helping your improve.
Code de la route française - Entrainement
Entrainez-vous pour votre examen du code de la route en posant toutes sortes de questions sur différentes situations de la route.
人為的コード性格分析(Code Persona Analyst)
コードを分析し、言語ではなくスタイルに焦点を当て、プログラムを書いた人の性格を推察するツールです。( It is a tool that analyzes code, focuses on style rather than language, and infers the personality of the person who wrote the program. )
Code Optimizer Debugger
A Senior Developer AI Assistant for optimizing and debugging code.
Code Cracker
James Bond inspired code cracking game. Copyright (C) 2023, Sourceduty - All Rights Reserved.
Awesome-Code-LLM
Analyze the following text from a github repository (name and readme text at end) . Then, generate a JSON object with the following keys and provide the corresponding information for each key, in lowercase letters: 'description' (detailed description of the repo, must be less than 400 words,Ensure that no line breaks and quotation marks.),'for_jobs' (List 5 jobs suitable for this tool,in lowercase letters), 'ai_keywords' (keywords of the tool,user may use those keyword to find the tool,in lowercase letters), 'for_tasks' (list of 5 specific tasks user can use this tool to do,in lowercase letters), 'answer' (in english languages)
kheish
Kheish is an open-source, multi-role agent designed for complex tasks that require structured, step-by-step collaboration with Large Language Models (LLMs). It acts as an intelligent agent that can request modules on demand, integrate user feedback, switch between specialized roles, and deliver refined results. By harnessing multiple 'sub-agents' within one framework, Kheish tackles tasks like security audits, file searches, RAG-based exploration, and more.
hound
Hound is a security audit automation pipeline for AI-assisted code review that mirrors how expert auditors think, learn, and collaborate. It features graph-driven analysis, sessionized audits, provider-agnostic models, belief system and hypotheses, precise code grounding, and adaptive planning. The system employs a senior/junior auditor pattern where the Scout actively navigates the codebase and annotates knowledge graphs while the Strategist handles high-level planning and vulnerability analysis. Hound is optimized for small-to-medium sized projects like smart contract applications and is language-agnostic.
finite-monkey-engine
FiniteMonkey is an advanced vulnerability mining engine powered purely by GPT, requiring no prior knowledge base or fine-tuning. Its effectiveness significantly surpasses most current related research approaches. The tool is task-driven, prompt-driven, and focuses on prompt design, leveraging 'deception' and hallucination as key mechanics. It has helped identify vulnerabilities worth over $60,000 in bounties. The tool requires PostgreSQL database, OpenAI API access, and Python environment for setup. It supports various languages like Solidity, Rust, Python, Move, Cairo, Tact, Func, Java, and Fake Solidity for scanning. FiniteMonkey is best suited for logic vulnerability mining in real projects, not recommended for academic vulnerability testing. GPT-4-turbo is recommended for optimal results with an average scan time of 2-3 hours for medium projects. The tool provides detailed scanning results guide and implementation tips for users.
Disciplined-AI-Software-Development
Disciplined AI Software Development is a comprehensive repository that provides guidelines and best practices for developing AI software in a disciplined manner. It covers topics such as project organization, code structure, documentation, testing, and deployment strategies to ensure the reliability, scalability, and maintainability of AI applications. The repository aims to help developers and teams navigate the complexities of AI development by offering practical advice and examples to follow.
Mirror-Flowers
Mirror Flowers is an out-of-the-box code security auditing tool that integrates local static scanning (line-level taint tracking + AST) with AI verification to help quickly discover and locate high-risk issues, providing repair suggestions. It supports multiple languages such as PHP, Python, JavaScript/TypeScript, and Java. The tool offers both single-file and project modes, with features like concurrent acceleration, integrated UI for visual results, and compatibility with multiple OpenAI interface providers. Users can configure the tool through environment variables or API, and can utilize it through a web UI or HTTP API for tasks like single-file auditing or project auditing.
awesome-AI-driven-development
Awesome AI-Driven Development is a curated list of tools, frameworks, and resources for AI-driven development. It includes AI code editors, terminal-based coding agents, IDE plugins & extensions, multi-agent systems, code generation & templates, testing & quality assurance tools, Model Context Protocol implementations, pull request & code review tools, project management & documentation tools, language models for code, development workflows tools, code search & analysis tools, specialized tools for Git & version control, cloud & DevOps, language-specific tasks, terminal & shell utilities, prompt & context management tools, Copilot extensions & alternatives, learning & tutorials resources, and configuration & enhancement tools for AI coding assistants.
ccprompts
ccprompts is a collection of ~70 Claude Code commands for software development workflows with agent generation capabilities. It includes safety validation and can be used directly with Claude Code or adapted for specific needs. The agent template system provides a wizard for creating specialized sub-agents (e.g., security auditors, systems architects) with standardized formatting and proper tool access. The repository is under active development, so caution is advised when using it in production environments.
run-gemini-cli
run-gemini-cli is a GitHub Action that integrates Gemini into your development workflow via the Gemini CLI. It acts as an autonomous agent for routine coding tasks and an on-demand collaborator. Use it for GitHub pull request reviews, triaging issues, code analysis, and more. It provides automation, on-demand collaboration, extensibility with tools, and customization options.
LLM-PLSE-paper
LLM-PLSE-paper is a repository focused on the applications of Large Language Models (LLMs) in Programming Language and Software Engineering (PL/SE) domains. It covers a wide range of topics including bug detection, specification inference and verification, code generation, fuzzing and testing, code model and reasoning, code understanding, IDE technologies, prompting for reasoning tasks, and agent/tool usage and planning. The repository provides a comprehensive collection of research papers, benchmarks, empirical studies, and frameworks related to the capabilities of LLMs in various PL/SE tasks.
air-script
AirScript is a domain-specific language for expressing AIR constraints for STARKs, with the goal of enabling writing and auditing constraints without the need to learn a specific programming language. It also aims to perform automated optimizations and output constraint evaluator code in multiple target languages. The project is organized into several crates including Parser, MIR, AIR, Winterfell code generator, ACE code generator, and AirScript CLI for transpiling AIRs to target languages.
awesome-gpt-security
Awesome GPT + Security is a curated list of awesome security tools, experimental case or other interesting things with LLM or GPT. It includes tools for integrated security, auditing, reconnaissance, offensive security, detecting security issues, preventing security breaches, social engineering, reverse engineering, investigating security incidents, fixing security vulnerabilities, assessing security posture, and more. The list also includes experimental cases, academic research, blogs, and fun projects related to GPT security. Additionally, it provides resources on GPT security standards, bypassing security policies, bug bounty programs, cracking GPT APIs, and plugin security.
tinyllm
tinyllm is a lightweight framework designed for developing, debugging, and monitoring LLM and Agent powered applications at scale. It aims to simplify code while enabling users to create complex agents or LLM workflows in production. The core classes, Function and FunctionStream, standardize and control LLM, ToolStore, and relevant calls for scalable production use. It offers structured handling of function execution, including input/output validation, error handling, evaluation, and more, all while maintaining code readability. Users can create chains with prompts, LLM models, and evaluators in a single file without the need for extensive class definitions or spaghetti code. Additionally, tinyllm integrates with various libraries like Langfuse and provides tools for prompt engineering, observability, logging, and finite state machine design.
arcadia
Arcadia is an all-in-one enterprise-grade LLMOps platform that provides a unified interface for developers and operators to build, debug, deploy, and manage AI agents. It supports various LLMs, embedding models, reranking models, and more. Built on langchaingo (golang) for better performance and maintainability. The platform follows the operator pattern that extends Kubernetes APIs, ensuring secure and efficient operations.
AwesomeResponsibleAI
Awesome Responsible AI is a curated list of academic research, books, code of ethics, courses, data sets, frameworks, institutes, newsletters, principles, podcasts, reports, tools, regulations, and standards related to Responsible, Trustworthy, and Human-Centered AI. It covers various concepts such as Responsible AI, Trustworthy AI, Human-Centered AI, Responsible AI frameworks, AI Governance, and more. The repository provides a comprehensive collection of resources for individuals interested in ethical, transparent, and accountable AI development and deployment.
devopness
Devopness is a tool that simplifies the management of cloud applications and multi-cloud infrastructure for both AI agents and humans. It provides role-based access control, permission management, cost control, and visibility into DevOps and CI/CD workflows. The tool allows provisioning and deployment to major cloud providers like AWS, Azure, DigitalOcean, and GCP. Devopness aims to make software deployment and cloud infrastructure management accessible and affordable to all involved in software projects.
jadx-mcp-server
JADX-MCP-SERVER is a standalone Python server that interacts with JADX-AI-MCP Plugin to analyze Android APKs using LLMs like Claude. It enables live communication with decompiled Android app context, uncovering vulnerabilities, parsing manifests, and facilitating reverse engineering effortlessly. The tool combines JADX-AI-MCP and JADX MCP SERVER to provide real-time reverse engineering support with LLMs, offering features like quick analysis, vulnerability detection, AI code modification, static analysis, and reverse engineering helpers. It supports various MCP tools for fetching class information, text, methods, fields, smali code, AndroidManifest.xml content, strings.xml file, resource files, and more. Tested on Claude Desktop, it aims to support other LLMs in the future, enhancing Android reverse engineering and APK modification tools connectivity for easier reverse engineering purely from vibes.
octelium
Octelium is a free and open source, self-hosted, unified zero trust secure access platform that operates as a modern zero-config remote access VPN, a comprehensive Zero Trust Network Access (ZTNA)/BeyondCorp platform, an ngrok/Cloudflare Tunnel alternative, an API gateway, an AI/LLM gateway, a PaaS-like platform, a Kubernetes gateway/ingress, and a homelab infrastructure. It provides scalable zero trust architecture for identity-based, application-layer aware secure access via private client-based access over WireGuard/QUIC tunnels and public clientless access, with context-aware access control. Octelium offers dynamic secretless access, fine-grained access control, identity-based routing, continuous strong authentication, OpenTelemetry-native auditing, passwordless SSH, effortless deployment of containerized applications, centralized management, and more. It is open source, designed for self-hosting, and provides a commercial license option for businesses.
NextChat
NextChat is a well-designed cross-platform ChatGPT web UI tool that supports Claude, GPT4, and Gemini Pro. It offers a compact client for Linux, Windows, and MacOS, with features like self-deployed LLMs compatibility, privacy-first data storage, markdown support, responsive design, and fast loading speed. Users can create, share, and debug chat tools with prompt templates, access various prompts, compress chat history, and use multiple languages. The tool also supports enterprise-level privatization and customization deployment, with features like brand customization, resource integration, permission control, knowledge integration, security auditing, private deployment, and continuous updates.
airswap-protocols
AirSwap Protocols is a repository containing smart contracts for developers and traders on the AirSwap peer-to-peer trading network. It includes various packages for functionalities like server registry, atomic token swap, staking, rewards pool, batch token and order calls, libraries, and utils. The repository follows a branching and release process for contracts and tools, with steps for regular development process and individual package features or patches. Users can deploy and verify contracts using specific commands with network flags.