Clang Static Analyzer Alternatives & Competitors

Cppcheck is an analysis tool for C/C++ code. It detects the types of bugs that the compilers normally fail to detect. The goal is no false positives. CppCheckDownload cppcheck for free.

Key Cppcheck features:

Open Source Static Analysis Wide Platform Support Integrated with IDEs

Open Source

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.

Key SonarQube features:

Comprehensive code analysis Multi-language support Continuous integration (CI) integration Customizable rules

Open Source freemium $150.0 / Annually

NinjaOne (Formerly NinjaRMM) provides remote monitoring and management software that combines powerful functionality with a fast, modern UI. Easily remediate IT issues, automate common tasks, and support end-users with powerful IT management tools.

Key NinjaOne features:

Self Service Portal Audit, Analysis and Compliance User Activity Monitoring Software Inventory

Try for free paid Free Trial

Ensure compliance with a variety of functional safety, security, and coding standards in embedded C/C++ software.

Key Parasoft C/C++test features:

Comprehensive Analysis Automated Testing Compliance with Standards Integration with Development Environments

Find and fix defects in your Java, C/C++ or C# open source project for free.

Key Coverity Scan features:

Comprehensive Analysis Wide Language Support Integration with Development Workflow Actionable Reports

lgtm.com is a platform for code analytics.

Key lgtm.com features:

Automated Code Review Multi-language Support Integrations Database of Queries

Polyspace is a suite of static code analysis products developed by Matlab to help software developers, QA Testers, and engineers find critical problems in their code and fix them before they become a serious threat.

Key Polyspace features:

Static Code Analysis MISRA Compliance Automatic Bug Detection Concurrency Analysis

PVS-Studio is a useful piece of software for detecting problems in source code. The software examines program codes written in C, C++, and C# for any problems that might prohibit the code from functioning properly.

Key PVS-Studio features:

Comprehensive Code Analysis Integration with Development Environments Cross-Platform Support Rich Set of Diagnostic Rules

VCG is an automated code security review tool that handles C/C++, Java, C#, VB and PL/SQL.

Key VisualCodeGrepper features:

Open Source Multi-language Support User-friendly Interface Static Code Analysis

David A. Wheeler's Page for Flawfinder.

Key Flawfinder features:

Ease of Use Open Source Focus on C/C++ Speed

Liverpool Data Research Associates (LDRA) is a provider of software analysis, test and requirements...

Key LDRA Testbed features:

Comprehensive Static and Dynamic Analysis Support for Multiple Standards Integration Capabilities Detailed Reporting and Metrics

Perforce Helix QAC is a handy, reliable, and highly rated Static Code Analysis solution that aids you in the process of finding vulnerabilities and problems within your C/C++ code.

Key Perforce Helix QAC features:

Comprehensive Static Code Analysis MISRA Compliance Detailed Reporting Integration Capabilities

PC-lint Plus is the premier static analysis tool for C and C++.

Key PC-lint features:

Comprehensive Analysis Customizability Early Error Detection Wide Language Support

Klocwork is a static code analysis and SAST tool for C, C++, C#, Java, and JavaScript. .

Key Klocwork features:

Static Code Analysis Scalability Integration Customization