Splint Alternatives

Find and fix defects in your Java, C/C++ or C# open source project for free

Cppcheck is an analysis tool for C/C++ code. It detects the types of bugs that the compilers normally fail to detect. The goal is no false positives. CppCheckDownload cppcheck for free.

SonarQube is a self-managed static analysis tool used for continuous codebase inspection.

freemium $150.0 / Annually

David A. Wheeler's Page for Flawfinder

The Clang Static Analyzer is a source code analysis tool that finds bugs in C, C++, and Objective-C...

PVS-Studio is a useful piece of software for detecting problems in source code. The software examines program codes written in C, C++, and C# for any problems that might prohibit the code from functioning properly.

CodeSonar, produced by GrammaTech, is source and binary code analysis software that finds critical defects that can crash systems, result in unexpected operations, threaten security, and more.

The industry’s most comprehensive AppSec platform, Checkmarx One is fast, accurate, and accelerates your business.

PC-lint Plus is the premier static analysis tool for C and C++

Klocwork is a static code analysis and SAST tool for C, C++, C#, Java, and JavaScript.

ShellCheck finds bugs in your shell scripts

Our goal is to provide our customers with an end-to-end Information Security service in their web applications, from the development phase through to maintenance.

paid Free Trial

Infer’s lead scoring and advanced predictive analytics integrates with your existing marketing automation tools to build personalized predictive models to identify your best sales and marketing leads.