13 Mobile Static Analysis Tools

Combines lint errors of multiple projects into one output, check lint results of multiple sub-projects at once.

Run static analysis on Android projects.

Commercial Static Code Analysis.

Commercial Static Code Analysis which doesn't require pre-compilation.

Static taint analysis tool for Android applications.

iblessing is an iOS security exploiting toolkit. It can be used for reverse engineering, binary analysis and vulnerability mining.

Commercial Static Code Analysis system doesn't require building the source code or pre-compilation.

A toolkit to detect some code smells in analyzed Android applications.

Enterprise vulnerability scanner for Android and iOS apps. It allows app owners and developers to secure each new version of a mobile app by integrating Oversecured into the development process.

Tool to look for several security related Android application vulnerabilities.

Redex provides a framework for reading, writing, and analyzing .dex files, and a set of optimization passes that use this framework to improve the bytecode. An APK optimized by Redex should be smaller and faster.

A commercial static analysis platform that allows for scanning of multiple languages (C/C++, Android, C#, Java, JS, PHP, Python, Node.JS, Ruby, Fortran, and Swift).

WhiteHat Scout (for Developers) combined with WhiteHat Sentinel Source (for Operations) supporting WhiteHat Top 40 and OWASP Top 10.