Key Features

Data Flow Analysis

Track the flow of data through the application to identify how data from untrusted sources can influence critical operations, detecting vulnerabilities like SQL injection, XSS, and command injection.

Control Flow Analysis

Examine the order of execution for statements, instructions, or function calls within a program to identify logic flaws, dead code, and potential security risks in specific execution paths.

Taint Analysis

Identify variables influenced by user input and track their propagation to detect vulnerabilities where tainted data can reach sensitive operations without proper sanitization.

Semantic Analysis

Understand the meaning and behavior of the code at a higher level, including checking for semantic correctness, adherence to coding standards, and identifying potential misuse of APIs.

Dependency Analysis

Examine libraries and frameworks used by the application to identify vulnerabilities in third-party components, ensuring all dependencies are up to date and free from known vulnerabilities.

Secure Coding

Receive actionable insights and guidelines to adopt secure coding practices, ensuring your code adheres to the highest security standards.

Zero False Positives

Achieve high accuracy in vulnerability detection, significantly reducing false positives and ensuring reliable and actionable results.

High-Speed

Perform rapid and comprehensive analysis of large-scale projects, delivering detailed results in a matter of seconds.

Performance Analysis

Examine common anti-patterns and misconfigurations in Java codebases to prevent performance issues and ensure optimal efficiency by analyzing time complexity.

Usage

Install the Plugin: Download the omni4j plugin from the link below.
Setup: Open IntelliJ IDEA and navigate to File > Settings > Plugins. Click on Install Plugin from Disk and select the downloaded omni4j plugin file.
Environment Setup: Ensure Java is available in your system path. For dependency checking, make sure JAVA_HOME environment variable is set and your build tool (Maven or Gradle) is also available in the system or project directory.
Scan Your Code: Once installed, open your Java project and click on the omni4j icon in the toolbar to expand the menu. First, register to obtain your license key. Then, use the license key to start a new security scan. Please consider whitelisting the omni4j binary in your endpoint security solution to prevent false positive detections.
Review Results: View detailed reports of any vulnerabilities found and get recommendations for fixes directly within the IntelliJ IDEA interface.

Supported Operating Systems

Linux
- Ubuntu 21.10 and later versions
- Debian 11 (Bullseye) and later versions
- Fedora 34 and later versions
- Arch Linux (rolling release with updates)
macOS
- macOS 11.0 (Big Sur) and later versions (only ARM architectures)
Windows
- Windows 10 x64 and later versions
- Windows 11 x64

I agree to the Terms and Conditions

Download omni4j Plugin