I am looking for a library for doing custom static code analysis on CIL code. READ: I have no interest in a tool that already does static analysis like those shown here.
For custom analysis with Java Bytecodes, I have used ASM and I like the features it offers and the good documentation. A quick google search for "CIL static analysis library" doesn't yield anything that seems to provide the features of ASM.
Mono.Cecil is the best library for CIL analysis available. It is free, open-source, complete, lightweight, robust and fast. In addition to reading CIL, it can also write CIL. It also supports PDB files.
Many static analysis tools rely on Cecil for years.
Have a look at Reflector: www.reflector.net/
Closest thing I've found is Microsoft's FxCop utility. (Standalone download link here, 1.36 seems to have disappeared, but someone re-uploaded it to their Dropbox on another SO question)
It's certainly nothing close to C/C++ static analysis tools, but then again, C# is a managed language where a lot of the common mistakes that static analysis tools check aren't possible.
Also, there's a short list on Wikipedia of static analysis tools for .NET, might be worth a peek.
