Overview
Product Information on Aikido Security
What is Aikido Security?
Aikido Security Pricing
Aikido Security Product Images
Overall experience with Aikido Security
“Aikido delivers strong AppSec coverage with an excellent developer-centred approach”
About Company
Company Description
Aikido is a developer-centric security platform that gives developers and security teams an instant overview of all code-to-cloud security issues and guides teams to fix vulnerabilities fast. Aikido supports security teams execute by aggressively reducing false-positives, automatic triage and risk bundling, and translating Common Vulnerabilities and Exposures (CVEs) into easy step-by-step explanations to resolve. Described as an "all-in-one" application security platform, Aikido's covers the entire Software Development Lifecycle (SDLC), including: static application security testing (SAST), dynamic application security testing (DAST), infrastructure-as-code (IaC), container scanning, secrets detection, open source lisence scanning, cloud posture management (CSPM), runtime protection, and more.
Company Details
Do You Manage Peer Insights at Aikido Security?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
User Sentiment About Aikido Security
Reviewer Insights for: Aikido Security
Deciding Factors: Aikido Security Vs. Market Average
Performance of Aikido Security Across Market Features
Aikido Security Likes & Dislikes
Aikido delivers several standout strengths that materially enhance the effectiveness and efficiency of our application security programme. The following provide the most value: - Seamless GitHub integration and large scale onboarding. The App pattern makes it exceptionally easy to onboard repositories in bulk, while the native integration ensures that users and teams are imported cleanly and kept aligned with our existing developer workflows. - Comprehensive and effective security scanning coverage. The platform brings together a broad suite of embedded scanners, including SCA, SAST, secrets detection and IAC analysis. The inclusion of DAST with support for both GraphQL and REST API scanning further strengthens its technical depth. - Strong developer-centric experience that accelerates remediation. The portal offers a clear and intuitive user interface and places a real emphasis on helping developers prioritise and resolve issues. Explanations are accessible, suggested auto-fixes are helpful and the ability to open pull requests directly supports rapid action. Additional aspects that consistently add value include noise reduction and transparent prioritisation, industry-leading supply chain and malware monitoring, and the robust set of search and filtering options. These strengths combine to create a platform that is powerful and highly usable, enabling engineers to adopt security practises with confidence and velocity.
What stood out to me with Aikido is how clean and focused the platform feels. It doesn't bury you in endless dashboards or alerts, it gets you exactly what you need, and the prioritization makes sense. The accuracy of the findings has been much better compared to some of the other tools we used and the reduction in false positives has made our team's life a lot easier. I also like how quickly new features and fixes roll out. It feels like a product that is actively improving, not one thats been sitting still.
It has AI-powered auto fix and also shows confidence scores for suggested fixes. It has broad coverage all in one platform and provides many different security scan types like static code, terraform, cloud formation image scanning and secrets detection. it provides runtime protection that blocks malicious traffic and zero-day exploits, and provides mapping of findings to compliance standards, giving governance and audit-friendly reporting.
There are a few areas, which are admittedly challenging across the industry, where we still experience friction at scale. The secret scanning capability offers limited visibility into the underlying rules, which makes it more difficult to tune for repeated false positives across large environments. To their credit, Aikido does offer multiple ways to manage this, although in practise it is not yet as polished as their stronger features. The license scanning can also generate false positives that can be presented as critical legal risks, which at times can undermine confidence in the severity model when viewed alongside genuine critical AppSec vulnerabilities. Although this capability can be disabled, it would be far better if it would be more accurate by default, or could be more finely tuned. The reporting and trends presented in the UI are strong, but exposing this data through API access would significantly improve our ability to integrate with internal business analytics. Pull request scanning would be even better with more conversational, in-line guidance, so that developers can review issues, apply suggested fixes, and manage exceptions without switching context to the Aikido portal.
Nothing major, but there are a few areas where Akidio could still mature. Some parts of the dashboard feel a bit limited if you want deeper filtering or more advanced reporting. Some integrations may offer more customization options as well. This is not a deal breaker, but if they continue imprving in these areas, it would make the platform even stronger/
It lacks a comprehensive security assessment. for risk teams but it is great for development teams, Their entry level paid plan is too expensive for a start up even with a discount, enterprise level features like complex RBAC and compliance dashboards are not addressed fully. the cost and limited free to paid gradation. Dev only teams without dedicated sec engineers and missing security analyst level.
Top Aikido Security Alternatives
Peer Discussions
Aikido Security Reviews and Ratings
- IT Security & Risk Management Associate50M-1B USDMiscellaneousReview Source
Aikido delivers strong AppSec coverage with an excellent developer-centred approach
Aikido has provided consistently strong support throughout the development of our application security programme. From the outset, the team demonstrated a clear understanding of our objectives and engaged with us in a thoughtful and collaborative manner. They connected us with the right subject matter experts and made it straightforward to explore the platform in depth. What stood out was their willingness to go above and beyond during the evaluation phase, ensuring that we were able to test, valiadte and demonstrate value before making a commercial commitment. That approach helped build confidence and created a strong foundation for the partnership. Since adoption, our experience with support has remained excellent. Requests are handled promptly, feedback is taken seriously and improvements are often delivered at pace. It is evident that Aikido are committed to continuous enhancement of the product and to maintaining a constructive relationship with their customers. - MANAGER OF IT SERVICES<50M USDServices (non-Government)Review Source
Team Responsiveness and Active Feature Updates Enhance Aikido Security Experience
I have had a very solid experience with Aikido Security so far. The Platfrom is straightforward to use and the onboarding was easier than I expected. Once everything was connnected, it gave us a clear picture of issues accross our repos without overwhelming us with noise. What I appreciate most is the way Aikido prioritizes its practicality and saves us a lot of time. The product isn't perfect, but the team is responsive, and the pace of improvements has been impressive. Overall it's been a reliable part of our security workflow. - INFRASTRUCTURE SPECIALIST<50M USDIT ServicesReview Source
Aikido, "Simple Setup, Powerful Protection"
They are very positive about how it integrates with their workflow and gives actionable insights. Their pricing is relatively flat and they aim to be affordable and have a freemium component making it accessible to smaller teams for shift left security.It has auto fix capabilities that save developer time and makes remediation seamless. - VP, Software Development50M-1B USDMiscellaneousReview Source
Clear Findings and Comprehensive Detection Enhance Ease of Use Across Multiple Tools
Integrating into existing CI and developer flows has been easy. Already during our POC we were able to test the capabilities of the platform against many different types of assets because of the easy integration. Findings are clear and easy to understand, and the integration into our existing ticketing flow is a big plus. - Manager, IT Security and Risk Management50M-1B USDMiscellaneousReview Source
Complete scanning suite in a straightforward platform with AI-powered triage
Very simple to set up. In less than 5 min you can starting seeing findings from the code repositories, from different types of scanners. Really like the fact that it only asks for the strictly necessary permissions, which are mostly read-only, and will ask for more permissions if you want to integrate other features or scanners. It's up to the user to choose and it's not imposed. Support has been great and very fast, the communication channel via slack works pretty well. Overall it is a very complete suite of security scanners, as well as additional features like leaked password analysis and hardened container images. Very competitive pricing when compared to other vendors that don't even deliver this much.