Skip to Content

Aikido Vulnerability Management!

With Aikido, we bring you an all-in-one software security platform to secure your code, containers, clouds & domains!

Book a demo   Pricing 

Aikido stand-alone or combined with Brainframe GRC, up to you!


 

The Aikido Solution 

Aikido, the all in one software security platform.

11 tools in 1

SCA, Open source License check, Secret detection, DAST, SAST, CSPM, IaS scanning, VM scanning, Malware scanning, Container scanning, Zen in-app firewall

False-positives cancelled

Thanks to the unique reachability filter, vulnerabilities that do not impact your business are hidden by default saving you tons of time

Stellar UI & UX

You'll only realise how much time you lost before, when you start using Aikido

Tech & Vendor agnostic

Leveraging many open  & closed source powers without the usual complexities

Fair price

No lock-in mechanisms, no shady sales techniques, pure price effective vulnerability resolution

Powering security for +3,000 organizations, including

All-in-one software security



Covers all parts of your SDLC


Product features

Security Or​chestration

A single dashboard with all your security findings across code & cloud.


Productivity

All the productivity features you were missing.  Get notified when and where you want to be, take action in a single click & determine time to fix.

CI/CD integration - Block before impact

Stops security issues before they get into the main branch and validate security fixes before merges

Integrated into your IDE

Detect vulnerabilities in base image dependencies, Dockerfile commands, and Kubernetes workloads while coding, so you can fix issues early.

Malware detection

The npm ecosystem is susceptible to malicious packages being published because of its open nature.

Aikido identifies malicious code that may be embedded within JavaScript files or npm packages. Powered by Phylum. (Scans for backdoors, trojans, keyloggers, XSS, cryptojacking scripts and more.)


Auto-Triage

Automatically filters out issues that don't affect you, so you can focus on what matters

  Deduplication - Groups related issues so you can quickly solve as many issues as possible.
 Reachability Engine - Checks if the exploit is truly reachable and shows you the path.           
 Custom rules -  Apply context while triaging: set rules for irrelevant paths, packages, etc...

Authenticated DAST

Authenticated DAST logs in as a user to test as many parts of the application as possible. Note: It is advised to never run these scans on a production server.


  

End-of-life Runtimes

Protect your application from outdated runtimes that could be vulnerable. Outdated runtimes are typically a forgotten issue, but could pose big security risks.


Toxic combination analysis

When you link domains to your repo’s, Aikido will check for toxic combo’s. Toxic combo’s are known vulnerabilities that, combined, are dangerous and critical to fix.


  

Zen In-App firewall

Automatically block critical injection attacks in your applications, block bots, rate limit APIs, auto create swagger docs and more. 
Prevent OWASP Top 10 & Zero Day threats on autopilot (SQL/NoSQL injections, Command injections, path traversal, ...)



Automate your path to ISO27001, SOC2, NIS2 and more

Know where you stand on the technical vulnerability management controls for your compliance certification. Share your security reports with your leads in just a few clicks, so you can get through security reviews faster. 


Technical vulnerability management requires you to become compliant with many controls. We do the mapping for you, so you clearly see what is covered and what is not.

Many Integration

Supercharge your workflow by connecting the tools you use every day. Check out the full list



Trusted

Trusted by thousands of developers at world's leading organisations


  

Fair pricing

Developer
Free

  • Free features:
     Dependency scanner
     Cloud scanner
     Secrets scanner
     SAST scanner
     DAST scanner (not authenticated)
     IaC scanner (Containers, terraform, cloudfomation)
     Outdated Software scanner
     SBOMs
     AI SAST Autofix
     Zen in-app firewall
  • Limits:
     Incl. 2 users*
     Rescans every 3 days
     Up to 10 repos, 2 containers, 1 domain, 1 cloud account
     5 AI SAST Autofixes / month
     Zen in-app firewall, 250k requests / month

Start now

Basic
Popular

 299

/ month    (-10% for year plans)
  • All developer plan features, plus:
     CI Gating
     Task tracker integrations (Jira, Linear, etc)
     Compliance integrations
     Security audit reports
     Data analytics & reporting
     Zen in-app firewall
  • Limits:
     Incl. 10 users*
     Up to 100 repos, 25 containers, 3 domains, 3 cloud accounts
     50 AI SAST Autofixes / month
     Zen in-app firewall, 3M requests / month
  • Special reductions sold separately:
     20% discount on Brainframe GRC license 
     10% discount on all PECB courses 
     10% discount on PECB skills subscription 

Start for free

Pro
Best value

 599

/ month    (-10% for year plans)
  • All basic plan features, plus:
     On-prem code & container scanning
     Cloud VM scanning
     IDE plugins
     Malware detection
     SSO & SAML
     Custom SAST rules
     Authenticated DAST
     Zen in-app firewall
  • Limits:
     Incl. 10 users*
     Up to 250 repos, 50 containers, 15 domains, 10 cloud accounts, 5 virtual machines
     200 AI SAST Autofixes / month
     Zen in-app firewall, 8M requests / month
  • Special reductions sold separately:
     30% discount on Brainframe GRC license 
     20% discount on all PECB courses 
     20% discount on PECB skills subscription 

Start for free

Developer
Free

  • Free features:
     Dependency scanner
     Cloud scanner
     Secrets scanner
     SAST scanner
     DAST scanner (not authenticated)
     IaC scanner (Containers, terraform, cloudfomation)
     Outdated Software scanner
     SBOMs
     AI SAST Autofix
     Zen in-app firewall
  • Limits:
     Incl. 2 users*
     Rescans every 3 days
     Up to 10 repos, 2 containers, 1 domain, 1 cloud account
     5 AI SAST Autofixes / month
     Zen in-app firewall, 250k requests / month

Start now

Basic
Popular

$ 299

/ month    (-10% for year plans)
  • All developer plan features, plus:
     CI Gating
     Task tracker integrations (Jira, Linear, etc)
     Compliance integrations
     Security audit reports
     Data analytics & reporting
     Zen in-app firewall
  • Limits:
     Incl. 10 users*
     Up to 100 repos, 25 containers, 3 domains, 3 cloud accounts
     50 AI SAST Autofixes / month
     Zen in-app firewall, 3M requests / month
  • Special reductions sold separately:
     20% discount on Brainframe GRC license 
     10% discount on all PECB courses 
     10% discount on PECB skills subscription 

Start for free

Pro
Best value

$ 599

/ month    (-10% for year plans)
  • All basic plan features, plus:
     On-prem code & container scanning
     Cloud VM scanning
     IDE plugins
     Malware detection
     SSO & SAML
     Custom SAST rules
     Authenticated DAST
     Zen in-app firewall
  • Limits:
     Incl. 10 users*
     Up to 250 repos, 50 containers, 15 domains, 10 cloud accounts, 5 virtual machines
     200 AI SAST Autofixes / month
     Zen in-app firewall, 8M requests / month
  • Special reductions sold separately:
     30% discount on Brainframe GRC license 
     20% discount on all PECB courses 
     20% discount on PECB skills subscription  

Start for free

*Users constitute only admins or developers who actually enter Aikido to consult the details around findings and initiate remediation (not all repo developers which is how many competitors try to overcharge you). Packages of 20, 30 or 50 are also available.

​​ Test immediately now with Github, Bitbucket or Gitlab