It's was super easy to connect our GitHub organization and cloud environment (AWS in our case).
After connecting, Aikido immediately starts to scan them and give you a list of potential issues/vulnerabilities to check. The checks are very broad: package vulnerabilities, committed secrets, security headers web server, vulnerable libraries in containers, ...
Before Aikido we used GitHub's security issues but in most cases the vulnerable packages are dev dependencies and thus not used in production. Aikido skips through that noise and provides us with actionable vulnerabilities.
I really like the Cloud scanning because it's easy to make mistakes with setting up infrastructure (also when doing maintenance or upgrades).
Being able to see the issues/vulnerabilities in one list (compared to GitHub) is also very useful.
As CTO, it's should be nobrainer to adopt a platform like Aikido. A data leak or hack might put you out of business. Review collected by and hosted on G2.com.
Apart from the great Slack integration, I would love to be able to receive notifications via email. Review collected by and hosted on G2.com.
46 out of 47 Total Reviews for Aikido Security
Overall Review Sentiment for Aikido Security
Log in to view review sentiment.
Aikido Security was super easy to set up, there is a lot of options and it has great and direct customer support! The project can be used easily and automatically, it even integrates with containers such as our docker images. Review collected by and hosted on G2.com.
The variety of options is great but it can be overwhelming from time to time. Thankfully, Aikido offers great support that can help you get the most of this great product. Review collected by and hosted on G2.com.
It's exceptionally easy to get started and get valuable insights right out of the gate. You can link your repositories and projects and set up scans.
And its not just vulnerability scanning, you can even get operational insights on how your version control system and infra is set up.
It's the kind of tool you grow into and grows with you.
A solid choice. Review collected by and hosted on G2.com.
I'm probably nitpicking but I would like to see how we can do the entire compliance process for different overseas markets incorporated (Africa) Review collected by and hosted on G2.com.
The platform focuses on doing one thing right, increasing the maturity of your company's security posture without having to spend a lot of effort in integration and triaging false positives. Its simple to integrate and simple to adopt for a small startup team that does not have a lot of bandwith but still wants to get better at InfoSec Review collected by and hosted on G2.com.
It wasn't clear at the beginning which features were included in the free trial and which features were not. Its not super easy to "pick and match" which parts of the platform you want to adopt now vs which ones you want to leave for the future. Review collected by and hosted on G2.com.
We’ve been using Aikido Security for almost a year now, and it’s been instrumental in managing our vulnerabilities through its robust repository and container scanning capabilities. The setup process was incredibly easy, allowing us to get started in just a few minutes by leveraging easy connection with Gitlab.
Aikido’s integration with Slack has been particularly beneficial, providing us with timely alerts and weekly status reports directly in our Slack channels. This integration has streamlined our workflow, ensuring that we stay on top of security issues without unnecessary noise.
The support team has been exceptional, always responsive and helpful.
Overall, we very much recommend Aikido as the tool to manage software vulnerabilities. Review collected by and hosted on G2.com.
There is nothing we dislike about the service Review collected by and hosted on G2.com.
We like Aikido scanning and finding secrets and dependencies on our repos and cloud. Reporting is good too for OWASP top 10.The support is good on helping us on our problems. The UI is easy to use. Review collected by and hosted on G2.com.
Some of the features on scanning secrets cannot be found and some features are false positives. Review collected by and hosted on G2.com.
I really like the unintrusiveness of their service. It's a webapp where you register your code, container, IaC,... repositories and they scan them regularly pointing out the issues they found via statical analysis. There's integration to easily/automatically create follow up actions (tickets) aso. The app is great, you get up and running quite quickly.
Sometimes you need support, and that's great too (even if it's really technical). Review collected by and hosted on G2.com.
- Aikido Security also provides an estimate of how much work (fe "about 1h") it takes to fix a particular issue. I don't know where they got them, but they might as well don't do this as these estimates are completely unreliable.
- The automated triage (severity) follows CVE closely, which is rather detached from reality.
- The automatic ignore kicks in if there's no fix available. I'm not sure that's what you want. Review collected by and hosted on G2.com.
Aikido was quick and easy to deploy and delivers clear, relevant alerts without adding complexity. It connects multiple security tools, making them seamless and more efficient to use.
It has all the necessary integrations, covers key security needs like SAST, container, and infrastructure scans and the auto-triage with intelligent silencing is a game changer. The UI is intuitive, support has been extremely responsive, and pricing is fair. I also appreciate their participation in the open-source community.
Overall, it helps us stay ahead of security issues with minimal effort. Review collected by and hosted on G2.com.
If I had to find something, it would be that the interface has many layers due to the amount of information available, and sometimes one can feel a bit lost navigating it. Review collected by and hosted on G2.com.
Aikido helps us automate both compliance and security. Without Aikido we'd be spending alot more time setting up tooling to have a similar experience.
It's great feeling in the team that Aikido is running in the back making sure we have no oversights in security measurements ranging from infrastructure to dependencies.
The team is very responsive on feedback and iterates very quickly Review collected by and hosted on G2.com.
There is nothing I dislike about Aikido, it's simple and intuitive. Review collected by and hosted on G2.com.
It integrates with all of our used services and scans for security problems and best practicies flawlesly. Also the provided rescources on how to fix the issue are really helpful. We also integrated Aikido in our Slack so we get notified immediatly when new issues pop up.
Setting everything up was very easy and the provided guides are up to date. Support is super fast and was able to answer all my questions in a few minutes. Review collected by and hosted on G2.com.
I honestly can not say anything negative about the service. You could discuss about the pricing but the functionality that is provided and the ease of use is totally worth it. Review collected by and hosted on G2.com.
Aikido provides a comprehensive solution for monitoring and managing security issues across source code, dependencies, containers, and infrastructure. It’s incredibly easy to set up, and their customer support is highly responsive via Slack. Our engineering team relies on Aikido daily to triage new potential threats, and its integration with Linear helps streamline our development process. Review collected by and hosted on G2.com.
The user interface is becoming somewhat complex and requires some time to get accustomed to. Review collected by and hosted on G2.com.
