41 Akto Reviews
Overall Review Sentiment for Akto
Log in to view review sentiment.
- The dashboard is pretty clear and easy to navigate.
- Projects can be managed individually yet in the same panel, unlike Burpsuite I need not change file everytime for a new project.
- PoCs as I mentioned are the best I've observed also the categorisation of vulnerabilities or security risk is done quite well.
- Also the platform has training sessions which is awesome for interns and trainees to be trained initially, from there they can get basic knowledge easy and handy.
- Reports can be exported as well.
- Integrating or I might say Implementing the tool is pretty easy once you explore it completely.
I've used it several times but every time I login I find a new feature !! Review collected by and hosted on G2.com.
Not actually a disadvantage but akto is a vast tool and has immense details to be looked upon so one might need to spend out a significant amount of time to explore it completely. Review collected by and hosted on G2.com.
It provides everything a pentester could hope for when conducting security testing, primarily filtering out broken authentication issues when capturing API traffic and it also automatically detects broken access control issues during testing, which usually requires manual effort to find. I really liked the tool.I've had a great experience with Akto. It's packed with all the features you need for penetration testing. Super easy to use and really reliable in finding vulnerabilities. Definitely a must have for anyone into security testing Review collected by and hosted on G2.com.
I've been using this product for a while and honestly, I can't find anything to dislike. It works
flawlessly and makes my life so much easier. Highly recommend it Review collected by and hosted on G2.com.
The simplicity and the easy-going dashboard really helps in building up your pace to interact with the application's logic quite quickly. It's intutive in nature Review collected by and hosted on G2.com.
There's nothing to dislike about a security tooling that really helps you to scan your API endpoints and maintain inventory and all of that. However there are areas of improvement in terms of UI/UX which could make the experience even more smoother. The debugging errors could be more technical and detailed. Integrations inside BurpSuite using akto.jar glitches sometimes and reports back API details which have already been excluded from the project settings. Review collected by and hosted on G2.com.
The best thing about Akto is it's simple installationm intregration and ease of use.
Akto can be integrated with a blend of tools such as Burp, Postman, Slack, Jira etc. This is the best you can have for a simplfying API security and automation. Moreover, it gives you facility to write custom test cases in YAML which helps you enhance your testing your security posture for organization. Review collected by and hosted on G2.com.
There are a bit of customization and configuration requirement while setting up in local environment. But Akto team is very helpful with customer support, they helped me in installation and API scanning. Review collected by and hosted on G2.com.
The company has been impressed by Akto's engine, especially in the comparison to other products available in the market. The very outstanding features of Akto are deployment flexibilities, database, and its Microservices integrations. Moreover, the company's requirement is; it has to be deployed on-premise and everything must comply with the regulatory from the management.
Akto's support several API architectures for instance, RESTful API, gRPC, SOAP and GraphQL. And currently, we are only leveraging the RESTful API which is the only our main architecture at the moment. The tool has data connectors, which it captures API traffic in real-time and provides feasible information of the API collections with its hostname. As it integrates into API discovery, for instance API testing for each collection or group or whole API endpoints with its specific hostname. This provides its flexibilities to Security Engineer, Developer, QA, and DevOps Engineer to test and review the outcome of each test results. Moreover, the API testing can be done vie CI/CD integration, API Curl request, Docker Image, CRON Job for Daily testing, or continuous testing.
The reports are very comprehensive which they have both CSV, and PDF. Moreover, each test only useful with its detailed reports for engineers and developers to work and review them. With that being said, all those results we can have a weekly meeting with Akto's engineers to verify the API results, and we can define them as false positive or positive outcomes. Moreover, some specific vulnerabilities are very sophisticated which out of our levels of understanding, that is why working and improving the result with Akto's team is very crucial to achieve the common goals.
While there are several additional features worth mentioning, we highly recommend trying Akto to experience its capabilities firsthand. And POC it on your requirements and criteria are recommended before onboarding with them. As it is the DAST & API Security to provide function to scan and features to resolve the issues, you should understand your business needs first. Last but not least, Akto offers a one-month POC, allowing businesses to test and evaluate the tool base on their unique criteria, compliance requirements, and regulations. Review collected by and hosted on G2.com.
There will always a lot of things to improve, as its main primary function to scan API vulnerabilities. However, since it is a startup that rapidly develops new features, those features might have bugs or some documentation related to those features have not been updated by the developers. Fortunately, their engineers and support team are very pro-active to assist in the bugs, and resolving issues regarding to your business needs.
While we recognize that no tool is perfect, Akto is constantly evoling. Their team is receptive to client feedback, including ours, and is committed to making continuous improvements. This responsiveness ensures that Akto continues to enhance its functionality and provides better results of its product into the market. Review collected by and hosted on G2.com.
The thing I love most about Akto is how uncomplicated and effective it is. Ease of Use It is known for its easy and user-friendly interface enabling teams to monitor API security seamlessly with no tough learning curve. Ease of Implementation — Even within existing CI/CD workflows, it seamlessly blends into everything owing to its fast setup process. Akto provides good customer support with full knowledge and understanding of the problem, and helps you in resolving issues quickly at large. Frequency of Use – High, because it is instrumental in day-to-day activity and reliable. The Number of Features satisfy wide security requirements, and the Ease of Integration with other tools contribute to making Akto a versatile product for strong API security. Review collected by and hosted on G2.com.
The only disadvantage I could find with Akto is that for how powerful of a feature set it has, some of the more advanced tools can be somewhat confusing to get your head around without further assistance. In-application tours/contexts or other documentations around complex features would help the overall quality of the user experience. Also, the odd update stream to enable better feature tweaking would provide even greater scope for differing security requirements. Review collected by and hosted on G2.com.
The tutorials!
The tutorials are super helpful for someone like me that didn't have any experience using a system like Akto, after that, it'll become quite easy to use, apart from some strange thing that happen on the GUI from time to time. Review collected by and hosted on G2.com.
I think that the connectors at this day are still a little bit too less. Fortunately the Source Code tool helps, but it's not always the case. Review collected by and hosted on G2.com.
Akto is good when it comes to API security scanning. It is a DAST tool which can be integrated in your CI/CD pipeline making devs and engineering team get the security scanning and reports even before the release. Review collected by and hosted on G2.com.
I dont like Akto while customising it. If someone does not sound technical or bad at maintaining/creating configurations, it would be difficult to create the custom test cases. As a security engineer knowing the business logical flaws already into the system, it is our responsbility to create a custom testing templates to capture the flaws in the later tests runs. Review collected by and hosted on G2.com.
As we know that 'Akto is our all-in-one API Security Platform'. It covers a lot of different security vulnerabilities.
The platform can handle large-scale API testing needs.
One of the best things about Akto is its ability to automate the process of detecting and protecting APIs from vulnerabilities in real time. Review collected by and hosted on G2.com.
Free version provides limited functionality and access to limited number of APIs Review collected by and hosted on G2.com.
I liked the amount of usecases for testing the different set of API's is good and accurate test results made me impress and ease of integration. Review collected by and hosted on G2.com.
I didnt liked the UI and customization it offers and also the limited number of dynamic set of payloads. Support needs to be improved. Review collected by and hosted on G2.com.
