Straightforward pricing.

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

How many users will need access to Aikido?

Up to :

Developer

/ free forever

Incl. 2 users

For devs and curious minds

Free features:

All free scanners (Dependencies, Cloud, Secrets, SAST, DAST, IaC, SBOMs, Outdated Software)

AI SAST Autofix

Rescans every 3 days

Up to 10 repos, 2 containers, 1 domain, 1 cloud account
5 AI SAST Autofixes / month
Zen in-app firewall, 250k requests / month

Start Now

Basic

Popular

$349

per user/mo

$2,376 78/mo incl. 2 users

For small teams to cover the basics

All free features, plus:

CI gating

Task tracker integrations (Jira, Linear, etc)

Compliance integrations

Security audit reports

Data analytics & reporting

Up to 100 repos, 25 containers, 3 domains, 3 cloud accounts
50 AI SAST Autofixes / month
Zen in-app firewall, 3M requests / month

Start Free

Pro

Best Value

$699

per user/mo

$2,376 78/mo incl. 2 users

For growing teams to scale security

All basic features, plus:

On-prem code & container scanning

Cloud VM scanning

IDE plugins

Malware detection

SSO & SAML

Custom SAST rules

Authenticated DAST

Up to 250 repos, 50 containers, 15 domains, 10 cloud accounts & 5 virtual machines
200 AI SAST Autofixes / month
Zen in-app firewall, 8M requests / month

Start Free

Scale

Custom

∞ users

For orgs with advanced needs

All pro features, plus:

Advanced data analytics & reporting

Multi tenant portal

Training & onboarding

Enterprise support

∞ repos, ∞ container images, ∞ domains, ∞ cloud accounts & ∞ virtual machines
Zen in-app firewall, ∞ requests / month

Talk to a human

Start Now

Check out our comparison table

Review

"Best value for money"

“Best value for money. Coming from Snyk, it was too expensive and Aikido has better SAST capabilities. The mechanism that prevents false positives is superb”

Konstantin S

Head of Information Security at OSOME Pte. Ltd.

Review

“Aikido are truly pulling off the impossible”

“I thought 9-in-1 security scanning was more marketing than reality, but Aikido are truly pulling off the impossible with a commitment to openness that I haven't seen before.”

James B

Cloud Security Researcher

Compare plans

Find the right plan for you.

Free

Basic

Pro

Scale

Aikido Scanners

Open source dependency scanning (SCA)

Cloud posture management (CSPM)

Secrets detection

Static code analysis (SAST)

Infrastructure as code scanning (IaC)

Dynamic testing (DAST)

Open source license scanning

Outdated software detection

Container image scanning

Malware detection in dependencies

Connect your own scanner

On-prem code & container scanning

Open source dependency scanning (SCA) Features

Reachability

Autofix

Aikido vulnerability database

Full language coverage

Manual rescans / User triggered scans

Unlimited

License compliance

SBOM support

Bulk Autofix

Cloud Posture Management (CSPM)

Cloud misconfiguration checks

Agentless Virtual Machine scanning (AWS EC2)

Secrets detection

Secrets detection in your code (Git)

Secrets detection across the SDLC (IDE / CI)

Secrets liveness detection

Static Code Analysis (SAST)

Full language coverage

Custom SAST Rules

AI SAST Autofixes

200

Unlimited

SAST issue notifications in the developer's IDE

Dynamic testing (DAST)

Self-built app scans (via ZAP)

Hosted-app scans (via Nuclei)

Authenticated DAST

Open source license scanning (SBOM)

SBOM generation

Risky license detection

Productivity

Tines Marketplace integration

Chat application notifications (Slack, MS Teams)

CI gating

Task management integrations

Automatic task creation

Bulk autofix

Multibranch scanning

Monorepo splitting

IDE plugins

Management & reporting

Audit log

SBOM generation

Access Control checks in GitHub & GitLab

SLA management

Compliance platform (GRC) integrations

Compliance reports

Security Audit Reports (PDF)

Data analytics & reporting

Webhooks

Public Rest API

SSO (SAML)

Multi tenant portal

Support & services

Communication channel

In-app chat support

Dedicated slack or teams support

SLA based support

Training & onboarding

Runtime Protection

Embedded WAF
(Zen)

250k requests

3M
requests

8M
requests

∞
requests

Node.js runtime protection

Python runtime protection

PHP runtime protection

Ruby runtime protection (soon)

Protect against zero-day threats

Rate limit APIs

Auto create open API specs for your API

Protect against (no)SQL injection

Protect against path traversal issues

Protect against SSRF

Protect against shell injections

Monitor outbound traffic

Restrict IPs & block users from your app

Productivity

Chat application notifications (Slack, MS Teams)

Support & services

Communication channel

In-app chat support

Dedicated slack or teams support

SLA based support

Training & onboarding

For Agencies

We understand that you, as an agency, need to protect your margins. We also understand that you have many code repositories and git orgs, across multiple customers. Hence our custom offering for agencies.

Discover Our Agency Offer

For Startups

To make security more accessible for startups, we're offering discounts of up to 30%

Eligibility: you raised less than $1.5M in funding & are less than five years old or are a nonprofit organization.

Via Amazon AWS Marketplace

Aikido integrates directly into your AWS environment through the AWS Marketplace. This allows you to use your Amazon billing and simplify procurement.

Buy on AWS

Trusted by:

Talk to sales

Just try it yourself

Connect your GitHub, GitLab, Bitbucket or Azure DevOps account to start scanning your repos for free.

Start Scanning For Free

Book A Demo

Your data won't be shared · Read-only access · No CC required

FAQ

More to explore

Documentation

Trust Center

Integrations

Is Aikido's software pentested?

Yes. We run a yearly pentest on our platform and also have an ongoing bug bounty program to ensure the security of Zen is continuously tested by a wide range of security experts.

Can I also generate an SBOM?

You can create a CycloneDX SBOM or csv export with one click. Just go to the Licenses & SBOM report where you'll get a full overview of all the packages & licenses you're using.

What do you do with my source code?

Aikido does not store your code after analysis has taken place. Some of the analysis jobs such as SAST or Secrets Detection require a git clone operation. More detailed information can be found on docs.aikido.dev.

Do I need to give access to my repos to test out the product?

When you log in with your VCS we don’t get access to any of your repositories. You can manually give access to the repositories you’d like to scan. It’s also possible to test out the platform using sample repositories.

I don’t want to connect my repository. Can I try it with a test account?

Of course! When you sign up with your git, don’t give access to any repo & select the demo repo instead!

Does Aikido make changes to my codebase?

We can’t & won’t, this is guaranteed by read-only access.

More to explore

Documentation

Trust center

Integrations