No more typing reviews! Try our Samantha, our new voice AI agent.

Aikido Security vs ImmuniWeb comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Aikido Security
Ranking in Static Application Security Testing (SAST)
11th
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
5
Ranking in other categories
Application Security Tools (16th), Web Application Firewall (WAF) (24th), Container Security (24th), Software Composition Analysis (SCA) (9th), Static Code Analysis (8th), Cloud Security Posture Management (CSPM) (18th), Dynamic Application Security Testing (DAST) (7th), DevSecOps (7th), Application Security Posture Management (ASPM) (6th)
ImmuniWeb
Ranking in Static Application Security Testing (SAST)
33rd
Average Rating
8.2
Reviews Sentiment
7.8
Number of Reviews
7
Ranking in other categories
Attack Surface Management (ASM) (29th)
 

Mindshare comparison

As of July 2026, in the Static Application Security Testing (SAST) category, the mindshare of Aikido Security is 1.8%, up from 0.9% compared to the previous year. The mindshare of ImmuniWeb is 0.8%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST) Mindshare Distribution
ProductMindshare (%)
Aikido Security1.8%
ImmuniWeb0.8%
Other97.4%
Static Application Security Testing (SAST)
 

Featured Reviews

B Goswami - PeerSpot reviewer
Product Manager at Zidio development
Security has shifted left and now catches vulnerabilities early in our development workflow
There are a few areas for improvement. The first is scan speed. For large repositories, initial scans can be slow. Incremental scanning helps, but full scans still take considerable time. The second thing is the false positive rate. While Auto-Triage is good, it is not perfect. Occasionally, genuine issues get filtered out and real false positives slip through. The third one is remediation guidance. Aikido Security tells you what is vulnerable, but sometimes the fix suggestions are generic. More specific, actionable remediation steps would save developer time. The fourth one is IDE integrations. It currently works best in CI/CD pipelines. A proper VS Code or JetBrains plugin for real-time scanning while coding would be a significant improvement. From a customer point of view, the following things could change. The first thing is documentation for custom rules. Aikido Security allows you to create custom scanning rules, but the documentation for this feature is surprisingly thin. I spent considerable time in community forums and with trial and error just to configure basic custom rules. Step-by-step guides with real-world examples would make this feature much more accessible. The second thing is better Slack and communication integrations. Currently, security alerts come through email and dashboard notifications, but our team lives in Slack. A more configurable Slack integration that sends contextual alerts directly to the relevant developer, not just a generic channel notification, would dramatically improve response time. The third one is historical trend reporting. While Aikido Security shows current vulnerability status well, generating historical reports showing security posture improvement over time is limited. For presenting security progress to management or stakeholders, better exportable trend reports would be very valuable.
Vivek Ashvinbhai Pancholi - PeerSpot reviewer
Senior Cybersecurity Consultant at a tech consulting company with 1,001-5,000 employees
Commendable Solution with Robust Vulnerability Detection Mechanism Suitable for Global Market
The solution helped us with one of our clients in the New York area contacted us about a data breach. In response, we swiftly organized a case meeting involving our client, internal, and email customer support teams. Together, we conducted an incident response, facilitating offline assistance for proper planning and risk management processes. We delved into the details of the data breach, identified how it occurred, and collaborated to rectify the issue. The client expressed satisfaction with the resolution process.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Aikido Security nests directly in our development workflow and it catches security issues before they reach production."
"Since switching to Aikido Security, I have noticed a positive impact on my team's productivity with measurable results, as we now have measurements."
"Aikido Security offers the best features including being very easy to use, allowing even a normal tech person with some hands-on experience to use this tool and clearly get the results they want."
"Aikido Security saved me several hours each week by automating vulnerability scanning and security checks, reducing the need for manual review and helping me focus on more development."
"Aikido Security has positively impacted my organization significantly because initially we were thinking it would take a month for us to achieve SOC 2 compliance again, and with Aikido Security, we were able to get all codebase vulnerability fixes within a week for all our 13 or 14 repositories that we had."
"The ImmuniWeb Platform is the best and easiest way to secure a business online."
"The most valuable features are the SLA of Zero false-positives, less time of service development, validation of unlimited patched vulnerabilities, and several others."
"ImmuniWeb boasts a robust vulnerability detection mechanism, formidable threat mitigation, and an efficient remediation process, incorporating automation techniques and ALM strategies. The solution is highly stable. The solution is scalable. Editing Key Points for Review "Review about ImmuniWeb" What is our primary use case? We use the solution when we face challenges and urgent attention is needed for complex cases from our clients. To address this, we collaborate with the middleware, internal, and client teams to analyze and sort through intricate logs concerning our business cybersecurity program. How has it helped my organization? The solution helped us with one of our clients in the New York area contacted us about a data breach. In response, we swiftly organized a case meeting involving our client, internal, and email customer support teams. Together, we conducted an incident response, facilitating offline assistance for proper planning and risk management processes. We delved into the details of the data breach, identified how it occurred, and collaborated to rectify the issue. The client expressed satisfaction with the resolution process. What is most valuable? ImmuniWeb boasts a robust vulnerability detection mechanism, formidable threat mitigation, and an efficient remediation process, incorporating automation techniques and ALM strategies. It also focuses on consumer satisfaction and operates in English-speaking markets, primarily required by the UAE, the United States, Canada, and Australia, among other developed countries. For how long have I used the solution? We have been using this product for the past one and half years. What do I think about the stability of the solution? The solution is highly stable. I rate it a perfect ten. What do I think about the scalability of the solution? The solution is scalable. I rate it a nine out of ten. How are customer service and support? Support is generally excellent"
"The solution's most valuable feature is reporting."
"I have managed to deliver to my clients the services of Ethical Hacking in less time, with better deliverables, and other key differentiators that make my company more competitive in the local market."
"ImmuniWeb is stable."
"The initial setup process is user-friendly."
"I like the fully automated continuous discovery run by ImmuniWeb in the background. We do not need to rerun the same tests or the same scanning against our resources. We need to supply our IP addresses, domain names, and significant resources with special domain names and URLs, and we need to do it only once. Then we always have an up-to-date picture. I also like the integration with our single sign-on system. We do not need to maintain a separate set of usernames or user accounts. We can plug this ImmuniWeb service into our authentication technology, enabling two-factor authentication. We have secure authentication right out of the box. The other important feature I like is the executive view. You can easily switch from a technical view to an executive view and have a helicopter view of the compliance status. We can see how much effort is required and our current status."
 

Cons

"There are a few areas for improvement. The first is scan speed; for large repositories, initial scans can be slow, and while incremental scanning helps, full scans still take considerable time."
"I think Aikido Security could improve by reducing some pricing model. Pricing is quite high for a normal user, and if they can make it a little less, it will be much better."
"I think Aikido Security could be improved by addressing its Jira integration, which I feel needs a bit of work."
"However, there was one minor issue that I faced. When I had a UUID for an object in the code, Aikido Security was considering it as a secret key, which it was not."
"I think Aikido Security could be improved with more detailed remediation guidance, such as additional beginner-friendly tutorials and enhanced customization for alerts and reporting."
"It would be better if they had an automated tagging feature. The tagging functionality currently requires manual tagging, and that's probably the most needed feature from my standpoint. We also do not have enough tools, enough features, or options to display different resources in the way we need. There are basic grouping and some filtering features, but we still cannot fully separate some flavors of our resources. However, we may not be aware of the latest features."
"Its technical support could be better."
"The deployment process on the cloud is straightforward, while on-premise can be complex. Support is generally excellent, although there can be delays in ticket resolution."
"You may find the dashboard a bit complicated."
"A great idea would be to support using Discovery on the internal network, allowing delivery of all the features of the current Discovery to internal network resources."
"A great idea would be to make a mobile application for the ImmuniWeb portal so that all information would be available on the go and from a mobile phone as well. It would be much more convenient."
"ImmuniWeb sometimes shows previous scans instead of running tests."
"The product’s interface for the web applications could be similar to Android and iOS versions."
 

Pricing and Cost Advice

Information not available
"I use the product's free version. The tool costs around 229 dollars."
"The values of ImmuniWeb are currently significantly below what is valued in the Chilean market for these services and solutions."
"It is pretty expensive."
"The platform is expensive if a large development is involved. However, it is less expensive for scheduled-based testing, quarterly or in a year."
"It is pretty expensive."
"ImmuniWeb is relatively cheap. It's a competitive price compared to other products in the marketplace. It's worth the money we are paying for it."
"There should be the flexibility to change or add pricing, especially for pay-per-use cases."
report
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Comms Service Provider
11%
Manufacturing Company
11%
Financial Services Firm
10%
Computer Software Company
8%
Financial Services Firm
16%
Construction Company
12%
Comms Service Provider
10%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise2
Large Enterprise2
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise2
 

Questions from the Community

What needs improvement with Aikido Security?
There are a few areas for improvement. The first is scan speed. For large repositories, initial scans can be slow. Incremental scanning helps, but full scans still take considerable time. The secon...
What is your primary use case for Aikido Security?
I have been using Aikido Security for approximately more than one year, primarily for securing our development pipelines and scanning our codebase for vulnerabilities across multiple projects. The ...
What advice do you have for others considering Aikido Security?
I have several practical pieces of advice for anyone considering Aikido Security. The first one is to connect all repositories from day one, not just your main production ones. Security vulnerabili...
What do you recommend for a securing Web Application?
That's one of the most critical questions any development team faces! Securing a web application requires a layered approach, not a single tool. Here is a quick breakdown of what to recommend: In...
 

Comparisons

 

Overview

 

Sample Customers

FinTech GoCardless ZIP CertifID HealthTech Dental Intelligence PE & Group Techstars Cronos Group Security Tech Human Security Tines HR Tech Simployer Recruitee Agency November Five Other Lighthouse (Hospitality Tech) Smokeball (LegalTech) Runna (B2C Tech) GEA Group (Manufacturing) Community fibre (Telecom) n8n (Software Development)
Ebay, United Nations, Next Bank Credit Agricole, Geneva Swiss Bank, Banca Stato, Celgene, SIM University, Heymarket, Swissquote, more...
Find out what your peers are saying about SonarSource Sàrl, Checkmarx, Veracode and others in Static Application Security Testing (SAST). Updated: June 2026.
902,894 professionals have used our research since 2012.