Aikido Security Unveils Fully Autonomous Penetration Testing Platform

The video demonstrates Aikido Security’s fully autonomous penetration testing platform, which conducts audit-grade assessments in hours rather than days or weeks. Users initiate a test by configuring a project in the pen testing tab, specifying the target (e.g., a web application) and providing details such as domains, custom headers, and test user credentials to evaluate privilege escalation and cross-tenant data leaks. The platform supports black-box, white-box, or gray-box testing by allowing repository connections, file uploads (e.g., prior pen test reports), and documentation links to enhance context. Tests can be customized with rate limits (requests per second) and scheduled for immediate or off-hours execution, with pricing options including a right-sized scan that estimates required credits. Aikido’s agentic testing checks for vulnerabilities like broken access controls, business logic flaws, and cryptographic weaknesses, using multiple agents per endpoint to minimize false positives. Results include an activity log, severity-ranked issues with reproduction steps, and remediation guidance, all exportable as auditor reports. Continuous testing is available post-initial scan, focusing on new code or features and configurable for per-deploy or scheduled runs. Free retesting is offered within three months of the original test.