# Aikido

> The application-security platform behind our AI Pentest and continuous AppSec practice.

Source: https://fmcybersecurity.com/en/products/aikido/
Locale: English
Other locale: https://fmcybersecurity.com/products/aikido/

We are a certified Aikido partner and deliver AI Pentest as our testing model. The modules below run continuously across the development lifecycle, with autonomous testing on top.

## AI Pentest

Autonomous AI agents run a full penetration test in hours and produce an audit-grade SOC 2 and ISO 27001 report. This is FM's testing model: exploits, not theoretical findings.

## Surface Monitoring (DAST)

Continuously probes your live web apps and APIs from the outside, the way an attacker would.

## Static Code Analysis (SAST)

Scans your own source code for security flaws like SQL injection and cross-site scripting before they ship.

## Open-Source Dependencies (SCA)

Checks the open-source libraries you depend on for known vulnerabilities, and flags malicious packages.

## Secrets Detection

Catches passwords, API keys, and tokens accidentally left in your code.

## Cloud Misconfigurations (CSPM)

Finds risky settings across your cloud accounts in AWS, Azure, and GCP.

---

For the full documentation index, see https://fmcybersecurity.com/llms.txt
For the complete corpus as a single document, see https://fmcybersecurity.com/llms-full.txt