# Which DAST software integrates with CI/CD pipelines?

<p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">Hey everyone,</p><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true"> I’ve been helping DevSecOps teams evaluate <strong>DAST (Dynamic Application Security Testing)</strong> tools that plug directly into CI/CD workflows — triggering scans automatically after builds or deployments. I pulled insights from G2’s latest DAST grid and user reviews to find which solutions offer tight CI/CD integration.</p><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">Here are the top five (in order of G2 presence/satisfaction):</p><ul>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/tenable-nessus/reviews"><strong>Tenable Nessus</strong></a><strong>:</strong> flagship scanner with robust automation hooks; supports API triggers and feed-back loops inside CI pipelines.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/jit/reviews"><strong>Jit</strong></a><strong>:</strong> designed for developer-centric CI/CD environments, seamless pipeline integration and fast feedback to dev teams.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/aikido-security/reviews"><strong>Aikido Security</strong></a><strong>:</strong> newer but well-rated for pipeline-native DAST with minimal setup and strong automation focus.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/akto/reviews"><strong>Akto</strong></a><strong>:</strong> API-first DAST tool built for microservices and CI environments; supports CI triggers and automated test flows.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/astra-pentest/reviews"><strong>Astra Pentest</strong></a><strong>: </strong>combines automation with manual review; integrates into CI/CD pipelines via webhooks/CLI for continuous scanning.</li>
</ul><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">I based this on <strong>G2 satisfaction and feature data</strong>, plus user feedback around how well each tool fits into build/test/deploy workflows. Also hearing good things about <strong>Invicti</strong> and <strong>GitLab DAST</strong> for CI/CD integration — anyone here using these? What's been the experience? </p>

##### Post Metadata
- Posted at: 5 months ago
- Author title: SaaS and Software Research
- Net upvotes: 1


## Comments
### Comment 1

&lt;p&gt;Which DAST tools have you actually integrated into CI/CD pipelines — and what bottlenecks or wins did you see?&lt;/p&gt;

##### Comment Metadata
- Posted at: 5 months ago
- Author title: SaaS and Software Research





## Related discussions
- [How well does Trello scale into a larger team?](https://www.g2.com/discussions/1-how-well-does-trello-scale-into-a-larger-team)
  - Posted at: almost 13 years ago
  - Comments: 6
- [Can we please add a new section](https://www.g2.com/discussions/2-can-we-please-add-a-new-section)
  - Posted at: almost 13 years ago
  - Comments: 0
- [Quantifiable benefits from implementing your CRM](https://www.g2.com/discussions/quantifiable-benefits-from-implementing-your-crm)
  - Posted at: almost 13 years ago
  - Comments: 4