The 2026 Cybersecurity
Tool Landscape Report
89 tools across 20 categories. Pricing, deployment, standards, and reported pros and considerations, side by side. As a downloadable spreadsheet (CSV).
No spam. Unsubscribe any time. Or scroll down and browse the listings free.
Inside the report
- ✓ Downloadable spreadsheet (CSV) you can sort and filter
- ✓ 89 tools listed alphabetically per category
- ✓ Public pricing per tool (free tiers, per-seat, enterprise)
- ✓ Reported pros and considerations from practitioner discussions
- ✓ Deployment model, standards, and certifications
89
Tools listed
20
Categories covered
0
Scoring weights
0
Hidden placements
What's inside
Alphabetical category listings
Every tool in every category, in alphabetical order. No editorial scoring, no “Top 5”. Just the listings, side by side.
Aggregated public pricing
Free tiers, per-seat costs, and enterprise ranges pulled from official vendor pages and what practitioners report paying. Verify with the vendor before any purchase.
Reported pros and considerations
What real practitioners say on Reddit, Hacker News, Stack Overflow, and verified review sites. Not vendor marketing. We report; we don't verdict.
Application Security
See all 1 tools →Application security testing tools for finding and fixing vulnerabilities in code, dependencies, and containers. Compare SCA, SAST, and open-source application security solutions.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Snyk | Developer-first application security platform for finding and fixing vulnerabilities in code, dependencies, containers, and IaC | Per-developer (monthly) |
Automotive Cybersecurity
See all 3 tools →Automotive cybersecurity companies protect connected and software-defined vehicles across their lifecycle. From ECUs, in-vehicle networks, and telematics to cloud backends, fleets, and EV charging. Th…
| Tool | Best fit for | Pricing model |
|---|---|---|
| PCA Cyber Security | OEMs and suppliers that need elite offensive testing, TARA, and managed monitoring for connected vehicles and embedded products | Project-based engagements |
| Upstream Security | OEMs and fleet operators that want cloud-scale detection, response, and a managed Vehicle SOC for connected fleets | Subscription (custom) |
| VicOne | OEMs and suppliers wanting a broad, lifecycle automotive security portfolio backed by an established cybersecurity parent | Subscription (custom) |
Cloud Security & CNAPP
See all 0 tools →Cloud-native application protection platforms for securing cloud workloads, containers, and infrastructure. Compare CNAPP, agentless cloud security, and cloud workload protection solutions.…
| Tool | Best fit for | Pricing model |
|---|
Cyber Resilience Act Compliance
See all 6 tools →Companies that help manufacturers comply with the EU Cyber Resilience Act (Regulation 2024/2847), the mandatory cybersecurity rules for products with digital elements sold in the EU. From hands-on emb…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Bureau Veritas | Manufacturers wanting one TIC partner spanning hands-on pen testing, RED/IEC 62443 testing, and CRA conformity advisory | Consulting + testing + certification |
| DEKRA | Manufacturers planning ahead for CRA conformity assessment who want an EUCC-accredited evaluator and future notified body | Training + evaluation + certification |
| ONEKEY | Device manufacturers wanting automated SBOM, vulnerability management, and CRA evidence generation across the product lifecycle | Platform subscription + advisory |
| pi3g | SME manufacturers of embedded-Linux and IoT products that need hands-on engineering help to reach CRA compliance, not just an audit | Consulting + engineering engagements |
| SGS | Manufacturers of higher-assurance digital products (chips, secure elements, payment, embedded) needing lab evaluation and EU type certification | Testing + certification + advisory |
| TUV SUD | Manufacturers needing accredited third-party assessment, RED/EN 18031 testing, and CE-marking support from an established certification body | Assessment + certification + training |
Data Security & Governance
See all 2 tools →Data security and governance platforms for discovering, classifying, and protecting sensitive data across your organization. Compare enterprise DLP, cloud data security, and data discovery solutions.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Lepide Data Security Platform | Organisations wanting unstructured-data security, access governance and auditing across AD, Microsoft 365 and file servers, as a per-user alternative to Varonis or Netwrix | Quote-based (per user, per year, by platform) |
| Varonis | Data security and governance platform for access visibility, insider threat detection, and sensitive data protection | Subscription (per-user or per-TB) |
Email Security
See all 2 tools →Email security platforms for protecting against phishing, BEC, malware, and other email-borne threats. Compare cloud email security, AI-powered, enterprise gateway, and email encryption solutions.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Acronis Email Security | MSPs and service providers protecting Microsoft 365 or Google Workspace mailboxes who want email security integrated with backup and endpoint protection. | Subscription-based, priced per unique protected mailbox/user as an add-on to Acronis Cyber Protect Cloud. Varies by licensing model, protected workloads, mailboxes, and region. One-month trial available. Contact an Acronis partner for current pricing. |
| Proofpoint | Enterprise email security platform for advanced threat protection, compliance, and data loss prevention | Per-user subscription |
Endpoint & EDR
See all 2 tools →Endpoint detection and response platforms for protecting devices against malware, ransomware, and advanced threats. Compare enterprise EDR, XDR, and SMB endpoint solutions.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Acronis Cyber Protect | Teams and MSPs that want backup, disaster recovery, and endpoint security (anti-ransomware, EDR) in one platform | Subscription (per workload or per GB; MSP consumption-based) |
| CrowdStrike | Cloud-native endpoint protection platform with AI-powered threat detection | Per-device subscription |
Firewall & NGFW
See all 1 tools →Next-generation firewall platforms for network security, intrusion prevention, and application-layer protection. Compare enterprise NGFW, cloud firewalls, and SMB solutions.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Palo Alto Networks | Enterprise next-generation firewall platform with advanced threat prevention, application visibility, and centralized management | Appliance purchase + annual subscription licenses per feature |
Identity & Access Management
See all 8 tools →Managing who can access what across cloud apps, internal tools, and infrastructure. Whether you need enterprise SSO with thousands of integrations, developer-friendly CIAM for your SaaS app, or open-s…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Auth0 | SaaS teams that need customer login with a great developer experience | Per monthly active user (MAU) |
| Cloudflare Access | Teams replacing a VPN with zero trust access to internal apps | Per-user (free tier + paid tiers) |
| JumpCloud | SMBs and mid-market teams wanting IAM plus MDM without buying both | Per-user (billed annually) |
| KeycloakOSS | Teams that need full control, auditability, and zero license cost | Open Source + Enterprise Subscription |
| Microsoft Entra ID | Organizations already committed to Microsoft 365 and Azure | Per-user (bundled with Microsoft licenses) |
| Okta Workforce Identity | Enterprises with large SaaS portfolios needing a proven, broadly-integrated IAM backbone | Per-user tiers (billed annually) |
Managed Security Service Providers
See all 6 tools →Managed Security Service Providers and MDR firms compared on services, EDR-stack neutrality, transparency posture, and delivery model. From vendor-neutral cloud-native MDR to traditional 24/7 SOC outs…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Arctic Wolf | Organizations without in-house security expertise wanting fully managed vulnerability scanning and prioritized remediation guidance | Per-asset managed service (annual contract) |
| Critical Start | Mid-market and enterprise teams that already own EDR/XDR and want managed response with strong noise reduction | Subscription per integrated surface |
| eSentire | Financial services, legal, and insurance firms that want a mature MDR partner with deep vertical playbooks | Subscription tiers (Atlas Essentials / Advanced / Complete) |
| Expel | Teams that already own a quality EDR/SIEM/cloud stack and want a transparent, vendor-neutral SOC layered on top | Subscription per integrated surface |
| Red Canary (a Zscaler company) | Microsoft-centric organisations wanting Defender / Sentinel telemetry analysed by a high-fidelity detection-engineering team | Subscription per managed surface |
| Secureworks (a Sophos company) | Mid-to-large enterprises wanting a vendor-open MDR with strong threat intel and an embedded SIEM, especially in regulated verticals | Subscription + project services |
Network Detection & Response (NDR)
See all 7 tools →Network detection and response (NDR) tools monitor network traffic to detect, investigate, and respond to threats that bypass endpoint and perimeter controls. This directory lists NDR tools and vendor…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Arista NDR | Organizations wanting agentless, AI-assisted network detection | Subscription |
| CorelightOSS | Teams wanting open, Zeek-based network evidence and forensics | Open source + Enterprise subscription |
| Darktrace | Organizations wanting AI-driven detection of unknown threats across hybrid environments | Enterprise |
| ExtraHop | Organizations needing deep network visibility and forensics across hybrid environments | SaaS / Appliance |
| Fidelis Network | Government and enterprise buyers wanting deep session inspection NDR | Appliance + Subscription |
| Stamus NetworksOSS | Teams wanting Suricata-based NDR with an open-source edition | Open source + Enterprise |
PCI PTS Compliance Testing Companies
See all 5 tools →Companies involved in PCI PTS compliance for payment devices, split into two distinct roles. PCI Recognized evaluation laboratories perform the formal PCI PTS POI and HSM evaluations (and related EMVC…
| Tool | Best fit for | Pricing model |
|---|---|---|
| PCA Cyber Security | Payment-device makers and operators wanting offensive, real-world security testing of terminals beyond baseline PCI PTS certification | Project-based engagements |
| SERMA Safety & Security | Manufacturers needing PCI PTS and payment-acceptance device evaluation from an accredited European lab | Project-based engagements |
| SGS Brightsight | Payment terminal and HSM manufacturers needing formal PCI PTS, EMVCo or Common Criteria evaluation | Project-based engagements |
| SRC Security Research & Consulting | Manufacturers needing PCI PTS plus German DK/OSeC/JTEMS terminal evaluation | Project-based engagements |
| UL Solutions | Manufacturers needing PCI PTS and EMVCo evaluation from a large, globally accredited lab | Project-based engagements |
Penetration Testing Firms
See all 6 tools →Independent penetration testing firms compared on services, specialisms, delivery model, and standards coverage. From global FTSE 250 consultancies to boutique research-driven firms.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Bishop Fox | Mid-to-large enterprises wanting continuous offensive testing rather than annual point-in-time pentests | Project + Cosmos subscription |
| IOActive, Inc. | OEMs, semiconductor vendors, automotive, and critical-infrastructure operators that need silicon-to-cloud security expertise | Project-based engagements |
| Mandiant (part of Google Cloud) | Enterprises needing top-tier incident response, nation-state threat intelligence, or board-defensible breach engagement | Project-based engagements |
| NCC Group | Regulated enterprises and public-sector buyers wanting CREST-accredited testing, MDR, and software escrow under one global vendor | Project + retainer + managed services |
| Praetorian | Tech and regulated enterprises wanting continuous offensive testing folded into a single subscription rather than annual one-offs | Chariot subscription + project work |
| Trail of Bits | Crypto/DeFi protocols and security-conscious tech companies needing deep code, cryptography, and AI assurance work | Fixed-scope research engagements |
Privileged Access Management
See all 12 tools →Controlling who can access privileged accounts, servers, databases, and cloud infrastructure. PAM is what you reach for when secrets management alone is not enough: when you need session recording, ju…
| Tool | Best fit for | Pricing model |
|---|---|---|
| BeyondTrust Password Safe | Enterprises with mixed Unix/Linux/Windows estates needing unified privilege management | Enterprise (contact sales) |
| CyberArk | Enterprise privileged access management and identity security platform | Per-user subscription + modules |
| CyberArk ConjurOSS | Large enterprises with complex compliance and PAM requirements | Enterprise license |
| CyberArk Privilege Cloud | Large enterprises and government agencies with complex legacy environments and compliance requirements | Enterprise (contact sales) |
| Delinea Secret Server | Enterprises focused on privileged access management and compliance | Annual license |
| HashiCorp BoundaryOSS | Teams already invested in HashiCorp tooling who want unified secrets + session access | Open Source + HCP cloud tiers |
Product Threat Intelligence Providers
See all 5 tools →Companies that provide threat intelligence focused on specific products, rather than general enterprise or network threat intelligence. This covers vulnerability intelligence tailored to a manufacture…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Finite State | Manufacturers of connected devices across IoT, automotive, medical, and industrial sectors needing firmware-level vulnerability and exploit intelligence tied to compliance evidence. | Not publicly disclosed |
| Medcrypt | Medical device manufacturers needing to meet FDA and EU MDR cybersecurity requirements with product-specific security intelligence. | Not publicly disclosed |
| PCA Cyber Security | Payment-device makers and operators wanting offensive, real-world security testing of terminals beyond baseline PCI PTS certification | Project-based engagements |
| Upstream Security | OEMs and fleet operators that want cloud-scale detection, response, and a managed Vehicle SOC for connected fleets | Subscription (custom) |
| VicOne | OEMs and suppliers wanting a broad, lifecycle automotive security portfolio backed by an established cybersecurity parent | Subscription (custom) |
SASE & Zero Trust
See all 0 tools →Secure access service edge and zero trust platforms for securing distributed workforces and cloud applications. Compare enterprise SASE, cloud-native, and SMB zero trust solutions.…
| Tool | Best fit for | Pricing model |
|---|
Secrets Management
See all 19 tools →Managing API keys, database credentials, certificates, and machine identities across CI/CD pipelines, Kubernetes clusters, and cloud infrastructure. Whether you need enterprise-grade compliance, open-…
| Tool | Best fit for | Pricing model |
|---|---|---|
| 1Password (Business) | Teams wanting combined password management and developer secrets automation | Per-user |
| Akeyless | SaaS-based zero-knowledge secrets management platform | Custom enterprise |
| AWS Secrets Manager | Teams already on AWS who want native integration | Per-secret |
| Azure Key Vault | Microsoft and Azure-centric organizations | Per-operation |
| Bitwarden (Business)OSS | Security-conscious organizations wanting an affordable, auditable, and self-hostable password manager | Per-user |
| cert-managerOSS | Any Kubernetes team that needs TLS. Which is nearly all of them | Open Source |
Security Data Pipeline
See all 1 tools →Tools for routing, transforming, and optimizing security data flows across your infrastructure. Compare enterprise, cloud, and open-source data pipeline solutions.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Sawmills | Teams on Datadog, Splunk or similar that want to cut observability cost by filtering and optimising telemetry before ingestion | Usage-based (ingest volume; annual commitment) |
SIEM & Security Analytics
See all 1 tools →Security information and event management platforms for log analysis, threat detection, and incident response. Compare enterprise, cloud, and open-source SIEM solutions.…
| Tool | Best fit for | Pricing model |
|---|---|---|
| Splunk | Enterprise SIEM and security analytics platform for threat detection and incident response | Workload-based or ingest-based |
Vulnerability Management
See all 2 tools →Vulnerability scanning and management platforms for identifying, prioritizing, and remediating security weaknesses. Compare enterprise, cloud, and open-source vulnerability management tools.…
Get the full 2026 report
All 89tool listings, pricing, and deployment notes in one downloadable spreadsheet (CSV) you can sort and filter. We'll email you the download link.
You'll also get future editions as we add categories. No spam, unsubscribe any time.