2026 Edition • Free • No scoring or rankings

The 2026 Cybersecurity
Tool Landscape Report

89 tools across 20 categories. Pricing, deployment, standards, and reported pros and considerations, side by side. As a downloadable spreadsheet (CSV).

No spam. Unsubscribe any time. Or scroll down and browse the listings free.

Inside the report

  • ✓ Downloadable spreadsheet (CSV) you can sort and filter
  • 89 tools listed alphabetically per category
  • ✓ Public pricing per tool (free tiers, per-seat, enterprise)
  • ✓ Reported pros and considerations from practitioner discussions
  • ✓ Deployment model, standards, and certifications

89

Tools listed

20

Categories covered

0

Scoring weights

0

Hidden placements

What's inside

1

Alphabetical category listings

Every tool in every category, in alphabetical order. No editorial scoring, no “Top 5”. Just the listings, side by side.

2

Aggregated public pricing

Free tiers, per-seat costs, and enterprise ranges pulled from official vendor pages and what practitioners report paying. Verify with the vendor before any purchase.

3

Reported pros and considerations

What real practitioners say on Reddit, Hacker News, Stack Overflow, and verified review sites. Not vendor marketing. We report; we don't verdict.

Application Security

See all 1 tools →

Application security testing tools for finding and fixing vulnerabilities in code, dependencies, and containers. Compare SCA, SAST, and open-source application security solutions.

ToolBest fit forPricing model
SnykDeveloper-first application security platform for finding and fixing vulnerabilities in code, dependencies, containers, and IaCPer-developer (monthly)

Automotive Cybersecurity

See all 3 tools →

Automotive cybersecurity companies protect connected and software-defined vehicles across their lifecycle. From ECUs, in-vehicle networks, and telematics to cloud backends, fleets, and EV charging. Th

ToolBest fit forPricing model
PCA Cyber SecurityOEMs and suppliers that need elite offensive testing, TARA, and managed monitoring for connected vehicles and embedded productsProject-based engagements
Upstream SecurityOEMs and fleet operators that want cloud-scale detection, response, and a managed Vehicle SOC for connected fleetsSubscription (custom)
VicOneOEMs and suppliers wanting a broad, lifecycle automotive security portfolio backed by an established cybersecurity parentSubscription (custom)

Cloud Security & CNAPP

See all 0 tools →

Cloud-native application protection platforms for securing cloud workloads, containers, and infrastructure. Compare CNAPP, agentless cloud security, and cloud workload protection solutions.

ToolBest fit forPricing model

Cyber Resilience Act Compliance

See all 6 tools →

Companies that help manufacturers comply with the EU Cyber Resilience Act (Regulation 2024/2847), the mandatory cybersecurity rules for products with digital elements sold in the EU. From hands-on emb

ToolBest fit forPricing model
Bureau VeritasManufacturers wanting one TIC partner spanning hands-on pen testing, RED/IEC 62443 testing, and CRA conformity advisoryConsulting + testing + certification
DEKRAManufacturers planning ahead for CRA conformity assessment who want an EUCC-accredited evaluator and future notified bodyTraining + evaluation + certification
ONEKEYDevice manufacturers wanting automated SBOM, vulnerability management, and CRA evidence generation across the product lifecyclePlatform subscription + advisory
pi3gSME manufacturers of embedded-Linux and IoT products that need hands-on engineering help to reach CRA compliance, not just an auditConsulting + engineering engagements
SGSManufacturers of higher-assurance digital products (chips, secure elements, payment, embedded) needing lab evaluation and EU type certificationTesting + certification + advisory
TUV SUDManufacturers needing accredited third-party assessment, RED/EN 18031 testing, and CE-marking support from an established certification bodyAssessment + certification + training

Data Security & Governance

See all 2 tools →

Data security and governance platforms for discovering, classifying, and protecting sensitive data across your organization. Compare enterprise DLP, cloud data security, and data discovery solutions.

ToolBest fit forPricing model
Lepide Data Security PlatformOrganisations wanting unstructured-data security, access governance and auditing across AD, Microsoft 365 and file servers, as a per-user alternative to Varonis or NetwrixQuote-based (per user, per year, by platform)
VaronisData security and governance platform for access visibility, insider threat detection, and sensitive data protectionSubscription (per-user or per-TB)

Email Security

See all 2 tools →

Email security platforms for protecting against phishing, BEC, malware, and other email-borne threats. Compare cloud email security, AI-powered, enterprise gateway, and email encryption solutions.

ToolBest fit forPricing model
Acronis Email SecurityMSPs and service providers protecting Microsoft 365 or Google Workspace mailboxes who want email security integrated with backup and endpoint protection.Subscription-based, priced per unique protected mailbox/user as an add-on to Acronis Cyber Protect Cloud. Varies by licensing model, protected workloads, mailboxes, and region. One-month trial available. Contact an Acronis partner for current pricing.
ProofpointEnterprise email security platform for advanced threat protection, compliance, and data loss preventionPer-user subscription

Endpoint & EDR

See all 2 tools →

Endpoint detection and response platforms for protecting devices against malware, ransomware, and advanced threats. Compare enterprise EDR, XDR, and SMB endpoint solutions.

ToolBest fit forPricing model
Acronis Cyber ProtectTeams and MSPs that want backup, disaster recovery, and endpoint security (anti-ransomware, EDR) in one platformSubscription (per workload or per GB; MSP consumption-based)
CrowdStrikeCloud-native endpoint protection platform with AI-powered threat detectionPer-device subscription

Firewall & NGFW

See all 1 tools →

Next-generation firewall platforms for network security, intrusion prevention, and application-layer protection. Compare enterprise NGFW, cloud firewalls, and SMB solutions.

ToolBest fit forPricing model
Palo Alto NetworksEnterprise next-generation firewall platform with advanced threat prevention, application visibility, and centralized managementAppliance purchase + annual subscription licenses per feature

Identity & Access Management

See all 8 tools →

Managing who can access what across cloud apps, internal tools, and infrastructure. Whether you need enterprise SSO with thousands of integrations, developer-friendly CIAM for your SaaS app, or open-s

ToolBest fit forPricing model
Auth0SaaS teams that need customer login with a great developer experiencePer monthly active user (MAU)
Cloudflare AccessTeams replacing a VPN with zero trust access to internal appsPer-user (free tier + paid tiers)
JumpCloudSMBs and mid-market teams wanting IAM plus MDM without buying bothPer-user (billed annually)
KeycloakOSSTeams that need full control, auditability, and zero license costOpen Source + Enterprise Subscription
Microsoft Entra IDOrganizations already committed to Microsoft 365 and AzurePer-user (bundled with Microsoft licenses)
Okta Workforce IdentityEnterprises with large SaaS portfolios needing a proven, broadly-integrated IAM backbonePer-user tiers (billed annually)

Managed Security Service Providers

See all 6 tools →

Managed Security Service Providers and MDR firms compared on services, EDR-stack neutrality, transparency posture, and delivery model. From vendor-neutral cloud-native MDR to traditional 24/7 SOC outs

ToolBest fit forPricing model
Arctic WolfOrganizations without in-house security expertise wanting fully managed vulnerability scanning and prioritized remediation guidancePer-asset managed service (annual contract)
Critical StartMid-market and enterprise teams that already own EDR/XDR and want managed response with strong noise reductionSubscription per integrated surface
eSentireFinancial services, legal, and insurance firms that want a mature MDR partner with deep vertical playbooksSubscription tiers (Atlas Essentials / Advanced / Complete)
ExpelTeams that already own a quality EDR/SIEM/cloud stack and want a transparent, vendor-neutral SOC layered on topSubscription per integrated surface
Red Canary (a Zscaler company)Microsoft-centric organisations wanting Defender / Sentinel telemetry analysed by a high-fidelity detection-engineering teamSubscription per managed surface
Secureworks (a Sophos company)Mid-to-large enterprises wanting a vendor-open MDR with strong threat intel and an embedded SIEM, especially in regulated verticalsSubscription + project services

Network Detection & Response (NDR)

See all 7 tools →

Network detection and response (NDR) tools monitor network traffic to detect, investigate, and respond to threats that bypass endpoint and perimeter controls. This directory lists NDR tools and vendor

ToolBest fit forPricing model
Arista NDROrganizations wanting agentless, AI-assisted network detectionSubscription
CorelightOSSTeams wanting open, Zeek-based network evidence and forensicsOpen source + Enterprise subscription
DarktraceOrganizations wanting AI-driven detection of unknown threats across hybrid environmentsEnterprise
ExtraHopOrganizations needing deep network visibility and forensics across hybrid environmentsSaaS / Appliance
Fidelis NetworkGovernment and enterprise buyers wanting deep session inspection NDRAppliance + Subscription
Stamus NetworksOSSTeams wanting Suricata-based NDR with an open-source editionOpen source + Enterprise

PCI PTS Compliance Testing Companies

See all 5 tools →

Companies involved in PCI PTS compliance for payment devices, split into two distinct roles. PCI Recognized evaluation laboratories perform the formal PCI PTS POI and HSM evaluations (and related EMVC

ToolBest fit forPricing model
PCA Cyber SecurityPayment-device makers and operators wanting offensive, real-world security testing of terminals beyond baseline PCI PTS certificationProject-based engagements
SERMA Safety & SecurityManufacturers needing PCI PTS and payment-acceptance device evaluation from an accredited European labProject-based engagements
SGS BrightsightPayment terminal and HSM manufacturers needing formal PCI PTS, EMVCo or Common Criteria evaluationProject-based engagements
SRC Security Research & ConsultingManufacturers needing PCI PTS plus German DK/OSeC/JTEMS terminal evaluationProject-based engagements
UL SolutionsManufacturers needing PCI PTS and EMVCo evaluation from a large, globally accredited labProject-based engagements

Penetration Testing Firms

See all 6 tools →

Independent penetration testing firms compared on services, specialisms, delivery model, and standards coverage. From global FTSE 250 consultancies to boutique research-driven firms.

ToolBest fit forPricing model
Bishop FoxMid-to-large enterprises wanting continuous offensive testing rather than annual point-in-time pentestsProject + Cosmos subscription
IOActive, Inc.OEMs, semiconductor vendors, automotive, and critical-infrastructure operators that need silicon-to-cloud security expertiseProject-based engagements
Mandiant (part of Google Cloud)Enterprises needing top-tier incident response, nation-state threat intelligence, or board-defensible breach engagementProject-based engagements
NCC GroupRegulated enterprises and public-sector buyers wanting CREST-accredited testing, MDR, and software escrow under one global vendorProject + retainer + managed services
PraetorianTech and regulated enterprises wanting continuous offensive testing folded into a single subscription rather than annual one-offsChariot subscription + project work
Trail of BitsCrypto/DeFi protocols and security-conscious tech companies needing deep code, cryptography, and AI assurance workFixed-scope research engagements

Privileged Access Management

See all 12 tools →

Controlling who can access privileged accounts, servers, databases, and cloud infrastructure. PAM is what you reach for when secrets management alone is not enough: when you need session recording, ju

ToolBest fit forPricing model
BeyondTrust Password SafeEnterprises with mixed Unix/Linux/Windows estates needing unified privilege managementEnterprise (contact sales)
CyberArkEnterprise privileged access management and identity security platformPer-user subscription + modules
CyberArk ConjurOSSLarge enterprises with complex compliance and PAM requirementsEnterprise license
CyberArk Privilege CloudLarge enterprises and government agencies with complex legacy environments and compliance requirementsEnterprise (contact sales)
Delinea Secret ServerEnterprises focused on privileged access management and complianceAnnual license
HashiCorp BoundaryOSSTeams already invested in HashiCorp tooling who want unified secrets + session accessOpen Source + HCP cloud tiers

Product Threat Intelligence Providers

See all 5 tools →

Companies that provide threat intelligence focused on specific products, rather than general enterprise or network threat intelligence. This covers vulnerability intelligence tailored to a manufacture

ToolBest fit forPricing model
Finite StateManufacturers of connected devices across IoT, automotive, medical, and industrial sectors needing firmware-level vulnerability and exploit intelligence tied to compliance evidence.Not publicly disclosed
MedcryptMedical device manufacturers needing to meet FDA and EU MDR cybersecurity requirements with product-specific security intelligence.Not publicly disclosed
PCA Cyber SecurityPayment-device makers and operators wanting offensive, real-world security testing of terminals beyond baseline PCI PTS certificationProject-based engagements
Upstream SecurityOEMs and fleet operators that want cloud-scale detection, response, and a managed Vehicle SOC for connected fleetsSubscription (custom)
VicOneOEMs and suppliers wanting a broad, lifecycle automotive security portfolio backed by an established cybersecurity parentSubscription (custom)

SASE & Zero Trust

See all 0 tools →

Secure access service edge and zero trust platforms for securing distributed workforces and cloud applications. Compare enterprise SASE, cloud-native, and SMB zero trust solutions.

ToolBest fit forPricing model

Secrets Management

See all 19 tools →

Managing API keys, database credentials, certificates, and machine identities across CI/CD pipelines, Kubernetes clusters, and cloud infrastructure. Whether you need enterprise-grade compliance, open-

ToolBest fit forPricing model
1Password (Business)Teams wanting combined password management and developer secrets automationPer-user
AkeylessSaaS-based zero-knowledge secrets management platformCustom enterprise
AWS Secrets ManagerTeams already on AWS who want native integrationPer-secret
Azure Key VaultMicrosoft and Azure-centric organizationsPer-operation
Bitwarden (Business)OSSSecurity-conscious organizations wanting an affordable, auditable, and self-hostable password managerPer-user
cert-managerOSSAny Kubernetes team that needs TLS. Which is nearly all of themOpen Source

Security Data Pipeline

See all 1 tools →

Tools for routing, transforming, and optimizing security data flows across your infrastructure. Compare enterprise, cloud, and open-source data pipeline solutions.

ToolBest fit forPricing model
SawmillsTeams on Datadog, Splunk or similar that want to cut observability cost by filtering and optimising telemetry before ingestionUsage-based (ingest volume; annual commitment)

SIEM & Security Analytics

See all 1 tools →

Security information and event management platforms for log analysis, threat detection, and incident response. Compare enterprise, cloud, and open-source SIEM solutions.

ToolBest fit forPricing model
SplunkEnterprise SIEM and security analytics platform for threat detection and incident responseWorkload-based or ingest-based

Vulnerability Management

See all 2 tools →

Vulnerability scanning and management platforms for identifying, prioritizing, and remediating security weaknesses. Compare enterprise, cloud, and open-source vulnerability management tools.

ToolBest fit forPricing model
KUMOOSSSecurity researchers and pentesters who want fast, free domain reconnaissance from the command line.Open Source
TenableVulnerability management platform with Nessus scanning, cloud-native VM, and exposure managementPer-asset (annual subscription)

Get the full 2026 report

All 89tool listings, pricing, and deployment notes in one downloadable spreadsheet (CSV) you can sort and filter. We'll email you the download link.

You'll also get future editions as we add categories. No spam, unsubscribe any time.

Frequently asked questions

Yes. We don't charge for the report. The report lists organic listings alphabetically and we don't score or rank them; any featured listing on the site is a paid placement that is always clearly labelled. We give the email copy away because we want to send future updates, not because we need to charge for it. The full directory is also available free right here on the site.

Two things. First, we don't accept paid placements; G2 and Gartner do. Second, we don't score, rank, or analyst-review. We list the tools alphabetically and put public facts side by side, with reasoning from real practitioner discussions. If you want a graded verdict from an analyst, this isn't that. And we'll happily say so.

We re-read each listing on a regular cadence and update pricing when a vendor changes a tier. If you sign up via email, you'll get refreshed editions whenever we ship one.

We add categories as the directory grows. Subscribe above to get notified when new ones ship.