Praetorian vs Trail of Bits
Praetorian
Founded in 2010 by Nathan Sportsman and headquartered in Austin, Texas, Praetorian positions itself around 'continuous offensive security.' It pairs traditional consulting with Chariot, a platform combining external attack-surface management, continuous testing, and AI-driven workflow automation to surface exploitable issues on an ongoing basis.
Pros
- Chariot supports continuous, year-round testing rather than annual point-in-time pentests
- Strong engineering culture with mature internal tooling and automation
- Bootstrap-grown firm with stable leadership and long consultant tenure
- Service model designed to satisfy annual testing requirements across multiple frameworks in one program
Cons
- Chariot subscription pricing is enterprise-tier with no public list
- Primarily U.S.-based delivery with smaller international footprint
- Continuous-testing model is a poor fit for buyers needing only a single compliance pentest
Pricing: Custom (contact sales)
Trail of Bits
Co-founded in 2012 by Dan Guido and headquartered in New York City, Trail of Bits combines academic-style security research with hands-on engineering. The firm is best known for advanced software assurance work across cryptography, AI/ML, blockchain, and low-level systems, and for releasing widely used open-source tooling such as the Slither smart contract analyzer.
Pros
- Strong academic and research-grade reputation with published peer-reviewed work
- Open-source tooling footprint including Slither, Echidna, Manticore
- Recognised leader in smart-contract auditing for top-tier protocols
- Engineering depth that translates findings into custom defensive tooling
Cons
- Premium pricing and limited bench means long lead times
- Highly specialised, not a fit for routine commodity pentesting
- No published price list; bespoke statements of work per project
Pricing: Custom (contact sales)