// wizard
Best vulnerability scanner: four-question shortlist
Four questions to a three-tool shortlist. Team size, asset mix, compliance regime, budget. No email. No demo wall.
author: Oliver Wakefield-Smith · verified 2026-06-26
// direct-answer
How do I shortlist the best vulnerability scanner for my team?
Pick on three axes: dominant asset mix (network / cloud / web / container), primary compliance driver (SOC 2 / PCI / HIPAA / FedRAMP), and annual budget ceiling. The wizard below maps your answers to a three-tool shortlist drawn from the 15-scanner directory.
// step 1 of 4
Team size
// faq
FAQ
- Will the wizard pick the cheapest scanner?Only if you pick the free/OSS budget. Otherwise it picks the strongest fit for your asset mix and compliance regime, not just price.
- Is my data sent anywhere?No. The wizard runs entirely in your browser; nothing is logged or sent to a server.
- What if my mix is genuinely hybrid?Pick the dominant asset mix and treat the second category as a follow-on shortlist. Most mid-market shops end up running a network VM tool plus a CNAPP for 18-24 months.
- Does it suggest open-source first?Only on the Free / OSS-only budget answer. Otherwise commercial tools rank ahead because of evidence packaging and feed lead-time.
- Can I re-run with different answers?Yes, the wizard restarts from the shortlist screen.