Active cyber protection constitutes the selection of IT system protection mechanisms that have a high level of automation, or are completely autonomous. This study explores the last five years of development within active cyber protection in academic research. Additionally, earlier FOI research is summarised, as are some cyber protection mechanisms provided by commercial companies. The study shows that new types of cyber protection mechanisms are developed both within academia and industry. The focus in the academic literature is mostly on detection techniques, while commercial solutions to a greater extent also cover response actions such as isolation and eviction of threat actors. The academic research generally shows a low level of maturity, while the commercial products lack independent practical evaluation. Consequently, there are uncertainties regarding the actual benefit of the proposed and offered protection mechanisms. A vital aspect is that the majority of academic and commercial cyber protection mechanisms focus on traditional IT systems. These protection mechanisms may not be suitable in field-oriented military environments. In these environments it is critical that the cyber protection mechanisms do not compromise the military capability, which exists to save human lives and defend the country. More research is therefore needed to evaluate which cyber protection mechanisms that are suitable in these situations.