The platform is cloud-agnostic and can be deployed anywhere that supports Docker. While it is currently in public alpha and not recommended for production use until public beta is released, the developers are working fast and expect to be ready for production use in the next 3-4 months. The platform offers two versions: Tracecat Embedded, which runs on a single instance and scales vertically, and Tracecat Distributed, which scales horizontally with self-healing/resilience. The developers are also working on integrations with platforms like Slack, Microsoft Teams, GitHub, and AWS CloudTrail.
Key takeaways:
- Tracecat is an open-source automation platform for security teams, aiming to provide features similar to Tines / Splunk SOAR but with a focus on open source and AI features.
- Tracecat is currently in public alpha and is not recommended for production use until the public beta is released.
- Tracecat is cloud agnostic and can be deployed anywhere that supports Docker. It offers two versions: Tracecat Embedded for single instance use and Tracecat Distributed for enterprise use-cases requiring high availability.
- The Tracecat codebase is 100% open source under Apache-2.0, but they also offer a paid Cloud version for small-to-mid sized teams and plan to charge service fees to enterprises for self-hosted distributed versions.