Tracecat is the open-source Tines / Splunk SOAR alternative built for security engineers.

Why Tracecat?

  • Security Operations (SecOps): Unify playbook development across security analysts and security engineers
  • Security Engineers (SecEng): Build and maintain complex playbooks using open source integrations and configuration-as-code (YAML)
  • Managed Detection & Response (MDR): Rapidly self-host, embed, and scale multi-tenant playbooks into any security service or product

New to Tracecat?

Tutorials

Self-guided tutorials to go from zero-to-hero in Tracecat.

Core Features

Check out the following docs for more details on Tracecat’s core features.