Tracecat
Tracecat is an open-source security automation platform that allows users to automate security alerts, build AI-assisted workflows, and close cases fast. It offers a no-code interface, unlimited workflows, and integrations with various security tools. The platform is open-source, Apache-2.0 licensed, and has a community-driven development process. Key features include a click-and-drag workflow builder, automated alert SLO tracking, MITRE ATT&CK labels, and AI-powered case management. The platform also offers a free plan with unlimited workflows and cases, making it suitable for solo security practitioners and large enterprises alike.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
RedELK is a SIEM tool designed for red teams to monitor and receive alerts about blue team detection activities during penetration testing engagements.
A community-driven repository and development framework for creating custom automation activities within the Ayehu NG IT orchestration platform.
RedEye is a visual analytic tool that provides enhanced situational awareness and operational insights for both Red and Blue Team cybersecurity operations.
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
Automated Digital Forensics and Incident Response (DFIR) software for rapid incident response and intrusion investigations.
A community repository of workflow templates for the Ayehu NG platform that enables automated IT and business process execution.
IRIS-SOAR is a Python-based modular SOAR platform that automates security incident response workflows and integrates with DFIR-IRIS for enhanced digital forensics operations.
Incident response and case management solution for efficient incident response and management.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.