Open source security automation platform for teams and AI agents

Tracecat helps AI-native security teams build agents and automate work.

Explore MCP catalog

Workspace

New task

Suggestions

Workspace

Workflows

Cases

Agents

Skills

Tools

Tables

Members

Variables

Integrations

Review required 2

In progress 1

Completed 2

Triage Wiz cloud finding

Wiz alert

wiz.finding.created

SOC analyst agent

Wiz MCP · Falcon MCP

Isolate host

falcon.isolate_host

⌘N⌘Y

Triage this Wiz finding: privilege escalation on a prod IAM role.

• Pull associated assets and CloudTrail context via Wiz MCP

• Correlate with EDR telemetry from Falcon MCP

I can route this through the SOC analyst agent — it will tune the finding into an actionable case, correlate EDR telemetry, and propose containment.

Yes — open a case and prepare containment.

Wiz (MCP connected)

CrowdStrike Falcon (MCP connected)

Found Isolate host in Falcon. It will quarantine the endpoint and revoke active session tokens while you review.

Trigger: Wiz finding ingested

SOC analyst agent: enrich and classify

Isolate host on approval

Ready to run Isolate host on i-0a7f…. Approve to proceed.

Trusted by security builders replacing legacy SOAR

Scale your security workforce with agents

Turn analysts into builders and builders into architects, so a team of 5 can do the work of 50.

Build agents with skills

Runbooks/Incident response agent

Incident response agent

Splunk

Sentinel

Elastic

Wiz (CNAPP)

Falcon (EDR)

CloudTrail

On-call

Goal

Triage and tune cloud alerts into actionable findings, then draft an IR runbook with containment steps.

Instructions

1. Pull related alerts from SIEM, EDR, and CNAPP.

2. Correlate with CloudTrail and identity logs.

3. Draft an IR runbook with containment and rollback steps.

Use agents to resolve cases

SOC analyst agentAlert ALT-8742

Falcon flagged a malicious npm post-install on WS-042.

Cross-referencing GitHub advisories — matches Shai-Hulud campaign

WS-042 ran post-install for @ctrl/tinycolor@4.1.2

Looks like Shai-Hulud exposure. Recommend isolating WS-042 in Falcon and auditing the 7 repos that reference @ctrl/tinycolor.

Quarantine WS-042 via Falcon
Block outbound traffic to known C2 domains

Open a case and rotate our org's npm tokens.

Drafting now. I'll also pull endpoint inventory from MDM to find any other exposed hosts.

Create CASE-234967 with full IOC list
Rotate npm + GitHub PAT tokens via GitHub API

Give agents data securely

Tables

alerts

SIEM • detection history

Active

endpoint_inventory

EDR • Falcon host inventory

Active

cloud_findings

Wiz • CNAPP findings

Active

oauth_grants

Identity • consented OAuth apps

Active

The most connected platform for security agents.

Learn about hosted MCP servers in Tracecat →

Triage alerts and automate work with agents you own.

Automate work across your security stack with agents you control and customize.

Runbooks/Phishing triage agent

Phishing triage agent

Gmail

Falcon (EDR)

VirusTotal

URLScan

Okta

Slack

Goal

Triage user-reported emails and contain credential harvest before more users click.

Instructions

1. Parse headers and detonate links and attachments.

2. Pull Falcon telemetry for any user that clicked.

3. Quarantine endpoints and force a session revoke when credentials were entered.

Phishing triage agentAlert PHISH-4471

Liam in Finance reported an Okta password reset email that looks off.

Sender domain registered 3 hours ago, not in our Okta tenant allowlist

URLScan shows a credential harvest page styled like our Okta login

Confirmed credential harvest. Two more users in Finance clicked the link in the last 90 minutes. Recommending session revoke and a tenant-wide block on the sender domain.

Revoke active sessions for the 3 impacted users in Okta
Block sender domain at the email gateway and Falcon DNS

Turn ideas into secure agentic workflows through chat.

Learn about Tracecat MCP →

Enterprise connectors

500+ integrations across SIEM, EDR, MDM, IdP, and more.

Hosted MCP servers

Connect your AI security agents to over 100+ pre-built MCP servers.

Limitless control flow

Run loops, if-conditions, parallel subflows, and scripts (Python, Bash, Ansible).

Human-in-the-loop agents

Run agents in workflows with explicit tool approvals.

OAuth grant review

Drag to pan

Trigger

New OAuth consent

@grant.scope == 'high_risk'

@grant.scope == 'low_risk'

Scatter

Split by user

Close alert

Allowlisted app

For loop

OAuth analyst agent

AI Agent

Revoke Google grant

Revoke Entra grant

Notify owner

Run subflow

Account quarantine

Work cases alongside agents built by your team.

Reduce time-to-resolve with agents that collect evidence, summarize findings, and prepare the next action.

CasesCASE-234966

Created 1 month agoLast edited 3 days ago

Status

In progress

Priority: High

Assignee: Unassigned

TTA 12m

TTR 4h 32m

Severity: High

supply chain

npm compromise

endpoint exposure

shai-hulud

Shai-Hulud npm worm — @ctrl/tinycolor exposure across 3 endpoints

Code signing enforcedNo

Impact scope3 endpoints, 7 repos

Data exfiltrationSuspected — npm tokens

Containment completeNo

Internal advisory flagged @ctrl/tinycolor@4.1.2 as compromised by the Shai-Hulud worm. A GitHub API search found references in 7 repos. CrowdStrike Falcon flagged the npm install and post-install script execution on 3 developer workstations.

Detection details

GitHub advisory ingested at 14:08 UTC, Falcon detection at 14:42 UTC
34-minute detection delay
Initial exposure via transitive dependency in package-lock.json

Indicators of compromise

Malicious package: @ctrl/tinycolor@4.1.2
Post-install SHA: a1f2c3…d4e5
C2 callback: webhook.site/<redacted>
Affected endpoints: WS-042, WS-118, WS-203

Recommended actions: pin affected repos to clean versions, rotate npm + GitHub PAT tokens, isolate affected endpoints in Falcon, and audit GitHub Actions runners for token reuse.

Case copilot

Ready

Summary drafted from the case description.

Suggested next steps

Pin clean versions across 7 affected repos
Rotate npm and GitHub PAT tokens org-wide
Isolate WS-042, WS-118, WS-203 via Falcon

Can you draft a containment runbook and notify the affected repo owners?

I can draft a containment runbook and pre-fill actions from the IOC list — token rotation, endpoint isolation, and repo owner notifications.

Ask the copilot for containment guidance...

Tracecat is mission ready.

Learn about the Enterprise Edition →

Fine-grained access controls

Open source audit logs

Self-hostable anywhere

Sandboxed by default

SOC2 Type II

SLAs

Reserved compute and autoscaling

Version control for workflows

Bring-your-own-LLMs

Book a demo

Talk to a Tracecat expert

Or self-host Tracecat open source today. Read the docs

Loved by security teams building with AI

CNLRER

Security Engineer @ Depop

Tracecat copilot has changed my life. I describe an agentic workflow and it builds it for me. I never had time to build and experiment around my other responsibilities. Now I do.

Senior Security Engineer @ Neo Financial

A genuine thank you to the team. I built an end-to-end IoC enrichment pipeline with Claude and Tracecat MCP and created more value for our SOC in a day than I probably would have in weeks on my own. You're making my one-man SOC assignment possible.

Principal Threat Researcher @ Saronic

Tracecat is a cheat code for corporate security teams that want to build and own their own agentic future.