platoseed
The open source AI-native security automation platform
Tracecat provides everything busy security teams need to automate work: agents, workflows, cases, and an AI copilot that builds for you. https://github.com/TracecatHQ/tracecat
Tracecat is an open source SOAR platform designed for AI-native security teams. It enables building and running security agents, workflows, and cases that teams own, to automate and orchestrate security operations.
Tracecat provides a self-hosted/open source security automation platform where users create agents that ingest alerts from SIEM/EDR/CNAPP, automate workflows, and manage cases. It supports integrating with hundreds of connectors, running customizable runbooks and scripts, and enabling human-in-the-loop approvals. The platform emphasizes AI-native agents, hosted MCP server connections, and the ability to map real alerts into actionable cases and containment actions across a connected security stack.
Who it’s for: Security operations teams at organizations using AI-native approaches and prefer open source, self-hosted security automation with programmable agents and runbooks.
Mentions self-hosted/open source model, hosted MCP servers, and enterprise-style security agent workflows; shows active product usage in demos and customer-like workflows but no named paying customers listed.
Daryl Lim is the Co-Founder and Chief Technology Officer of Tracecat. Previously, he worked on various observability, data and AI infrastructure teams at AMD, Meta, and a London-based quant trading firm. He earned a Bachelors and Masters degree in Computer Engineering from Imperial College London.
Formerly “neometrics.ai” · why startups rename →

Describe It. Find It. Act On It.

AI Agents for Security Operations Teams