Trailbot Vault ^{_{DEVELOPER PREVIEW}}

Trailbot tracks files and logs in your servers, triggers Smart Policies upon tampering and generates an immutable audit trail of everything happening to them.

Smart Policies are simple scripts that get called every time a tracked file changes. They trigger actions such as emailing someone, rolling files back or even shutting the system down. There are plenty of them ready to use, and you can even create your own.

Trailbot has three components:

• Watcher: a server daemon that monitors your files and logs, registers file events and enforces smart policies.
• Client: desktop app for managing watchers, defining policies and reading file events.
• Vault: (this repository) a backend that works as a relay for the watcher's settings and the server events.

Why Trailbot?

Current security solutions are based on an obsolete paradigm: building walls and fences. Companies advertise their overcomplicated perimeter security systems as if they were impenetrable. But even so, we hear everyday about cyber security breaches at even the largest corporations.

Moreover, they will not protect you at all from internal breaches and insider threats. Furthermore, most data resides nowadays in the cloud, where walls, border and fences fade and blur.

With Trailbot, you can rest assured of the integrity of your data, being it a system log or any other important file. It doesn't matter if an outsider got access to your systems or an insider decided to go rogue—you are now in control.

About the Vault

Trailbot Vault is nothing more than a Horizon installation with a particular set of permissions in its schema.

It has two main purposes:

• Serving the static assets for the Trailbot Client Electron app.
• Storing and serving Trailbot Watcher configuration and file events.

Default Vault

We run a public instance of the Vault at vault.trailbot.io, which you are completely free to use without any limitation.

We are great defenders of technological sovereignty, so we encourage you to run your own instance of the Vault.

Installing your own Vault

Before installing the Vault, you must install the RethinkDB server. Consult Installing RethinkDB for downloads and installation instructions.

Once you have installed RethinkDB, simply do:

git clone https://github.com/stampery/trailbot-vault
cd trailbot-vault
sudo npm install -g
sudo npm run setup

Now the trailbot-vault service should be running and you will be able to connect to https://yourserverdomain.tld:8443 as long as your firewall configuration allows inbound traffic in the 8443 port.

Get Involved

We'd love for you to help us build Trailbot. If you'd like to be a contributor, check out our Contributing guide.

FAQ

Check out our FAQ at the wiki.