Platform Overview
Everything your team needs to stay ahead of incidents
Arca doesn't just collect logs and fire alerts — it thinks. An AI assistant with full context of your infrastructure is embedded in every collection, ready to investigate anomalies, explain patterns, and answer questions in plain English. Backed by real-time detection, self-hosted deployment, and no per-GB billing.
Download a pre-configured agent package from Arca. Drop it on any Linux host. Agents begin streaming data immediately — no manual configuration of API keys or collection identifiers required.
Logs and metrics land in named collections with your schema. Arca indexes up to 55 fields per document for fast querying. Full-text search works out of the box across all indexed fields.
Six detection rule types run continuously. When something fires, you get notified via Email, Slack, or PagerDuty. Open the AI chat assistant for natural-language analysis of any collection, with full context of your schema, recent data, and active anomalies.
12 pre-built agents cover the most common infrastructure monitoring needs out of the box.
Six rule types cover the detection patterns that matter most — from brute-force attempts to statistical drift.
More than N events within M minutes. Detects brute-force, scan activity, and error bursts.
No data from a known source within M minutes. Heartbeat and host-down detection.
A previously unseen value appeared. Catches new source IPs, unexpected processes, unknown users.
Metric average changed more than N% between two time windows. Rate-of-change detection.
Value deviates from rolling mean by more than N standard deviations. Statistical outlier detection.
Multiple conditions combined with AND/OR logic. Correlated multi-signal detection.
Most monitoring tools give you data. Arca gives you an analyst. Every collection has an embedded AI assistant — powered by Claude Sonnet — that knows your schema, your recent data, your configured alert and event rules, and every active anomaly in your environment. You don't have to grep through logs to figure out what happened. You ask.
This isn't a generic chatbot bolted on as an afterthought. The AI context is built directly from your live Arca data — the same schema, the same documents, the same anomaly records your dashboard is showing. It's a conversation about your infrastructure, not a search engine for documentation.
Ask the assistant to explain any anomaly in plain English — it can see the triggering document, the rule parameters, recent data trends, and related events across the collection.
Natural-language queries translate directly into filtered document views. No query syntax to learn, no dashboard to build — just ask.
The assistant understands your collection schema and data patterns. It can recommend specific alert thresholds and event rule configurations based on what it sees.
Every collection schema, every document, every alert rule, and every anomaly is structured to be AI-readable. When you open a chat, there's no loading, no context-switching — the model already has everything it needs to be useful. We built Arca this way intentionally, because we believe the future of infrastructure monitoring isn't better dashboards. It's better conversations.
Claude Sonnet embedded in every collection dashboard. Ask natural-language questions about your data. Full context: schema, recent documents, active anomalies, configured rules.
Every collection gets a dashboard automatically — time series charts with anomaly overlays, word clouds for text fields, and severity-coded markers. No chart building required.
Email, Slack, and PagerDuty — all individually toggleable per alert rule. Threshold alerts fire synchronously on write. Event rules evaluate every 60 seconds.
Case-insensitive substring search across all indexed fields, composable with partition filters and time range queries — from both the UI and the REST API.
Correlate fields from two or more source collections on a shared time bucket. Cross-collection dashboards and anomaly detection with no custom code.
Don't know your schema upfront? Send sample documents, let Arca discover the fields, review the suggestions, and confirm. Buffer-to-collection in seconds.
Complete API coverage: create namespaces and collections, write single or batch documents (up to 100), query with filters, and manage schema — all via API key.
Documents stored on your filesystem in configurable slices. Set per-collection expiration and compression thresholds. Storage monitoring built into the main dashboard.
Each agent type ships with 12+ curated alert and event recommendations. Review and create them in one click from the collections page — no configuration from scratch.
Arca is expanding into full Security Information and Event Management (SIEM). Correlated event analysis, threat intelligence integration, compliance-focused log retention policies, and investigation workflows are in active development. Beta users get early access.
Get on the Beta ListWe're onboarding beta users now. Beta access is free. To request access, send us an email with a brief description of your infrastructure and monitoring needs and we'll be in touch within 24 hours.
Request Beta Access Ask a Question