TABTAB.COM
press ⇥ to complete your company
§ HARDWARE — APPLE SILICON

Your agent’s armored cockpit.
Sealed Apple Silicon.

Every TabTab node ships on brand-new Apple Silicon — pre-configured, Tailscale-joined, and SSH-disabled. Pick the anchor, the companion, or both.

/CATALOG · MATCHED SET · REV 2026.04IN STOCK · 2-WEEK LEAD
TAB Bench and TAB Field — the matched product pair
§ 01 — COMPARISON

Head to head.
Spec for spec.

Both machines run the same TabTabOS. Same brain. Different body.

SPEC
TAB BENCH
TAB FIELD
Chassis
Mac mini M4 Pro
MacBook Air M4
CPU
12-core M4 Pro
10-core M4
GPU
18-core
10-core
Unified memory
48 GB
24 GB
Storage
512 GB SSD
512 GB SSD
Neural Engine
16-core
16-core
Cooling
Active (fan)
Fanless
Power
AC, always-on
Battery, 18 hr
Display
None (headless)
13.6" Liquid Retina
Weight
0.68 kg
1.24 kg
§ 02 — TAB BENCH

The anchor.
Mac mini M4 Pro · 48 GB

Lives at the shop. Runs the director and heavy brains. Indexes the vault overnight. Active cooling for sustained inference.

Thermal sustenance

Active cooling allows sustained multi-hour inference runs — massive vector embeddings, overnight vault indexing — without thermal throttling.

Maximum compute density

No screen, no battery, no keyboard. Every gram is inference power. Ideal for running 30B+ parameter models at full context locally.

Always-on architecture

Designed for a closet or under a desk. Runs headless 24/7, SSH-disabled, Tailscale-only. The silent anchor of your org chart.

§ 03 — TAB FIELD

The companion.
MacBook Air M4 · 24 GB

Rides in the truck. Runs on-device agents. Syncs with the Bench over Tailscale. Battery lasts 18 hours.

Built-in UPS

The battery is an Uninterruptible Power Supply. If the office loses power, your agent stays online. 18 hours of inference without a wall outlet.

Hardware-level security

Touch ID and the Secure Enclave provide a physical hardware gate for credential management that a headless server cannot replicate.

Immediate interface

Built-in screen and keyboard for first-mile troubleshooting before the Tailscale tunnel is active. No Bluetooth pairing dance.

§ — SHARED POSTURE

Whichever you pick, both units ship with the same defensive architecture.

§ 04 — SECURITY

The security "sandwich".
Four layers deep.

Every TabTab node ships with defense-in-depth security that eliminates the most common attack vectors in AI deployments.

01

Hardware seal

SSH disabled. No open ports. Tailscale loopback binding only. The node is invisible to the internet.

02

Dirty data protocol

Infrastructure email accounts isolate inbound data. Verified sender lists prevent prompt injection from malicious emails.

03

Bicameral architecture

The Steward handles strategy via SOUL.md. The Builder handles execution. They communicate through a strict JSON Synapse — no free-form LLM-to-LLM chatter.

04

Mesh encryption

WireGuard encryption via Tailscale. All node-to-node traffic is end-to-end encrypted. Zero data traverses the public internet.

§ 05 — POSITIONING

The architecture spectrum.
Where TabTab sits.

DIY / You-Do-It
  • Full control
  • No support
  • Weeks of setup
  • You are the sysadmin
TabTab
  • Pre-configured hardware
  • White-glove onboarding
  • Local-first, your data
  • Sealed + supported
Cloud VPS
  • Noisy neighbors
  • Root password trust
  • Latency to your files
  • Monthly hosting fees
Cloud API / SaaS
  • Zero hardware
  • Data leaves premises
  • Per-token pricing
  • Vendor lock-in
MORE CONTROLLESS CONTROL

Pick your chassis.
We handle the rest.

SEE PRICINGTHE SYSTEM