|
By Jack Coates and
Do more with less. That’s the mandate we’re all hearing. AI has fundamentally changed how we work. Modern AI workloads generate 10-100x more queries than humans ever could, pushing legacy architectures past performance limits. And the audacity of it all? Legacy logging vendors continue to raise costs without delivering meaningful innovation. IT and security teams are still forced to choose between speed and retention. Investigations are still slow. Data onboarding is still painful.
|
By Ryan Conway and
Modern enterprises are generating more high-volume observability and security data than ever, which means the cost and complexity of getting analytics-ready data into Databricks are only growing. With the new Databricks Destination for Cribl Stream, organizations finally have a governed, scalable, and cost-efficient way to take full control of their data pipelines, accelerate AI-driven analytics, and unlock real business value from their Databricks investment.
|
By Nick Heudecker
As AI agents move from copilots to autonomous systems, they’re generating and consuming data at unprecedented scale. The result is a new kind of infrastructure pressure — one that’s quietly reshaping how organizations think about data, cost, and control. Across IT, Security, and Observability, leaders are realizing a hard truth: too much data is too costly.
|
By Glenn Block
In September, I wrote about how Cribl and Microsoft Fabric Real-Time Intelligence provide a powerful combination, unlocking new analytics capabilities for security and IT teams. I also said there was more to come… Today, Cribl is thrilled to announce a new Cribl Destination for Microsoft Fabric Real-Time Intelligence, marking another big step forward in our collaboration with Microsoft to make it much easier for Cribl customers to use Fabric.
|
By Matthew Kelly
As Chief Legal Officer, I’ve personally navigated the complex, ever-shifting landscape where privacy compliance meets rapidly evolving technologies. Whether it’s the sweeping reach of a law protecting personal data in the EU, the specific demands of a law giving California residents more control over their personal information, or the critical protections of a law safeguarding sensitive patient health information in the U.S., one challenge remains.
|
By Clint Sharp
At Cribl, we’ve talked a lot about epochs. A moment in time when there was a before and after. AI, and specifically agentic AI, is an epoch. The way we work is going to forever change. There have been many such events in our lifetimes: the PC, the Internet, and the smartphone. AI will change how we work forever. Prior to the PC, there were people whose jobs were literally titled “computer”.
|
By Nicholas Filippi and
Investigations move fast. Data is messy. And today’s analysts are expected to connect the dots across massive datasets and various tools—while documenting every step and sharing results with stakeholders. What does that look like? A security investigation may involve 10 or more queries—each one filtering, transforming, and analyzing data from a different angle—duplicated across multiple browser tabs so nothing gets lost.
|
By Felicia Dorng and
What happens when your data pipelines slow down, drop volume, or quietly change shape? Most monitoring tools won’t catch those shifts until it’s too late—when downstream systems are already impacted, dashboards are broken, or critical information is missing. That’s why we’re excited to introduce Cribl Insights, to give you real-time visibility into every part of your Cribl environment: data flows, operations, processing, user activity, configuration changes, and more.
|
By Bill Emmett
Telemetry data is growing at an average of 29% a year — doubling costs every 18 months. That’s putting pressure on ITOps budgets, observability platforms, SecOps teams, and SIEM deployments alike. In this post, we’ll explore how unchecked data volumes, siloed tools, and aging architectures are creating a telemetry cost crunch that limits visibility, slows both troubleshooting and threat detection, and impacts business outcomes.
|
By Dritan Bitincka
As a Co-founder and CPO at Cribl, I'm genuinely stoked that our new federal suite, Cribl.Cloud Government, has achieved an “In Process” designation under the Federal Risk and Authorization Management Program (FedRAMP). This isn’t any old milestone. We’re bringing all of Cribl’s kickass capabilities to government agencies, even those that require the strictest compliance and security standards. Because, who doesn’t love a good set of rules?
|
By Cribl
This video introduces the new REST Collector Diagnostics feature in Cribl, which helps you troubleshoot API collection issues faster. It’s designed for observability and data engineers who use REST Collector to pull data from external APIs and need deeper visibility into HTTP requests, responses, and errors.
|
By Cribl
Learn how to install and configure the Cribl Search Pack for Zscaler, then walk through prebuilt dashboards for your Zscaler security logs. This video is for security engineers, Zscaler administrators, and SOC/observability teams using Cribl Search to monitor and investigate Zscaler activity. In this walkthrough, you’ll see: If you need a reminder or want to share feedback on the pack, you can always refer to the README bundled with the pack or reach out to the Cribl team.
|
By Cribl
I recently sat down with Simon Overbey and Lovepreet Singh - the Engineering Manager and systems engineer (respectively) at Getty Images to talk about their experiences implementing Cribl. After getting a rundown of the pre-Cribl environment (described above) I asked to jump straight to the end, the net benefits. If the "before" was a terrifying tidal wave of cost and complexity, what did the "after" look like?
|
By Cribl
You already use Cribl to tame your telemetry data. Now you can turn that data into apps your teams actually want to use. In this video, we walk through the Cribl app platform and show how real apps solve real problems: guided troubleshooting for noisy incidents, opinionated security views, and exec-friendly ROI dashboards. You’ll see how apps sit on top of Cribl Stream, Edge, Search, and Lake, so you reuse the data and logic you already have instead of building custom tools from scratch.
|
By Cribl
See how Bring Your Own Storage (BYOS) in Cribl Lake allows teams to connect directly to Azure Blob Storage and instantly search data in place — without moving, duplicating, or rehydrating telemetry. In this demo, Cribl Product Manager Risk Salsa walks through setup, dataset creation, and how to run fast investigations across your Azure-hosted data using Cribl Search.
|
By Cribl
The wait is over for Azure-first organizations. Cribl just launched Cribl Lake Bring Your Own Storage (BYOS) for Microsoft Azure, giving you full data lake power without moving a single byte of telemetry out of your environment. Join us to see how you can finally get the flexibility of a modern data lake while keeping your data in Azure.
|
By Cribl
In this episode, Leon explores a bunch of BYO (bring your own) enhancements to Cribl including the ability to bring your own AI model, storage, and more.
|
By Cribl
Your SIEM only holds a slice of your telemetry. Your data lake holds the rest. We'll show you how to use that to your advantage for investigations, threat hunting, and reporting. Why your data lake beats your SIEM for investigations – Your SIEM keeps a short window of expensive, filtered data. Your data lake keeps everything. When something goes wrong, that difference matters more than you think Threat hunting without the handcuffs – Hunting across months of data in a SIEM is painful and costly. We'll show you how a well-planned lake makes broad, deep searches practical and affordable.
|
By Cribl
Investigations are time-sensitive, and analysts shouldn’t waste time recreating the same workflows or rewriting familiar queries. Whether troubleshooting infrastructure, investigating suspicious IPs, or analyzing host activity, teams often rely on duplicating old processes and copying query snippets — a slow, inconsistent approach that’s hard to scale.
|
By Cribl
Cribl's Product Manager David Cavuto walks through how quick and easy it is to get data ingested into Cribl Search's lakehouse engine.
|
By Cribl
How do you get the data out of your infrastructure and applications in order to properly observe, monitor, and secure their running states while minimizing overlap, wasted resources, and cost? Many business folks need a broad category of tools in all their environments to solve challenges such as up and down monitoring, metrics, a time series database (TSDB), log analytics, event streaming, security information and event management (SIEM), user behavior analytics (UBA), and data lakes. The answer to the proposed question to solve these hurdles is using an observability pipeline.
|
By Cribl
Observability allows you to understand the behavior of applications and infrastructure from the data they produce.
|
By Cribl
Using Splunk for long-term storage can drive up costs and slow down searches, especially as data volumes increase and teams expand their use cases.
|
By Cribl
Traditional security tools struggle to adapt to the new world of cyber threats. To keep up with the growing number of daily threats, understaffed security teams need new cloud-delivered solutions and tactics focused on generating attack resolutions, consistently and repeatedly. Enter Exabeam. Exabeam powers security teams with analytics-driven insights to uncover, investigate, and resolve threats legacy tools may miss.
|
By Cribl
The observability market is changing quickly. Rushing into a monolithic observability product limits your future options by locking you in to a single vendor.
- June 2026 (3)
- May 2026 (8)
- March 2026 (5)
- February 2026 (1)
- January 2026 (6)
- December 2025 (14)
- November 2025 (15)
- October 2025 (7)
- September 2025 (7)
- August 2025 (3)
- July 2025 (3)
- June 2025 (12)
- May 2025 (4)
- April 2025 (3)
- March 2025 (4)
- February 2025 (4)
- January 2025 (5)
- December 2024 (9)
- November 2024 (9)
- October 2024 (11)
- September 2024 (9)
- August 2024 (17)
- July 2024 (14)
- June 2024 (17)
- May 2024 (16)
- April 2024 (16)
- March 2024 (13)
- February 2024 (17)
- January 2024 (22)
- December 2023 (15)
- November 2023 (25)
- October 2023 (18)
- September 2023 (14)
- August 2023 (21)
- July 2023 (17)
- June 2023 (20)
- May 2023 (19)
- April 2023 (15)
- March 2023 (20)
- February 2023 (21)
- January 2023 (15)
- December 2022 (8)
- November 2022 (20)
- October 2022 (14)
- September 2022 (15)
- August 2022 (16)
- July 2022 (13)
- June 2022 (21)
- May 2022 (19)
- April 2022 (19)
- March 2022 (24)
- February 2022 (20)
- January 2022 (16)
- December 2021 (14)
- November 2021 (8)
- October 2021 (3)
- September 2021 (2)
- August 2021 (3)
- July 2021 (1)
- June 2021 (3)
Route observability data where it has the most value. Slash costs, improve performance, and get the right data to the right destinations, in the right formats, at the right time.
Cribl is a company built to solve customer challenges and enable customer choice. Its solutions deliver innovative and customizable controls to route security and machine data where it has the most value. We call this an observability pipeline, and it helps slash costs, improve performance, and get the right data, to the right destinations, in the right formats, at the right time.
LogStream Gives You The Simplicity, Flexibility, and Control...
- To Route Your Data: Send data to the most effective destinations including low-cost storage locations like S3 for long-term retention. Route data to the best tool for the job – or all the tools for the job – by translating and formatting data into any tooling schema you require. Let different departments choose different analytics environments without having to deploy new agents or forwarders.
- To Reduce Your Data: Reduce as much as 50% of ingested log volume to control costs and improve system performance. Eliminate duplicate fields, null values, and any elements that provide little analytical value. Filter and screen events for dynamic sampling, or aggregate log data into metrics for massive volume reduction. Do all of this without worry: You can keep a full-fidelity copy in a low-cost destination and replay it back if needed.
- To Collect More Data: LogStream is the best way to get multiple data formats into your analytics tools. Use the LogStream universal receiver to collect from any observability data source – and even to schedule batch collection from multiple APIs. In addition, recall data from low-cost storage to replay logs to analytics tools for later investigations with ad-hoc data collection.
- To Shape Your Data: Shape all of the data you need to drive decisions about your environment. Translate and transform data from all of your sources to the tools you choose. Get a more complete picture of your data by enriching logs with third-party data. LogStream collects data from all of your sources and shapes it into actionable logs and metrics for analysis.
Cribl’s mission is to unlock the value of all your observability data, regardless of source or destination.
Download LogStream for free to get started!