Cribl

San Francisco, CA, USA
2017
Jan 18, 2022   |  By Justin Hamblin
Health data is notoriously difficult to collect, route, and transform. I will demonstrate how to leverage the LogStream Observability Pipeline to solve these problems and help users search their Apple Health data.
Jan 11, 2022   |  By Raanan Dagan
Preventing data loss for data in motion is a challenge that LogStream Persistent Queues (PQ) can help prevent when the downstream Destination is unreachable. In this blog post, we’ll talk about how to configure and calculate PQ sizing to avoid disruption while the Destination is unreachable for few minutes or a few hours. The example follows a real-world architecture, in which we have.
Jan 6, 2022   |  By Carley Rosato
It is commonly believed that once data is collected and ingested into a system of analysis, the most difficult part of obtaining the data is complete. However, in many cases, this is just the first step for the infrastructure and security operations teams expected to derive insights.
Jan 5, 2022   |  By Nick Heudecker
Shortly before the December holidays, a vulnerability in the ubiquitous Log4J library arrived like the Grinch, Scrooge, and Krampus rolled into one monstrous bundle of Christmas misery. Log4J maintainers went to work patching the exploit, and security teams scrambled to protect millions of exposed applications before they got owned. At Cribl, we put together multiple resources to help security teams detect and prevent the Log4J vulnerability using LogStream.
Jan 4, 2022   |  By Brian Krueger
Here at Cribl, we have a cloud offering of our LogStream product. In building and supporting our cloud product, we have a service-based architecture. And we want to be able to gather metrics from our services, in order to monitor those services and make sure we meet our SLAs.
Dec 21, 2021   |  By Joseph Eustaquio
While I write this blog post, I reflect on the years of being a system administrator and the task of ensuring that no sensitive data made its way past me. What a daunting task right? The idea that sensitive data can make its way through our systems and other tools and reports is terrifying! Not to mention the potential financial/contractual problems this can cause.
Dec 16, 2021   |  By Nick Tankersley
Over the last year, we’ve seen tremendous growth in both demand and usage for LogStream Cloud. It is exciting to be able to speed up time to value, reduce the total cost of ownership, and deliver LogStream to customers in a way that best fits their organizational needs. We here at Cribl have been working with our cloud customers to better understand how to optimize LogStream Cloud pricing to provide the best possible ROI.
Dec 14, 2021   |  By Ed Bailey
We see unfriendly customer practices all around in the SIEM space. For example, some major SIEM vendors use an Events Per Second (EPS) license model to monetize access to their tools. Typically, these vendors will drop data above the EPS license or stop data ingestion to incentive license compliance if you run over your EPS license. These license controls disrupt operations and risk enterprise security posture, which can cause chaos.
Dec 13, 2021   |  By Igor Gifrin
The recent Apache Log4j vulnerability CVE-2021-44228 dubbed Log4Shell is a big deal. By now there is no shortage of blogs, other write-ups, and analysis about why this vulnerability is an urgent issue and why there is a very good chance it applies to your environment. Here are some of the articles that dive into the gory details on this CVE.
Dec 9, 2021   |  By Desi Gavis-Hughson
If you read my last blog post, you’re already ahead of the game. You know that in May of 2021, the Biden Administration announced Executive Order (EO) 14028: Improving the Nation’s Cybersecurity, which mandates each federal agency to adapt to today’s continuously changing threat environment. Well, folks, the saga continues.
Jan 15, 2022   |  By Cribl
Cloud Data Warehouses (CDW) were designed to support business intelligence use cases focused on historical data analysis, but less so on “what is happening now?” class of queries. We think operational analytics are the next big focus and we want to discuss the space and how enterprises will connect their operational data to these new tools to get results right now instead of next week.
Jan 14, 2022   |  By Cribl

## Follow Cribl

Jan 7, 2022   |  By Cribl
Defining a Path Towards Observability.
Jan 5, 2022   |  By Cribl
Shortly before the December holidays, a vulnerability in the ubiquitous Log4J library arrived like the Grinch, Scrooge, and Krampus rolled into one monstrous bundle of Christmas misery. Log4J maintainers went to work patching the exploit, and security teams scrambled to protect millions of exposed applications before they got owned. At Cribl, we put together multiple resources to help security teams detect and prevent the Log4J vulnerability using LogStream.
Dec 17, 2021   |  By Cribl
Intro to Cribl LogStream Deployment Architectures.
Dec 16, 2021   |  By Cribl
Using LogStream to help with #Log4Shell detection, enrichment, and incident response.
Dec 10, 2021   |  By Cribl
Intro to Cribl LogStream Deployment Architectures.
Dec 2, 2021   |  By Cribl
Using syslog with LogStream.
Nov 23, 2021   |  By Cribl
Using AWS data with LogStream.
Nov 22, 2021   |  By Cribl
Enterprises leveraging Splunk for data ingestion and analytics need an observability solution that scales well with their business requirements and provides a cost-effective way to retain data long-term. Cribl LogStream is an essential part of observability, providing a pipeline that works with all tooling, keeps costs down, and scales with any business – making it the perfect complement to Splunk.
Dec 21, 2021   |  By Cribl
Observability allows you to understand the behavior of applications and infrastructure from the data they produce.
Dec 21, 2021   |  By Cribl
Using Splunk for long-term storage can drive up costs and slow down searches, especially as data volumes increase and teams expand their use cases.
Dec 1, 2021   |  By Cribl
The observability market is changing quickly. Rushing into a monolithic observability product limits your future options by locking you in to a single vendor.
Dec 1, 2021   |  By Cribl
Traditional security tools struggle to adapt to the new world of cyber threats. To keep up with the growing number of daily threats, understaffed security teams need new cloud-delivered solutions and tactics focused on generating attack resolutions, consistently and repeatedly. Enter Exabeam. Exabeam powers security teams with analytics-driven insights to uncover, investigate, and resolve threats legacy tools may miss.

Route observability data where it has the most value. Slash costs, improve performance, and get the right data to the right destinations, in the right formats, at the right time.

Cribl is a company built to solve customer challenges and enable customer choice. Its solutions deliver innovative and customizable controls to route security and machine data where it has the most value. We call this an observability pipeline, and it helps slash costs, improve performance, and get the right data, to the right destinations, in the right formats, at the right time.

LogStream Gives You The Simplicity, Flexibility, and Control...

  • To Route Your Data: Send data to the most effective destinations including low-cost storage locations like S3 for long-term retention. Route data to the best tool for the job – or all the tools for the job – by translating and formatting data into any tooling schema you require. Let different departments choose different analytics environments without having to deploy new agents or forwarders.
  • To Reduce Your Data: Reduce as much as 50% of ingested log volume to control costs and improve system performance. Eliminate duplicate fields, null values, and any elements that provide little analytical value. Filter and screen events for dynamic sampling, or aggregate log data into metrics for massive volume reduction. Do all of this without worry: You can keep a full-fidelity copy in a low-cost destination and replay it back if needed.
  • To Collect More Data: LogStream is the best way to get multiple data formats into your analytics tools. Use the LogStream universal receiver to collect from any observability data source – and even to schedule batch collection from multiple APIs. In addition, recall data from low-cost storage to replay logs to analytics tools for later investigations with ad-hoc data collection.
  • To Shape Your Data: Shape all of the data you need to drive decisions about your environment. Translate and transform data from all of your sources to the tools you choose. Get a more complete picture of your data by enriching logs with third-party data. LogStream collects data from all of your sources and shapes it into actionable logs and metrics for analysis.

Cribl’s mission is to unlock the value of all your observability data, regardless of source or destination.

Download LogStream for free to get started!