Operations | Monitoring | ITSM | DevOps | Cloud

Using Cribl Search for Anomaly Detection: Finding Statistical Outliers in Host CPU Busy Percentage

Feb 27, 2023 By Cribl In Cribl
In this video, we'll demonstrate how to use Cribl Search for anomaly detection by finding statistical outliers in host CPU usage. By monitoring the "CPU Busy" metric, we can identify unusual spikes that may indicate malware penetration or high load/limiting conditions on customer-facing hosts. The best part? This simple but powerful analytic is easily adaptable to other metrics, making it a versatile tool for any data-driven organization.
View Video
Cribl

Using Cribl Search for Anomaly Detection: Finding Statistical Outliers in Host CPU Busy Percentage

Feb 27, 2023 By David Cavuto In Cribl

In this blog post, we’ll demonstrate how to use Cribl Search for anomaly detection by finding statistical outliers in host CPU usage. By monitoring the “CPU Busy” metric, we can identify unusual spikes that may indicate malware penetration or high load/limiting conditions on customer-facing hosts. The best part? This simple but powerful analytic is easily adaptable to other metrics, making it a versatile tool for any data-driven organization.

Read Post

How the All in One Worker Group Fits Into the Cribl Stream Reference Architecture

Feb 25, 2023 By Cribl In Cribl
Join Ed Bailey and Eugene Katz as they go into more detail about the Cribl Stream Reference Architecture, designed to help observability admins achieve faster and more valuable stream deployment. In this live stream discussion, Ed and Eugene will explain guidelines for deploying all in one worker group. They will also share different use cases and talk about the pros and cons for using the all in one worker group.
View Video

Fixing Security's Data Problem: Strategies and Solutions with Cribl and CDW

Feb 23, 2023 By Cribl In Cribl
Cribl's Ed Bailey and CDW's Brenden Morgenthaler discuss a foundational issue with many security programs that lack the right data to detect issues and make fast decisions. Data drives every facet of security and bad data/incomplete data weakens your overall program. Ed and Brenden will discuss common issues and strategies for solving security's data problem.
View Video
Cribl

Bracing for Impact: Why a Robust Observability Pipeline is Critical for Security Professionals in 2023

Feb 23, 2023 By Felicia Dorng In Cribl

2023 is well underway and now more than ever it’s important to stay ahead of data trends and security concerns that are ever mounting. With the cost of catastrophic cyber attacks estimated to be ten times that of all other disasters combined, businesses need to take proactive measures to implement a security data pipeline to protect their data and comply with security and retention requirements.

Read Post
Cribl

AWS Configuration for the Cribl Pack for SentinelOne Cloud Funnel

Feb 22, 2023 By Jim Apger In Cribl

In the blog titled “Streamline Endpoint Data with Cribl Pack for SentinelOne Cloud Funnel” we dove into the Cloud Funnel data, its relevance in the modern SOC, and how Cribl Stream transforms the data while addressing visibility gaps. We left the AWS-specific details to this blog for those not yet familiar with configuring AWS S3 buckets, SQS Queues, and Identity and Access Management (IAM).

Read Post
Cribl

Streamline Endpoint Data with the Cribl Pack for SentinelOne Cloud Funnel

Feb 21, 2023 By Jim Apger In Cribl

Cribl empowers you to take control of your observability, telemetry, and security data. Wherever your data originates from, wherever your data needs to go, and whatever format your data needs to be in, Cribl gives you the freedom and flexibility to make choices instead of compromises. Addressing visibility gaps by ingesting more data sources as the threat surface continues to expand has been a challenge.

Read Post

Introducing the Cribl Stream Reference Architecture

Feb 18, 2023 By Cribl In Cribl
Join Ed Bailey and Eugene Katz as they unveil the first Cribl Stream Reference Architecture, designed to help observability admins achieve faster and more valuable stream deployment. In this live stream discussion, Ed and Eugene will explain the importance of a quality reference architecture in successful software deployment, and guide viewers on how to begin with the Cribl Stream Reference Architecture by first establishing end-state goals. They will also share different use cases and help viewers identify which parts of the reference architecture are applicable to their specific situation.
View Video

Empowering SecOps Admins: Getting the Most Value from CrowdStrike FDR Data with Cribl Stream

Feb 16, 2023 By Cribl In Cribl
Join Ed Bailey and Sidd Shah as they discuss how Cribl Stream can empower Security Operations Admins to make the most of their CrowdStrike FDR data. During the discussion, Ed and Sidd will address the challenges faced by CrowdStrike customers who generate a vast amount of valuable data each day but struggle to leverage it fully due to complexity and size. They will explain how Cribl Stream can help SecOps admins extract the right data for their SIEM, while moving the rest to their Security Data Lake, enabling them to get the maximum value from their data and be cost-effective at the same time.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.