Cribl puts your IT and Security data at the center of your data management strategy and provides a one-stop shop for analyzing, collecting, processing, and routing it all at any scale. Try the Cribl suite of products and start building your data engine today!
Learn more ›Evolving demands placed on IT and Security teams are driving a new architecture for how observability data is captured, curated, and queried. This new architecture provides flexibility and control while managing the costs of increasing data volumes.
Read white paper ›Cribl Stream is a vendor-agnostic observability pipeline that gives you the flexibility to collect, reduce, enrich, normalize, and route data from any source to any destination within your existing data infrastructure.
Learn more ›Cribl Edge provides an intelligent, highly scalable edge-based data collection system for logs, metrics, and application data.
Learn more ›Cribl Search turns the traditional search process on its head, allowing users to search data in place without having to collect/store first.
Learn more ›Cribl Lake is a turnkey data lake solution that takes just minutes to get up and running — no data expertise needed. Leverage open formats, unified security with rich access controls, and central access to all IT and security data.
Learn more ›The Cribl.Cloud platform gets you up and running fast without the hassle of running infrastructure.
Learn more ›Cribl.Cloud Solution Brief
The fastest and easiest way to realize the value of an observability ecosystem.
Read Solution Brief ›Cribl Copilot gets your deployments up and running in minutes, not weeks or months.
Learn more ›AppScope gives operators the visibility they need into application behavior, metrics and events with no configuration and no agent required.
Learn more ›Explore Cribl’s Solutions by Use Cases:
Explore Cribl’s Solutions by Integrations:
Explore Cribl’s Solutions by Industry:
July 31 | 10am PT / 1pm ET
Navigating the Data Current Report: Transforming IT & Security Operations in 2024
Register ›Try Your Own Cribl Sandbox
Experience a full version of Cribl Stream and Cribl Edge in the cloud.
Launch Now ›Get inspired by how our customers are innovating IT, security and observability. They inspire us daily!
Read Customer Stories ›Sally Beauty Holdings
Sally Beauty Swaps LogStash and Syslog-ng with Cribl.Cloud for a Resilient Security and Observability Pipeline
Read Case Study ›Experience a full version of Cribl Stream and Cribl Edge in the cloud.
Launch Now ›Transform data management with Cribl, the Data Engine for IT and Security
Learn More ›Cribl Corporate Overview
Cribl makes open observability a reality, giving you the freedom and flexibility to make choices instead of compromises.
Get the Guide ›Stay up to date on all things Cribl and observability.
Visit the Newsroom ›Cribl’s leadership team has built and launched category-defining products for some of the most innovative companies in the technology sector, and is supported by the world’s most elite investors.
Meet our Leaders ›Join the Cribl herd! The smartest, funniest, most passionate goats you’ll ever meet.
Learn More ›Whether you’re just getting started or scaling up, the Cribl for Startups program gives you the tools and resources your company needs to be successful at every stage.
Learn More ›Want to learn more about Cribl from our sales experts? Send us your contact information and we’ll be in touch.
Talk to an Expert ›Enterprises are accumulating more and more observability and security data in isolated silos, not much different than the dust and spare change under couches and chairs in your grandparent’s rarely-used living room. There is something of value in both examples, but the nature of the value is very unclear and hard to measure without a lot of effort.
As I mentioned in my previous post regarding enterprise data silos, companies are collecting massive amounts of data at various disconnected locations. Popular silos are Elastic, Splunk, cloud object stores, and cheap file systems like NFS and EFS. Enterprises are breaking up their data primarily due to cost constraints imposed by conventional centralized logging models that have been pervasive for many years.
Traditional logging platforms, such as Elastic and Splunk, evolved over the last 10-15 years to consolidate all required data in one place to power analytics to support operations and security use cases. This model worked well for years until the crush data became too much and the costs of moving, storing and searching all this data became unsustainable. Enterprises tried to manage costs and complexity by:
All of these choices create data silos that allow blind spots in coverage and limit how much value enterprises can get from data. Enterprises need help to bridge data silos and unlock the value from all of its observability and security data.
The big question is how you get value from your data with it spread out everywhere. You are looking for spare change under the proverbial couch cushions and hoping amid the dust and lint to find the 5 bucks you need to buy a Popeye’s fried chicken sandwich for lunch. The enterprise search for data can be just as random. A common example:
Request: Business leaders want to know usage stats for every corporate website both internal and customer-facing for the past year.
Challenge: The relevant data is split between Splunk for customer facing sites, Elastic for internal sites and only at most 90 days of data is online. The rest of the data is on tape and in various cloud object stores. What is the best way to generate the requested report with the least effort?
Plan: Here is how I would address this request using only tools we have mentioned:
This is an incredibly common use case and also common to wait 28-45 business days for results.
Pulling the data from closed silos like enterprise tape arrays, and finding data that has been shelved to potentially dozens of object stores, is incredibly time-consuming. Each silo is a separate team with separate access and a separate ticket. Then you have to hunt through the backups looking for the right data.
Next, engage the Elastic and Splunk admins to restore the data to temp data stores. This can be a tricky process and takes some skill to get done without issues. Finally, engage the experts to run reports. This can be an obstacle since each analyst has to know the relevant tool language and know it well enough to produce high-quality reports.
This example only has 2 search languages to master, but it is more than common to use more. For example, many enterprises also use Amazon Athena to query S3 data stores. Athena uses SQL as its query language so it can bring even more complexity to the party of Elastic and Splunk query languages. SQL can mean more than just ‘Simple Query Language’.
Finally, this is way too long to get an answer for what should be a common report. Leaders can no longer wait on reporting to help drive business decisions. The underlying data needs to be available for reporting and not locked into dozens of disconnected silos.
What every enterprise needs is the ability to bridge data silos, ask complex questions, and get answers to the above use cases and much more.
This is why I am so excited about Cribl Search. It offers 2 massive value opportunities.
First, bridging silos to unlock value from all enterprise observability and security data. Enterprises can achieve faster analytics with less effort because Cribl Search offers a common query language across multiple tools and silos. You don’t have to know Elastic, SQL, and Splunk query languages to get value across your data stores. This is everything! So many enterprises will find value in unexpected ways since they never had this capability before Cribl Search.
Second, Cribl Search does not require you to stop using your existing tools. Cribl Search will sit atop your existing tools and data to provide even more value. You will add new powerful capabilities without dealing with displacement cost issues that come up with other search tools.
Cribl Search enables enterprises to unlock value from all of its observability and security data, with a common query language and rich analytics, by bridging data silos with a rich user experience. It also works with the tools you already have, so you do not have to stop using the tools you already have to get value from Cribl Search. You can get value from Day 1 instead of Month 12.
Try Cribl’s free, hosted Sandbox. I’d love to hear your feedback; after you run through the sandbox, connect with me on LinkedIn, or join our community Slack and let’s talk about your experience!
Experience a full version of Cribl Stream and Cribl Edge in the cloud with pre-made sources and destinations.
Classic choice. Sadly, our website is designed for all modern supported browsers like Edge, Chrome, Firefox, and Safari
Got one of those handy?