Can you believe we’re already halfway through 2023? Time flies when you’re busy innovating and having fun (yet somehow also seems so slow when you are waiting for your next vacation!!). At Cribl, we’ve been hard at work releasing wave after wave of incredible new features and capabilities across our entire product suite. And it’s a top priority of ours to make sure all our customers are well-informed about these enhancements so they can fully embrace the ultimate goal: unlocking the value of all observability data.
Here’s a concise recap and rundown of some recent features for each product, along with convenient links to help you get started quickly:
Pipeline Profiling: Finds issues immediately with granular function-level stats. See how a pipeline will perform BEFORE it’s in production. Learn more.
Persistent Queues: We’ve added throttles to ensure destinations are not overwhelmed by the data once it’s able to receive data. No data loss here! Learn more.
Database Collector: Pull events from SQL Server, MySQL, and PostGres with minimal effort. Now get rid of those custom pipelines and legacy tools to collect data from relational databases. Learn more.
OTel Enhancements: Receive trace and metric events from OTLP-compliant senders. Stream can handle your newest observability data — OpenTelemetry — supporting both gRPC/protobuf and HTTP transports to ensure we work with the widest array of observability vendors in the market: Splunk Observability Cloud, Sumo Logic, Honeycomb, and more. See Source and Destination docs for OTel.
Integrations: Tons of exciting new integrations:
LIVIN’ LIFE ON THE EDGE: We’re pushing the limits on what’s possible with your data. Cribl Edge can discover data anywhere. It’s intelligent, it’s scalable, and it collects edge-based data for K8s, Linux/Unix, and Windows.
Scalability Enhancement: Nodes on nodes on nodes. You can now deploy Edge on tens of thousands of nodes. Bring in more edge data, at scale, with less management. Learn more.
Fleet Management: Mo’ nodes mo’ problems? Not anymore. Centralized configuration of Edge nodes makes managing a lotta nodes a lot less cumbersome. Learn more.
New Sources! Observe more by collecting observability data from systemd, journal, and containerd sources. The more you observe, the more you know. The more you know, the better your apps perform. The better your apps perform, the happier your users are. Learn more.
SEARCH SEARCH BABY! We launched our new Search product in November and it is the first-ever federated search-in-place query tool supporting all three major public Cloud vendors. The best part? No need to collect and move data to storage before performing searches.
Search for data at the edge, en route, or stored in Amazon S3, Microsoft Azure Blobs, and Google Cloud Storage (GCS). With Cribl Search, you can:
Bidirectional Data Sharing with Stream: A new Stream destination Data Lakes > Amazon S3 has been added to stage data for Cribl Search and serve as an automatic data format service. Point Cribl Search to a dataset and it automagically discovers the types of data, applies parsing and obfuscation, and generates new fields on the fly. Search can also utilize its flexible routing and filtering to “search and forward” results to any supported SIEM or available Stream destination. Learn more.
Scheduled Searches: Searches can be executed on a scheduled basis, permitting analytics to be performed in the background without user intervention. Results will then be available instantly when desired, or automatically sent to a Stream destination as desired. Learn more.
API Searches: Run Cribl Search against 3rd-party REST APIs, and create new types of datasets to perform live searches against these API endpoints. This permits real-time data fusion from SaaS providers such as Okta, Zoom, AWS, Microsoft, and other sources. Learn more.
Lookups: Enrich your analysis with Lookups — CSV data tables that make it easy to add external data to your analysis for greater insights. And new dataset providers like Azure Blob Storage. Easily connect and retrieve the data you need for analysis. Learn more.
Cribl Search is available on Cribl.Cloud — try it today!
Multiple Worker Groups: You can now effortlessly add, resize, and decommission Groups of Cribl-managed Workers to cater to whatever dynamic data demands your org has. This is the fastest and easiest way to grow and resize your Stream deployment on your terms. Learn more and understand how Cribl’s new cloud pricing works.
Federated Authentication: Got your own trusted IdP provider? Now Cribl.Cloud integrates with it! Enjoy enhanced security, centralized user and access management, and a smooth sign-on experience. Win, win, win. Learn more.
Persistent Queues: Ensure event retention using data stores on Cribl-managed Workers’ Sources and Destinations. Each Worker Process is allocated 1 GB of disk storage per Source-Destination pair, providing data durability during outages and forwarding the queued data upon recovery. Learn more.
Stream Projects! Securely access data through a self-service model, freeing up admin time. Stream Projects will enable teams to work together to democratize observability across your organization. This is a big deal and we cannot wait to roll this out. Learn more
Cribl’s Summer Launch will showcase an array of new capabilities that enable teams and multiple users to work together across Cribl’s entire portfolio through enhanced security and access control. Save the date! Wednesday, July 19 @ 10AM PT / 1PM ET, register for the webinar.
Lastly, we just released The Very Observable Pipeline, perfect for story time with your kids – check it out!
I hope you found this recap helpful and that it enticed you to try some of these new features! If you have any questions, don’t hesitate to reach out to your account rep or to email@example.com. Check back in for a year-end recap, promise we’ve got something fun in store to close out this epic year at Cribl!
Cribl, the Data Engine for IT and Security, empowers organizations to transform their data strategy. Customers use Cribl’s suite of products to collect, process, route, and analyze all IT and security data, delivering the flexibility, choice, and control required to adapt to their ever-changing needs.
We offer free training, certifications, and a generous free usage plan across our products. Our community Slack features Cribl engineers, partners, and customers who can answer your questions as you get started. We also offer a hands-on Sandbox for those interested in how companies globally leverage our products for their data challenges.