Living the Stream

System Monitor, better known as Sysmon, is one of my favorite security datasets. The data is crazy detailed and offers a great way to power security detection and response since it gives cyber security teams a roadmap to understand exactly what systems or people are doing while they use any Windows operating systems. The avalanche […]

The second in our Feature Highlights webinar series, Protect the Business with Cribl Packs, highlights Packs and security use cases. Packs enable you to share complex Stream/Edge configurations across multiple Worker Groups/Fleets, between Stream/Edge deployments or with the Cribl Community. Packs roll up best practices to ensure Site Reliability Engineering (SRE) teams have the required […]

In this episode of the Stream Life Podcast, Cribl CEO Clint Sharp and Nick Heudecker begin the show by discussing the recent announcements at Cribl. They then have a detailed discussion about the idea of customer choice, why enterprises get sold the “holy grail” over and over, why interoperability should be at the top of […]

Being a Cribl Pack author, I frequently receive questions related to why I chose to implement a certain functionality inside my Packs the way I did. A few lives ago, I worked for a Fortune 250 oil & gas company where I managed our SIEM environment. We didn’t have much in terms of system resources, […]

We’re introducing AppScope 1.0 with a series of stories that demonstrate how AppScope changes the game for SREs and developers, as well as Infosec, DevSecOps, and ITOps practitioners. This blog is the second of two Infosec stories. For both Part 1 and Part 2, Randy Rinehart, Principal Product Security Engineer at Cribl, contributed extensively. For […]

Our amazing user community is growing so fast that we want to give you more resources to learn and share your knowledge and experience with others. So…today we launch Cribl Curious! Curious is a Q&A site for asking and answering technical questions about Cribl Stream, Cloud, Edge, Packs, and AppScope. Goat a question about how […]

In this episode of the Stream Life Podcast, Rachel “piebob” Perkins and Jacob Wilkins from Cribl talk with xpac’ and Rich Mahlerwein from the Cribl Community about AppScope 1.0, Cribl Edge, and Cribl Stream 3.4 Links Cribl Edge Cribl Edge Sandbox More Choice, Less Compromise: We’re Taking You to the Edge! AppScope AppScope 1.0 If […]

It’s Earth Day, a day dedicated to raising awareness of the climate crisis and bringing about behavioral change to help our planet. If you’re reading this blog post though, you probably spend a lot of your time protecting and supporting a different type of environment. In this blog, we’ll take a look at a few […]

We are excited to announce another first for Cribl – the first community Packs contest! Don’t bogart that knowledge! Packs enable easy sharing of complex Cribl Stream and Edge configurations (i.e, Routes, Pipelines, Sample Data, and Knowledge Objects) across multiple Worker Groups, Fleets, and organizations. It is as easy as adding a specific Pack to […]

ZScaler delivers a suite of well-regarded products for helping IT securely move from network infrastructure to the cloud, using principles of zero trust. According to their website, they have 5,600+ customers and process 200B+ daily transactions. As organizations look to securely migrate to the cloud, they don’t always know what they don’t know, so all […]