Cribl Stream is a vendor-agnostic observability pipeline that gives you the flexibility to collect, reduce, enrich, normalize, and route data from any source to any destination within your existing data infrastructure.
Cribl Edge provides an intelligent, highly scalable edge-based data collection system for logs, metrics, and application data.
Cribl Search turns the traditional search process on its head, allowing users to search data in place without having to collect/store first.
The Cribl.Cloud platform gets you up and running fast without the hassle of running infrastructure.
Cribl.Cloud Solution Brief
The fastest and easiest way to realize the value of an observability ecosystem.
AppScope gives operators the visibility they need into application behavior, metrics and events with no configuration and no agent required.
Explore Cribl’s Solutions by Integrations:
Explore Cribl’s Solutions by Industry:
Try Your Own Cribl Sandbox
Experience a full version of Cribl Stream and Cribl Edge in the cloud.
Get inspired by how our customers are innovating IT, security and observability. They inspire us daily!
Sally Beauty Holdings
Try Your Own Cribl Sandbox
Experience a full version of Cribl Stream and Cribl Edge in the cloud.
Cribl Corporate Overview
Cribl makes open observability a reality, giving you the freedom and flexibility to make choices instead of compromises.
Cribl’s leadership team has built and launched category-defining products for some of the most innovative companies in the technology sector, and is supported by the world’s most elite investors.
Join the Cribl herd! The smartest, funniest, most passionate goats you’ll ever meet.
Want to learn more about Cribl from our sales experts? Send us your contact information and we’ll be in touch.
Case Study
Share:
The team at Accenture Federal Services (AFS) are working on a large scale data project at a major federal agency, and they’re using Cribl Stream to help them deliver the high standard of reliability, speed, and flexibility required by their client to power fast, accurate decision making, reducing Mean Time To Detect (MTTD) and Mean Time To Respond (MTTR).
Gared Seats is a Security Engineer at AFS, with a specialization in Splunk. His deep expertise in Splunk data ingestion is especially crucial to the team’s project. Getting the correct data into Splunk quickly means their client can identify and solve issues of potentially national importance more quickly as well.
As part of the project, the primary federal client is aggregating data feeds from several other agencies across 90 separate sites, including Bro/Zeek, Palo Alto Networks, and InfoBlox traffic as well as a variety of types of custom sensor data. Current traffic levels are at around 5TB a day, and are expected to increase significantly during the project implementation. The team at AFS are using Stream to ensure the quality of the data coming in is clean and formatted as required for the client’s use. Stream’s internal metrics mean they can confirm the fidelity of that data with visibility into the integrity of the content being acquired and processed.
“Our clients require a guarantee of accuracy. We capitalize on Stream’s ability to get the right data in and formatted properly, and have confidence that things aren’t getting dropped at ingest.”
When it’s literally a matter of national security, rapid identification and resolution of issues is of critical importance. Analysts at many federal agencies use Splunk to dig into and clarify potential anomalies, and AFS brings Stream into the mix to ensure those analysts get the best performance possible.
“Analysts were building many searches just to build lookup tables; we had hundreds of searches scheduled just to build out IP lookups. Using Stream makes Splunk more efficient by letting you save your search resources for faster searching instead of having to build metrics to search.”
"There are so many ways to improve the quality of the data coming in: renaming fields, adding fields that are more useful, making fields SIEM-compliant, cleaning out unneeded content, fixing timestamps--you can do it all at the Stream layer, making Splunk more efficient, more affordable and the resulting data more actionable!”
“I can definitely get 100% more done with Stream in the mix. No more having to go to individual systems to figure something out; no more having to talk to vendors to get them to fix their timestamps — we can do it ourselves in Stream. It’s also easy because we run all of our Cribl deployment in our AWS GovCloud environment.”
“I don’t have to worry how people send me data. Stream gives me so much control I don’t need to care about how it comes in. I can just say: “When I get done with this data, it will look like this, it will go into the right index, and the analysts will have what they need to make good decisions, fast.”
Cribl makes open observability a reality for today’s tech professionals. The Cribl product suite defies data gravity with radical levels of choice and control. Wherever the data comes from, wherever it needs to go, Cribl delivers the freedom and flexibility to make choices, not compromises. It’s enterprise software that doesn’t suck, enables tech professionals to do what they need to do, and gives them the ability to say “Yes.” With Cribl, companies have the power to control their data, get more out of existing investments, and shape the observability future. Founded in 2017, Cribl is a remote-first company with an office in San Francisco, CA. For more information, visit www.cribl.io or our LinkedIn, Twitter, or Slack community.