Page 3 of 9
Correlate outage data, and automate incident response
Destination
BigPanda helps organizations prevent and resolve IT outages through event correlation and automation.
This integration is facilitated through the Cribl Stream Webhook Destination.
In BigPanda, create a Cribl integration (follow the in-app instructions).
Obtain a corresponding App Key and Access Token.
Configure Cribl Stream to send data to BigPanda via Destinations>Webhook.
Build the webhook with your BigPanda endpoint, data format, and Access Token from BigPanda.
Set the method to POST.
Test sending an alert payload to BigPanda, using your App Key.
Cribl Stream will start sending data to the BigPanda endpoint as it becomes available.
Enforce security and block malicious activity from the cloud
Source
Cisco Umbrella is a cloud-delivered network security layer that provides enterprise users with a first line of defense against cybersecurity threats.
This integration is facilitated through the Cribl Stream S3 Source.
Send Cisco Umbrella logs to an AWS S3 bucket.
Configure Stream to read data from S3 via Sources > Amazon S3.
Supply your SQS queue. IAM roles or manual keys are both supported.
Stream will start fetching data as SQS messages become available.
Ingest Claude Enterprise activity to normalize, enrich, mask, and route data into security, compliance, and analytics tools.
Source
The Claude Compliance API lets you ingest audit activity from Claude Enterprise and Claude Platform into Cribl Stream over HTTPS as a first‑class telemetry stream. It pulls user activities including authentication, chat interactions, file uploads, and administrative actions so you can normalize, enrich, mask, and route that data alongside the rest of your pipelines.
Benefits:
Extend existing security and audit workflows to Claude Enterprise.
Shape and govern Claude activity data before it leaves your boundary.
Route one Claude integration to many downstream tools without custom glue code.
Maintain an auditable record for regulated and high-sensitivity workloads.
This is a built-in integration between Cribl Stream and Claude Compliance API
Select the Integration: Select the Anthropic Compliance tile in the Source catalog within Cribl Stream.
Configure API Key Credentials: Set up a new source tile by naming it and inserting your Anthropic API Key.
Set the API Endpoint: Ensure the Endpoint Name field is set to Compliance Activities to pull data from the appropriate compliance activities endpoint.
Troubleshoot and secure your applications by logging events and requests
Source
Cloudflare is one of the world’s largest networks providing businesses, non-profits, bloggers, and anyone with an Internet presence faster, more secure websites and apps. Cloudflare logs include firewall events, HTTP requests and Cloudflare Spectrum events. These logs are helpful for troubleshooting and securing your applications.
This integration is facilitated through the Cribl Stream S3 Source.
Push Cloudflare logs to an AWS S3 bucket.
Configure Stream to read data from S3 via Sources > Amazon S3.
Supply your SQS queue. IAM roles or manual keys are both supported.
Stream will start fetching data as SQS messages become available.
Fully managed Kafka service and enterprise stream processing platform
Destination
Confluent is a fully managed Kafka service and enterprise stream processing platform. It offers real-time data streaming via AWS, Google Cloud, Azure, or serverless infrastructure.
Kafka as Destination and Stream as a source
Configure Stream to send data to Kafka via Destinations > Kafka.
Specify the Kafka brokers and topic to write to, along with other settings (record data format, compression, and backpressure behavior, and optional TLS and SASL authentication parameters).
Enable the Confluent Schema Registry, and specify its URL and optional schema ID, and TLS parameters.
Stream will start sending data as it becomes available.
Fully managed Kafka service and enterprise stream processing platform
Source
Confluent is a fully managed Kafka service and enterprise stream processing platform. It offers real-time data streaming via AWS, Google Cloud, Azure, or serverless infrastructure.
This integration is facilitated through Cribl Stream’s Kafka Source and Destination.
Kafka as Source and Stream as a destination
Configure Kafka brokers and topics via Confluent Platform or Confluent Cloud.
Configure Stream to read data from Kafka via Sources > Kafka.
Specify the Kafka brokers, topics, and optional settings (TLS and SASL authentication parameters).
Enable the Confluent Schema Registry, and specify its URL and optional TLS parameters.
Stream will start fetching data as KDS streams become available.
Kafka as Destination and Stream as a source
Configure Stream to send data to Kafka via Destinations > Kafka.
Specify the Kafka brokers and topic to write to, along with other settings (record data format, compression and backpressure behavior, and optional TLS and SASL authentication parameters).
Enable the Confluent Schema Registry, and specify its URL and optional schema ID and TLS parameters.
Stream will start sending data as it becomes available.
Fully managed Kafka data streaming service
Destination
Confluent Cloud is a scalable, streaming data service based on Apache Kafka, delivered as a fully managed service You can create and manage Kafka topics, cluster resources, settings, and billing.
This is a built-in integration between Cribl Stream and Confluent Cloud senders and receivers.
Confluent Cloud as Destination and Stream as a source
Configure Stream to send data to your Kafka topics via Destinations > Confluent Cloud.
Specify the brokers, topic, backpressure behavior, optional TLS and authentication settings, and optional parameters.
Stream will start sending data to the OTel targets as it becomes available.
Fully managed Kafka data streaming service
Source
Confluent Cloud is a scalable, streaming data service based on Apache Kafka, delivered as a fully managed service You can create and manage Kafka topics, cluster resources, settings, and billing.
This is a built-in integration between Cribl Stream and Confluent Cloud senders and receivers.
Confluent Cloud as Source and Stream as a destination
Configure Stream to ingest Kafka topics via Sources > Confluent Cloud.
Specify the brokers, topics, optional authentication, and TLS settings, and optional parameters.
Stream will start fetching data as it becomes available.
Cloud-native cybersecurity platform to stop breaches and secure businesses
Source
CrowdStrike’s Falcon platform provides endpoint and workload protection, threat intelligence, and cyberattack response services. Assemble your choice of modules, each implemented via one endpoint agent and a cloud-based management console.
This is a built-in integration between Cribl Stream and Crowdstrike Falcon.
Configure Crowdstrike Falcon to queue notifications to Stream.
Configure Stream to ingest notifications via Sources > Crowdstrike.
Specify the queue, region, filter expression, authentication and ARN credentials, Event Breakers, and optional parameters
Stream will fetch data as it becomes available.
Collaborate on data science and analytics
Destination
Databricks provides a unified data analytics platform for data engineering and collaborative data science.
This integration is facilitated through the Cribl Stream S3 or Azure Blob Storage Destination.
Sending to S3
Configure Stream to send data to S3 via Destinations > Amazon S3.
Supply your configuration settings. IAM roles and keys are both supported.
Stream will start sending data to S3 for Databricks to read.
Sending to Azure Blob Storage
Configure Stream via Destinations > Azure Blob Storage.
Supply your configuration settings.
Stream will start sending data to Blob Storage for Databricks to read.
Collaborate on data science and analytics
Destination
Databricks provides a unified data analytics platform for data engineering and collaborative data science.
This integration is facilitated through the Cribl Stream S3 or Azure Blob Storage Destination.
Sending to S3
Configure Stream to send data to S3 via Destinations > Amazon S3.
Supply your configuration settings. IAM roles and keys are both supported.
Stream will start sending data to S3 for Databricks to read.
Sending to Azure Blob Storage
Configure Stream via Destinations > Azure Blob Storage.
Supply your configuration settings.
Stream will start sending data to Blob Storage for Databricks to read.
Monitor and secure cloud-based resources with SaaS-based data analytics
Destination
Datadog is a monitoring service for cloud-based applications, servers, databases, tools, and services, through a SaaS-based data analytics platform.
This integration is facilitated through the Cribl Stream Datadog Destination.
Configure Stream to send to Datadog via Destinations > Datadog.
Sending of both logs and metrics is supported.
Supply your configuration settings and keys.
Stream will start sending data as it becomes available.