Graylog

A log management platform for operations

Graylog focuses on security and compliance, but also log management in modern IT operations and DevOps environments.

Graylog

Simple log management for everyone

All log and event data available at a central location. This will help detect and fix errors and problems faster. The goal is satisfied customers due to fewer failures and downtimes through proactive monitoring of all important parameters.

Connect. Evaluate. Analyze.

U

Analysis

Search your data without knowing all the basic conditions beforehand. Discover more information while analyzing search results. This will make it easy to gather all the information and find the right answers.



Scalability

Horizontal scaling for a workload of any size. From one or two gigabytes to several terabytes per day. Of course, the necessary fault tolerance is already integrated and allows load-distributed and highly available work.



Performance

Search, analyze and visualize immediately all relevant data on one screen. Search and investigate multiple problems simultaneously and quickly and reliably find the needle in a haystack. With the help of parallel data processing, the whole goes in no time.

Features

Always the perfect solution

Due to the fast and central storage of data, Graylog can be used for a variety of scenarios. The focus is on security and compliance, but also on applications in modern IT operations and DevOps environments.



Security

Analyze your data and find problems even faster by being able to examine multiple attack vectors simultaneously. Use the multi-threaded search to quickly edit datasets. Saving the search is not necessary to work on it later.



Archiving

Automatically archive the data that is not often searched and needed. These data are stored on less expensive and slower hard drives and are only made available for search when they are needed. The perfect compromise between performance and economy.



Alarming

In case of failed logon attempts, errors or performance bottlenecks, automated actions can be performed:

E-mail notification and notification in a Slack channel
Start of an additional system for dynamic load distribution
Automatic blocking of IP areas on the firewall

API

Perfect integration thanks to an API

Graylog has a powerful API that allows almost complete control and configuration of the system. From managing and creating streams to user administration.

Creation of Graylog-Stream

POST /streams
{
  "title": "All messages",
  "description": "All messages are routed here",
  "matching_type": "OR"
  "rules": [
    {
      "field": "timestamp",
      "type": 5,
      "value": "1",
      "inverted": false
    }
  ],
  "content_pack": null,
}

Creation of an example user

POST /users
{
  "username": "data",
  "password": "datapassword",
  "email": "data@graylog.com",
  "full_name": "King of Data",
  "permissions": [
    "metrics:read"
  ],
  "timezone": "UTC"
}

Configuration of a role

POST /roles
{
  "name": "Developer",
  "description": "Developer role",
  "permissions": [
    "streams:read",
    "streams:edit:*",
    "streams:create",
    "dashboards:read",
    "dashboards:edit:*",
    "dashboards:create"
  ],
  "read_only": false
}

Graylog Editions

Prepared for all eventualities

Your choice of scalable log management and SIEM solution should let you do more with your security and performance data. Regardless of your company or team size, event and data stack, technologies, and configurations, Graylog has the right option to fit your needs.

Free & Open
Self-Managed

Built to open-source standards, Graylog Open provides the core centralized log management functionality you need to collect, enhance, store, and analyze data.

Indexed Data Pricing
Cloud or Self-Managed

Centralized Log Management for IT Operations and DevOps teams, built on the Graylog platform. Graylog Operations is designed to maximize your systems’ uptime, alert you to issues and outages, enhance productivity, and meet data retention requirements for larger teams and complex situations.

Indexed Data Pricing
Cloud or Self-Managed

Graylog Security delivers on all of the promises of the traditional SIEM without all the complexity, alert fatigue, and high costs. Built on the Graylog platform, Graylog Security reduces the strain on your cybersecurity staff, improves your overall security posture, and reduces risk.

Support is through Graylog’s online resources, community, and other Open groups.

Technical support from Graylog included.

No license key needed, operates under SSPL
Customizable dashboards
Powerful search capabilities
Integrated fault tolerance
Graylog Marketplace access for additional content plug-ins

Graylog Open and Graylog Platform Features
Enterprise-class log management & analysis
Powerful search workflow & filter capabilities
Log data visualization
Customizable alerts & notifications
Intuitive event correlation engine
Out-of-the-box parsing engines and
Operations dashboards
Scheduled reporting

Graylog Open and Graylog Platform Features
Powerful anomaly detection ML/AI and event correlation engine
Built-in security expertise, dashboards, and contextualization
Lightning-fast search for rapid investigations
Customizable alerts & notifications
Intuitive security analytics and data visualization
Integrated threat intel & geo IP feeds and lookups
Proactive threat hunting capabilities
Compliance archiving and reporting

Subscriptions

Graylog Enterprise

Graylog Enterprise is the industry standard for IT Logging & Security and, as a Graylog partner, we offer all subscriptions tailored to your environment.

We would be happy to make you an offer in cooperation with Graylog, just contact us!

Learn more

News

Posts from our Blog

Graylog Operations vs. Security. Und was ist mit Opensearch?

by Daniel Neuberger | Nov 10, 2022 | NETWAYS, Graylog, OpenSearch

Bereits im Juni hatte mein Kollege Christian Stein vom neuen Versions-Model bei Graylog berichtet. Graylog Enterprise ging in Graylog Operations und in Graylog Security auf. Eine damit große verbundene Neuerung war die Unterstützung von Opensearch (ein Fork von...

NETWAYS Webinare – Die nächsten Themen

by Christian Stein | Oct 17, 2022 | Webinare, Graylog, Icinga, Elastic Stack

Wie viele vielleicht wissen führen wir auf unserem YouTube-Kanal eine Vielzahl von Webinaren durch. Diese handeln nicht nur von Icinga, sondern beispielsweise auch Elastic und Graylog. Im Laufe der Zeit sind wir von den einzelnen, getrennten Webinaren zu Serien...

« Older Entries

Webinars

Our Webinars

1

/

35

Webinar: Icinga - Upgrade von IDO zu Icinga DB (Webinar vom 15. März 2023)

Webinar: Klein aber Fein - die AKCP SP1+ (Webinar vom 02. März 2023)

Webinar: Prometheus - Monitoring in der Cloud (Webinar vom 24. November 2022)

1

/

35

Service from the market leader

We are happy to bring you our experience from countless Graylog projects. Whether professional services, training or support for your environment.