pixel
Select Page

Graylog

A log management platform for operations

Graylog focuses on security and compliance, but also log management in modern IT operations and DevOps environments.

Graylog

Simple log management for everyone

All log and event data available at a central location. This will help detect and fix errors and problems faster. The goal is satisfied customers due to fewer failures and downtimes through proactive monitoring of all important parameters.

Connect. Evaluate. Analyze.

U

Analysis

Search your data without knowing all the basic conditions beforehand. Discover more information while analyzing search results. This will make it easy to gather all the information and find the right answers.

Scalability

Horizontal scaling for a workload of any size. From one or two gigabytes to several terabytes per day. Of course, the necessary fault tolerance is already integrated and allows load-distributed and highly available work.

Performance

Search, analyze and visualize immediately all relevant data on one screen. Search and investigate multiple problems simultaneously and quickly and reliably find the needle in a haystack. With the help of parallel data processing, the whole goes in no time.

Features

Always the perfect solution

Due to the fast and central storage of data, Graylog can be used for a variety of scenarios. The focus is on security and compliance, but also on applications in modern IT operations and DevOps environments.

Security

Analyze your data and find problems even faster by being able to examine multiple attack vectors simultaneously. Use the multi-threaded search to quickly edit datasets. Saving the search is not necessary to work on it later.

Archiving

Automatically archive the data that is not often searched and needed. These data are stored on less expensive and slower hard drives and are only made available for search when they are needed. The perfect compromise between performance and economy.

Alarming

In case of failed logon attempts, errors or performance bottlenecks, automated actions can be performed:

  • E-mail notification and notification in a Slack channel
  • Start of an additional system for dynamic load distribution
  • Automatic blocking of IP areas on the firewall

API

Perfect integration thanks to an API

Graylog has a powerful API that allows almost complete control and configuration of the system. From managing and creating streams to user administration.

Creation of Graylog-Stream

POST /streams
{
  "title": "All messages",
  "description": "All messages are routed here",
  "matching_type": "OR"
  "rules": [
    {
      "field": "timestamp",
      "type": 5,
      "value": "1",
      "inverted": false
    }
  ],
  "content_pack": null,
}

Creation of an example user

POST /users
{
  "username": "data",
  "password": "datapassword",
  "email": "data@graylog.com",
  "full_name": "King of Data",
  "permissions": [
    "metrics:read"
  ],
  "timezone": "UTC"
}

Configuration of a role

POST /roles
{
  "name": "Developer",
  "description": "Developer role",
  "permissions": [
    "streams:read",
    "streams:edit:*",
    "streams:create",
    "dashboards:read",
    "dashboards:edit:*",
    "dashboards:create"
  ],
  "read_only": false
}

Graylog Editions

Prepared for all eventualities

Your choice of scalable log management and SIEM solution should let you do more with your security and performance data. Regardless of your company or team size, event and data stack, technologies, and configurations, Graylog has the right option to fit your needs.

Free & Open
Self-Managed

Built to open-source standards, Graylog Open provides the core centralized log management functionality you need to collect, enhance, store, and analyze data.

Indexed Data Pricing
Cloud or Self-Managed

Centralized Log Management for IT Operations and DevOps teams, built on the Graylog platform. Graylog Operations is designed to maximize your systems’ uptime, alert you to issues and outages, enhance productivity, and meet data retention requirements for larger teams and complex situations.

Indexed Data Pricing
Cloud or Self-Managed

Graylog Security delivers on all of the promises of the traditional SIEM without all the complexity, alert fatigue, and high costs. Built on the Graylog platform, Graylog Security reduces the strain on your cybersecurity staff, improves your overall security posture, and reduces risk.

Support is through Graylog’s online resources, community, and other Open groups.

Technical support from Graylog included.

Technical support from Graylog included.

  • No license key needed, operates under SSPL
  • Customizable dashboards
  • Powerful search capabilities
  • Integrated fault tolerance
  • Graylog Marketplace access for additional content plug-ins
  • Graylog Open and Graylog Platform Features
  • Enterprise-class log management & analysis
  • Powerful search workflow & filter capabilities
  • Log data visualization
  • Customizable alerts & notifications
  • Intuitive event correlation engine
  • Out-of-the-box parsing engines and
  • Operations dashboards
  • Scheduled reporting
  • Graylog Open and Graylog Platform Features
  • Powerful anomaly detection ML/AI and event correlation engine
  • Built-in security expertise, dashboards, and contextualization
  • Lightning-fast search for rapid investigations
  • Customizable alerts & notifications
  • Intuitive security analytics and data visualization
  • Integrated threat intel & geo IP feeds and lookups
  • Proactive threat hunting capabilities
  • Compliance archiving and reporting

Service from the market leader

We are happy to bring you our experience from countless Graylog projects. Whether professional services, training or support for your environment.

News

Posts from our Blog

Webinars

Our Webinars