Control your Observability, Security and Telemetry Data

Cribl Stream acts as an universal receiver and collector of log and metric data. With Stream, you can retrieve, transform, analyze, and correlate data from any source and send it to any destination or even multiple destinations without the need for additional tools.

Stream can receive push data from sources such as Splunk, HTTP, Elastic Beats, Kinesis, Kafka, TCP JSON and pull data from Kafka, Kinesis Streams, Azure Event Hubs, SQS, S3, Microsoft Office 365 or even external inputs such as weather data, air quality and anything else your organization needs to make better decisions.

Stream data to Splunk, AWS Kinesis Streams, SQS and CloudWatch Logs, Elasticsearch, Honeycomb, TCP JSON, Syslog, Kafka Azure Event Hubs and Monitor Logs, StatsD and StatsD Extended, Graphite, InfluxDB, Wavefront, SignalFx and more, as well as to destinations that support batch or non-streaming output, such as S3-compatible storage, file system/NFS, MinIO, Google Cloud Storage and Azure Blob Storage.

Cribl Stream maximizes the value of observability data by transforming and adding context to data from other sources in real time, increasing the value of your analytics tools.

Collect – Get Data from anywhere to anywhere
Stream is the best way to get multiple data formats into your analytics tools. Use Cribl Stream as your universal receiver to collect from any observability data source – receive data from all your agents and push based sources, schedule batch collection from multiple endpoints and APIs, as well as recall data from low cost storage.

Reduce – Eliminate unnecassary data to control costs
Reduce log volume to control costs and improve system performance. Easily eliminate duplicate fields, null values and any elements that provide little analytical value. Filter and screen events with dynamic sampling or aggregate log data into metrics for massive volume reduction. Reduce without worry: You can keep a full-fidelity copy in a low-cost destination and replay it back if needed.

Shape – Gain actionable insights from your data
Shape all of the data you need to drive decisions about your environment. Translate and transform data from all of your sources to the tools you choose. Get a more complete picture of your data by enriching logs with third-party data. Stream collects data from all of your sources and shapes it into actionable logs and metrics for analysis. Shape data so that it is infinitely usable across all of your observability and security tools.

Route – Direct data where it has the most value
Send the right data to the right destinations like Splunk, Elastic, New Relic, DataDog or offload it to low-cost storage locations like AWS S3 for long-term retention. Route data to the best tool for the job – or all the tools for the job – by translating and formatting data into any tooling schema you need. Let different departments choose different analytics environments without having to deploy new agents or forwarders.

Replay – Save your data for Day X
Not sure if you’ll need a piece of data again? Are you storing everything in expensive analytics tools? Not sure if you really need every event to be indexed and available all the time? Send it to low cost storage and recall as needed for enhancing security, operational outages and service interruptions.

With Cribl Stream, it’s finally possible to send exactly the data your business needs, in the right format, to the optimal place to use it effectively!

With Cribl, you get complete control over all observability data and unprecedented flexibility to use any tool without deploying new agents.

No Agent Overload → prevent loading additional agents
No Data Overload → tame large amounts of data
No Bandwidth Limitations → reduce transmission costs
Long Term Retention → define retention on your terms
Onboarding Unknown Data Sets → Speedy onboarding of new data sources with visual tools