Try our new research platform with insights from 80,000+ expert users

Cribl vs syslog-ng comparison

Cribl and One Identity are both solutions in the Log Management category. Cribl is ranked #19 with an average rating of 8.0, while One Identity is ranked #16 with an average rating of 8.6. Cribl holds a 0.7% mindshare in LM, compared to One Identity’s 3.0% mindshare. Additionally, 90% of Cribl users are willing to recommend the solution, compared to 100% of One Identity users who would recommend it.
Cribl
Read 9 Cribl reviews
  • 680 Views
  • 561 Comparison Views
90% willing to recommend
syslog-ng
Read 5 syslog-ng reviews
  • 4,474 Views
  • 3,538 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jul 24, 2024

Syslog-ng and Cribl Stream are competing products aimed at log management and data processing tasks. Users are happier with the pricing and support of syslog-ng, but Cribl Stream is seen as a superior product due to its advanced features and user reviews indicate it is worth the price.

  • Features: Syslog-ng users value its efficient log processing, extensive protocol support, and flexibility in configuration. Cribl Stream users highlight its powerful data parsing capabilities, extensive integrations, and user-friendly setup. The main difference is that Cribl Stream’s features cater better to complex data environments with its advanced filtering options, whereas syslog-ng excels in straightforward log management tasks.
  • Room For Improvement: Syslog-ng improvements suggested by users include a more intuitive configuration process and better performance metrics reporting. For Cribl Stream, users suggest reducing the complexity of initial setup and providing more comprehensive documentation. Syslog-ng requires attention in simplifying user experience, while Cribl Stream needs to refine its onboarding process.
  • Ease of Deployment and Customer Service: Users find syslog-ng relatively easy to deploy due to its minimal configuration requirements and commend its responsive customer service. Cribl Stream deployment is reported as more challenging due to its extensive setup parameters, but users note that its customer support is excellent once deployment hurdles are addressed. Syslog-ng wins in initial deployment ease, while Cribl Stream excels in post-deployment support.
  • Pricing and ROI: Syslog-ng is appreciated for its lower setup costs and satisfactory return on investment due to predictable pricing models. Cribl Stream has higher setup costs but users feel justified by the extensive features and better long-term ROI. The key difference is syslog-ng’s affordability, whereas Cribl Stream offers a more feature-rich solution with a higher cost.
DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cribl vs. syslog-ng Report (Updated: October 2024).
Buyer's Guide
Cribl vs. syslog-ng
October 2024
Download the complete report
Helped 813,418 peers since 2012
 

Categories and Ranking

Cribl
Ranking in Log Management
19th
Average Rating
8.2
Reviews Sentiment
8.0
Number of Reviews
9
Ranking in other categories
Application Performance Monitoring (APM) and Observability (24th), Data Integration (26th), Cloud Data Integration (15th), Data Preparation Tools (4th)
syslog-ng
Ranking in Log Management
16th
Average Rating
8.6
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of October 2024, in the Log Management category, the mindshare of Cribl is 0.7%, up from 0.0% compared to the previous year. The mindshare of syslog-ng is 3.0%, up from 2.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Hariram G - PeerSpot reviewer
Aug 27, 2024
Collects logs from various cloud sources with reduced costs and improved efficiency
Cribl has simplified many aspects of the onboarding process, but there's still room for improvement. Currently, no other tools in the market truly compete with Cribl in its niche. Splunk is trying to retain customers by developing ingest actions to reduce licensing costs, hoping to prevent them from switching to Cribl. There is no alerting mechanism for the leader/worker nodes status. Since Cribl plays a major role in the mid-layer between the source and destination, there's a slight risk of losing data at some points while receiving real time data. It would be helpful if Cribl could temporarily store or index the data for a specific time range. This would prevent data loss during downtime. Additionally, there's room for improvement in how Cribl handles historical data. Currently, I can't view trends beyond a week, and even then, it’s often limited to just 24 hours. Since Cribl doesn’t index the data but only forwards it, extending the period for viewing statistics and monitoring trends would be a valuable enhancement.
Read full review
FlavioSantos - PeerSpot reviewer
Aug 30, 2023
Easy to set up and very stable performance
We use it for compliance issues, like law enforcement for the Brazilian government For us, the most valuable feature is the use of compound search for searching logs at a specific time, by a specific user, or specific behavior. There is room for improvement in terms of observability.…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The platform's most valuable feature is the ability to transform data in real-time within the pipeline without sending it to a destination."
"The product's most valuable features include the internal management of events, coding perspective, data processing, and serialization."
"The capability to reduce logs in a user-friendly manner is a standout feature. Cribl allows us to view logs live as they are being processed, giving us quick feedback on the changes made."
"The support team was very helpful and managed to get everything production-ready."
"Cribl offers other valuable features. For instance, you can replay data from an edge device, store your daily data in a stream, and replay specific event data into Splunk if a security incident occurs"
"Cribl offers easy plugin configurations and source collection settings, allowing us to collect logs from any source."
"Features such as Cribl Stream, Cribl LogStream, and Cribl Edge have been the most beneficial. The Cribl LogStream, in particular, is valuable for routing data, creating firewalls on pipelines, and putting security measures in place to ensure data reaches its destination without issues."
"When it comes to the product's installation phase, it is not tough for people who have good knowledge...The tool is worth the investment."
"Syslog-ng has built-in features that we can use to create alerts for a SIEM solution. It isn't a true SIEM solution, but it's sufficient for the time being."
"Syslog-ng has a separate config file in addition to the core configuration."
"For us, the most valuable feature is the use of compound search for searching logs at a specific time, by a specific user, or specific behavior."
"The ability to extract and store the logs is the most valuable feature of syslog-ng."
"Syslog-ng provides easy access to all my logs. It helps me show managers and other clients precisely where an incident occurred. I also like it because you can integrate syslog-ng with multiple solutions to allow real-time monitoring."
 

Cons

"There have been several administrative issues. Another point is that the browsing functions aren't very intuitive."
"There is room for improvement in the documentation and knowledge base, particularly regarding configurations like sources where logs are being ingested"
"Cribl could have developed some version that can give backward compatibility."
"Cribl doesn't have as many packs available"
"There is no alerting mechanism for the leader/worker nodes status."
"The sys logging could be enhanced to make it easier to identify errors, especially when dealing with multiple functions."
"Cribl should consider adding more features that are applicable to smaller firms, allowing broader access to their data migration through Cribl."
"Cribl could improve by offering easier integrations with enterprise products, similar to what Splunk provides."
"There is always the potential for additional integration and protocol extensions."
"Syslog-ng has built-in features that we can use to create alerts for a SIEM solution. It isn't a true SIEM solution, but it's sufficient for the time being."
"The filtering has room for improvement."
"It's hard to find people who know how to use syslog-ng. I often find problems with configurations, and solutions aren't integrated correctly with syslog-ng. For example, there might be data with extra decimals, or the collector agents are incorrectly named. It isn't a problem with the solution; it's a lack of professionals."
"There is room for improvement in terms of observability."
 

Pricing and Cost Advice

"The product pricing is reasonable compared to other solutions."
"I would not say it is a cheaply priced tool as it has been doing wonders in the market. The tool has been budget-friendly for organizations."
"Syslog-ng is open-source."
"Syslog-ng is a free open-source solution."
report
See which vendors are best for you
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
See recommendations
813,418 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
19%
Computer Software Company
12%
Healthcare Company
9%
Government
9%
Government
14%
Computer Software Company
13%
Financial Services Firm
8%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Cribl?
I would not say it is a cheaply priced tool as it has been doing wonders in the market. The tool has been budget-friendly for organizations. It would be good if people get into that data analytics ...
See all answers
What needs improvement with Cribl?
The documentation part could be better. Their documentation could be updated, as new features often outdated existing information. Additionally, there are inconsistencies between the documentation ...
See all answers
What is your primary use case for Cribl?
We use Cribl for data normalization, which involves standardizing data from various sources before sending it to a SIEM. This helps reduce costs associated with SIEM ingestion. Additionally, we use...
See all answers
What do you like most about syslog-ng?
For us, the most valuable feature is the use of compound search for searching logs at a specific time, by a specific user, or specific behavior.
See all answers
What is your experience regarding pricing and costs for syslog-ng?
The pricing is in the middle. I would rate the pricing a six out of ten, with one being expensive and ten being cheap.
See all answers
What needs improvement with syslog-ng?
There is room for improvement in terms of observability. Additionally, a possible new feature could be Kafka integration.
See all answers
 

Comparisons

Logstash vs Cribl Logo
Logstash vs Cribl
Compared 17% of the time
Elastic Stack vs Cribl Logo
Elastic Stack vs Cribl
Compared 14% of the time
Splunk Synthetic Monitoring vs Cribl Logo
Splunk Synthetic Monitoring vs Cribl
Compared 7% of the time
Wazuh vs Cribl Logo
Wazuh vs Cribl
Compared 6% of the time
Grafana Loki vs Cribl Logo
Grafana Loki vs Cribl
Compared 6% of the time
More Cribl Competitors
SolarWinds Kiwi Syslog Server vs syslog-ng Logo
SolarWinds Kiwi Syslog Server vs syslog-ng
Compared 36% of the time
Graylog vs syslog-ng Logo
Graylog vs syslog-ng
Compared 21% of the time
Grafana Loki vs syslog-ng Logo
Grafana Loki vs syslog-ng
Compared 16% of the time
Logstash vs syslog-ng Logo
Logstash vs syslog-ng
Compared 4% of the time
Nagios Log Server vs syslog-ng Logo
Nagios Log Server vs syslog-ng
Compared 2% of the time
More syslog-ng Competitors
 

Product Reports

Buyer's Guide
Cribl
October 2024
Cribl reportDownload Cribl product report
Buyer's Guide
Log Management
September 2024
syslog-ng reportDownload syslog-ng product report
 

Learn More

Cribl
One Identity
 

Overview

Cribl optimizes log collection, data processing, and migration to Splunk Cloud, ensuring efficient data ingestion and management for improved operational efficiency.

Cribl offers seamless log collection directly from cloud sources, allowing users to visually extract necessary data and replay specific events for in-depth analysis. It provides robust management of events, parsing, and enrichment of data, along with effective log size reduction. Cribl is particularly beneficial for migrating enterprise logs, optimizing usage, and reducing costs while streamlining the transition between different log management tools.

What are Cribl's most important features?
  • Real-Time Data Transformation: Enables immediate data processing for accurate insights.
  • Simplified Log Collection: Gathers data from diverse sources effortlessly.
  • Powerful Data Reduction: Reduces log size without losing critical information.
  • Inbuilt Packs: Ready-to-use functions simplify complex tasks.
  • Live Testing: Allows testing before production deployment for reliability.
  • Master Node Updates: Manages worker groups efficiently for consistent performance.
  • Advanced Data Processing: Offers robust data serialization and coding perspectives.
  • Easy Plugin Configurations: Facilitates direct integration with reduced setup time.
What benefits and ROI should users look for?
  • Optimized Usage: Ensures effective resource management and cost reduction.
  • Streamlined Migration: Simplifies the transition between log management tools.
  • Enhanced Data Management: Improves data quality and processing efficiency.
  • Reduced Time and Effort: Direct-to-production capabilities save operational time.

Cribl is widely implemented in industries requiring extensive data management, such as technology and finance. Users leverage Cribl to handle log collection, processing, and migration efficiently, ensuring smooth operation and effective data analysis. It aids in managing temporary data storage during downtimes and better handling historical data, preventing data loss and allowing extended periods for viewing statistics and monitoring trends.

Optimizing SIEM
syslog-ng is the log management solution that improves the performance of your SIEM solution by reducing the amount and improving the quality of data feeding your SIEM.

Rapid search and troubleshooting
With syslog-ng Store Box, you can find the answer. Search billions of logs in seconds using full text queries with Boolean operators to pinpoint critical logs.

Meeting compliance requirements
syslog-ng Store Box provides secure, tamper-proof storage and custom reporting to demonstrate compliance.

Big data ingestion
syslog-ng can deliver data from a wide variety of sources to Hadoop, Elasticsearch, MongoDB, and Kafka as well as many others.

Universal log collection and routing
syslog-ng flexibly routes log data from X sources to Y destinations. Instead of deploying multiple agents on hosts, organizations can unify their log data collection and management.

Secure data archive
syslog-ng Store Box provides automated archiving, tamper-proof encrypted storage, granular access controls to protect log data. The largest appliance can store up to 10TB of raw logs.

 

Sample Customers

Information Not Available
Tecnocom, University of Victoria, University of Exeter, Datapath
Buyer's Guide
Cribl vs. syslog-ng
October 2024
Free Report: Cribl vs. syslog-ng
Find out what your peers are saying about Cribl vs. syslog-ng and other solutions. Updated: October 2024.
DOWNLOAD NOW
813,418 professionals have used our research since 2012.
See our Cribl vs. syslog-ng report.
See our list of best Log Management vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.