Devo vs Graylog comparison

Devo and Graylog are both solutions in the Log Management category. Devo is ranked #25 with an average rating of 8.5, while Graylog is ranked #15 with an average rating of 7.0. Devo holds a 0.6% mindshare in Log Management, compared to Graylog’s 6.4% mindshare. Additionally, 95% of Devo users are willing to recommend the solution, compared to 95% of Graylog users who would recommend it.

Devo

Read 22 Devo reviews

2,681 Views
1,582 Comparison Views

95% willing to recommend

Graylog

Read 21 Graylog reviews

8,998 Views
8,998 Comparison Views

95% willing to recommend

Devo

Graylog

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 9, 2024

Graylog and Devo are competitive in the log management solutions category, with Devo slightly leading due to its advanced features and higher user satisfaction.

Features: Graylog offers effective search capabilities, intuitive usability, and cost-efficient performance, making it appealing to budget-conscious users. Devo provides real-time analytics, comprehensive data visualization, and extensive functionality, attracting those requiring sophisticated solutions.

Room for Improvement: Graylog needs improved documentation, enhanced alerting, and more user-friendly interfaces. Devo could benefit from refining its query language, streamlining navigation, and reducing the complexity of its tools.

Ease of Deployment and Customer Service: Graylog is known for easy deployment backed by strong customer support, aiding users with fewer technical resources. Devo's deployment necessitates more initial setup but is supported by responsive customer service, maintaining parity with Graylog in overall support quality.

Pricing and ROI: Graylog offers a cost-effective solution with notable ROI, ideal for small to medium enterprises. Devo, with higher initial costs, delivers satisfactory ROI due to its advanced features, making it an attractive investment for larger enterprises seeking extensive capabilities.

To learn more, read our detailed Devo vs. Graylog Report (Updated: July 2025).

Buyer's Guide

Devo vs. Graylog

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Devo

Ranking in Log Management

25th

Average Rating

8.4

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (25th), IT Operations Analytics (9th), AIOps (18th)

Graylog

Ranking in Log Management

15th

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of August 2025, in the Log Management category, the mindshare of Devo is 0.6%, up from 0.6% compared to the previous year. The mindshare of Graylog is 6.4%, up from 6.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Log Management

Featured Reviews

Michael Wenn

CEO / Co-Founder at Aiops ltd

Has cloud-first architecture with SIEM technology to run security operations

When it comes to scale, they're architected quite well. They handle some of the biggest customers globally, with significant throughput on their platform, managing thousands of customers. One of the most impressive aspects of Devo is its customer community. A large majority, over 80 percent of their customers, actively participate on a Devo-specific community page. They're contributing to product development and support, events, and user group information, helping each other out. This high level of engagement is rare and demonstrates both the loyalty of their customer base and the quality of their product. They offer a range of small, medium, and large options to cater to everyone. I sold Devo products while working with them, focusing on enterprise solutions. However, as a small reseller, my customers were typically smaller businesses. I rate the solution's scalability a nine out of ten.

Read full review

Ivan Kokalovic

DevOps Engineer at Proton Technologies

Facilitates backend service monitoring with efficient log retrieval and API flexibility

Graylog is valuable because it bridges technical knowledge to non-technical teams, presenting complex backend processes in a simple timeline. It boosts the knowledge of sales and customer support teams by allowing them to see the backend operations without needing to read the code. Its API is flexible for visualization, and its powerful search engine efficiently handles large volumes of log data. Moreover, its stability, fast search capabilities, and compatibility with languages like ANSI SQL enhance its utility in IT infrastructure.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Scalability is one of Devo's strengths."

"The most powerful feature is the way the data is stored and extracted. The data is always stored in its original format and you can normalize the data after it has been stored."

"The thing that Devo does better than other solutions is to give me the ability to write queries that look at multiple data sources and run fast. Most SIEMs don't do that. And I can do that by creating entity-based queries. Let's say I have a table which has Okta, a table which has G Suite, a table which has endpoint telemetry, and I have a table which has DNS telemetry. I can write a query that says, 'Join all these things together on IP, and where the IP matches in all these tables, return to me that subset of data, within these time windows.' I can break it down that way."

"The ability to have high performance, high-speed search capability is incredibly important for us. When it comes to doing security analysis, you don't want to be doing is sitting around waiting to get data back while an attacker is sitting on a network, actively attacking it. You need to be able to answer questions quickly. If I see an indicator of attack, I need to be able to rapidly pivot and find data, then analyze it and find more data to answer more questions. You need to be able to do that quickly. If I'm sitting around just waiting to get my first response, then it ends up moving too slow to keep up with the attacker. Devo's speed and performance allows us to query in real-time and keep up with what is actually happening on the network, then respond effectively to events."

"The user experience [is] well thought out and the workflows are logical. The dashboards are intuitive and highly customizable."

"It's very, very versatile."

"Devo helps us to unlock the full power of our data because they have more than 450 parsers, which means that we can ingest pretty much any type of log data."

"Even if it's a relatively technical tool or platform, it's very intuitive and graphical. It's very appealing in terms of the user interface. The UI has a graphically interface with the raw data in a table. The table can be as big as you want it, depending on your use case. You can easily get a report combining your data, along with calculations and graphical dashboards. You don't need a lot of training, because the UI is relatively very intuitive."

More Devo pros

"We have scaled from a single machine installation (a VM with a Graylog + ES + MongoDB) to (2 Graylog + 2 ES + 3 MongoDB). This was done smoothly with a minimal impact on logging."

"The solution's most valuable feature is its new interface."

"Allowing us to set up alerts and integrate with platforms we already use, such as Slack and OpsGenie to alert users of these errors proactively, is also a very useful feature."

"We run a containerized microservices environment. Being able to set up streams and search for errors and anomalies across hundreds of containers is why a log aggregation platform like Graylog is valuable to us."

"One of the most valuable features is that you are able to do a very detailed search through the log messages in the overview."

"The build is stable and requires little maintenance, even compared to some extremely expensive products."

"Open source and user friendly."

"I am very proud of how very stable the solution is."

More Graylog pros

Cons

"Technical support could be better."

"The price is one problem with Devo."

"The Activeboards feature is not as mature regarding the look and feel. Its functionality is mature, but the look and feel is not there. For example, if you have some data sets and are trying to get some graphics, you cannot change anything. There's just one format for the graphics. You cannot change the size of the font, the font itself, etc."

"Their documentation could be better. They are growing quickly and need to have someone focused on tech writing to ensure that all the different updates, how to use them, and all the new features and functionality are properly documented."

"The biggest area with room for improvement in Devo is the Security Operations module that just isn't there yet. That goes back to building out how they're going to do content and larger correlation and aggregation of data across multiple things, as well as natively ingesting CTI to create rule sets."

"Some third-parties don't have specific API connectors built, so we had to work with Devo to get the logs and parse the data using custom parsers, rather than an out-of-the-box solution."

"There are some issues from an availability and functionality standpoint, meaning the tool is somewhat slow. There were some slow response periods over the past six to nine months, though it has yet to impact us terribly as we are a relatively small shop. We've noticed it, however, so Devo could improve the responsiveness."

"My opinion on the solution's technical support is not as great as it could be because of the issues I have faced regarding the service management element."

More Devo cons

"Over six months, I had two similar issues where searches were performed on field "messages". It exhausted all the memory of the ES node causing an ES crash and a Graylog halt."

"Dashboards, stream alerts and parsing could be improved."

"More complex visualizations and the ability to execute custom Elasticsearch queries would be great."

"When it comes to configuring the processing pipeline, writing the rules can be very tedious, especially since the documentation isn't extensive on how the functions provided for these rules work."

"The biggest problem is the collector application, as we wanted to avoid using Graylog Collector Sidecar due to its architecture."

"There should be some user groups and an auto sign-in feature."

"I would like to see a date and time in the Graylog Grok patterns so that I can save time when searching for a log. I like how the streams and the search query work, but adding a date and time will allow me to pull out a log in a milli-second."

"It would be great if Graylog could provide a better Python package in order to make it easier to use for the Python community."

More Graylog cons

Pricing and Cost Advice

"It's very competitive. That was also a primary draw for us. Some of the licensing models with solutions like Splunk and Sentinel were attractive upfront, but there were so many micro-charges and services we would've had to add on to make them what we wanted. We had to include things like SOAR and extended capabilities, whereas all those capabilities are completely included with the Devo platform. I haven't seen any additional fee."

"The way Devo prices things is based on the amount of data, and I wish the tiers had more granularity. Maybe at this point they do, but when we first negotiated with them, there were only three or four tiers."

"Be cautious of metadata inclusion for log types in pricing, as there are some "gotchas" with that."

"We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the same way as any other customer, e.g., we use the backroom."

"Devo was very cost-competitive... Devo did come with that 400 days of hot data, and that was not the case with other products."

"Our licensing fees are billed annually and per terabyte."

"[Devo was] in the ballpark with at least a couple of the other front-runners that we were looking at. Devo is a good value and, given the quality of the product, I would expect to pay more."

"Devo is a hosted or subscription-based solution, whereas before, we purchased QRadar, so we owned it and just had to pay a maintenance fee. We've encountered this with some other products, too, where we went over to subscription-based. Our thought process is that with subscription based, the provider hosts and maintains the tool, and it's offsite. That comes with some additional fees, but we were able to convince our upper management it was worth the price. We used to pay under 10k a year for maintenance, and now we're paying ten times that. It was a relatively tough sell to our management, but I wonder if we have a choice anymore; this is where the market is."

More Devo pricing and cost advice

"We're using the Community edition."

"We are using the free version of the product. However, the paid version is expensive."

"If you want something that works and do not have the money for Splunk or QRadar, take Graylog."

"Having paid official support is wise for projects."

"It's an open-source solution that can be used free of charge."

"Consider Enterprise support if you have atypical needs or setup requirements."

"You get a lot out-of-the-box with the non-enterprise version, so give it a try first."

"I use the free version of Graylog."

More Graylog pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Log Management solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

16%

Computer Software Company

11%

University

Government

Computer Software Company

17%

Comms Service Provider

11%

Government

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Devo?

Devo has a really good website for creating custom configurations.

See all answers

What is your experience regarding pricing and costs for Devo?

Compared to Splunk or SentinelOne, it is really expensive. I rate the product’s pricing a nine out of ten, where one is cheap and ten is expensive.

See all answers

What needs improvement with Devo?

They can improve their AI capabilities. If you look at some integrations like XDR or AI, which add to the platform to correlate situations in events, there are areas for enhancement. For instance, ...

See all answers

What do you like most about Graylog?

The product is scalable. The solution is stable.

See all answers

What is your experience regarding pricing and costs for Graylog?

I am not familiar with the pricing details of Graylog, as I was not responsible for that aspect. It was determined that we didn't need an enterprise plan, which is more suited for clients with less...

See all answers

What needs improvement with Graylog?

An improvement I would suggest is in Graylog's user interface, such as allowing for font size adjustments. A potential enhancement could be the integration with Ollama to run large language models ...

See all answers

Comparisons

Splunk Enterprise Security vs Devo

Compared 14% of the time

IBM Security QRadar vs Devo

Compared 13% of the time

Microsoft Sentinel vs Devo

Compared 12% of the time

LogRhythm SIEM vs Devo

Compared 12% of the time

Wazuh vs Devo

Compared 5% of the time

More Devo Competitors

Grafana Loki vs Graylog

Compared 33% of the time

Wazuh vs Graylog

Compared 25% of the time

syslog-ng vs Graylog

Compared 11% of the time

Security Onion vs Graylog

Compared 6% of the time

Fortinet FortiAnalyzer vs Graylog

Compared 3% of the time

More Graylog Competitors

Product Reports

Buyer's Guide

Devo

August 2025

Download Devo product report

Buyer's Guide

Graylog

August 2025

Download Graylog product report

Also Known As

No data available

Graylog2

Overview

Devo is the only cloud-native logging and security analytics platform that releases the full potential of all your data to empower bold, confident action when it matters most. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.

Devo

Graylog is purpose-built to deliver the best log collection, storage, enrichment, and analysis. Graylog is:

Considerably faster analysis speeds.
More robust and easier-to-use analysis platform.
Simpler administration and infrastructure management.
Lower cost than alternatives.
Full-scale customer service.
No expensive training or tool experts required.

Graylog

Sample Customers

United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel

Blue Cross Blue Shield, eBay, Cisco, LinkedIn, SAP, King.com, Twilio, Deutsche Presse-Agentur

Buyer's Guide

Devo vs. Graylog

July 2025

Free Report: Devo vs. Graylog

Find out what your peers are saying about Devo vs. Graylog and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Devo vs. Graylog report.

See our list of best Log Management vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.