# Graylog Reviews **Vendor:** Graylog **Category:** [Log Analysis Software](https://www.g2.com/categories/log-analysis) **Average Rating:** 4.4/5.0 **Total Reviews:** 120 ## About Graylog Graylog is a log management and security information and event management (SIEM) solution designed to assist security and IT teams in detecting, investigating, and responding to potential threats with increased efficiency. By leveraging advanced technologies such as scalable log management, real-time data correlation, and explainable artificial intelligence (AI), Graylog transforms complex data sets into actionable insights, enabling organizations to make informed decisions swiftly. The platform caters to a diverse range of users, from small businesses to large enterprises, all of whom require enhanced visibility and control over their IT environments. Graylog is particularly beneficial for security analysts and IT professionals who need to sift through vast amounts of log data to identify anomalies, track incidents, and ensure compliance with various regulatory standards. Its user-friendly interface and powerful analytical tools streamline the process of threat detection and response, making it an essential asset for organizations aiming to bolster their cybersecurity posture. Key features of Graylog include automated workflows that simplify repetitive tasks, anomaly detection capabilities that flag unusual patterns in data, and guided investigations that assist users in navigating complex security incidents. The platform also offers AI-driven summaries that distill critical information, allowing analysts to focus on high-priority issues without getting bogged down by excessive data. These features collectively enhance the speed and accuracy of threat responses, ensuring that security teams remain in control of their environments. Graylog's versatility is evident in its range of products, which includes Graylog Security, Enterprise, API Security, and Open solutions. Each product is tailored to meet the specific needs of different organizations, providing clarity and context across various operational landscapes. With a user base of over 60,000 organizations globally, Graylog has established itself as a trusted partner in the realm of cybersecurity and log management, helping teams navigate the complexities of modern threats while maintaining a clear focus on their objectives. ## Graylog Pros & Cons **What users like:** - Users commend Graylog for its **cost optimization** , highlighting its reliability and adherence to industry standards. (1 reviews) - Users find the **detailed API information** essential for effective debugging, significantly enhancing their troubleshooting processes. (1 reviews) - Users find the **extensive detail for APIs** in Graylog invaluable for navigating complex debugging processes efficiently. (1 reviews) - Users find the **in-depth API details** invaluable for effective debugging, preventing dead ends during complex processes. (1 reviews) - Users value Graylog for its **reliable and cost-effective pricing** , aligning well with industry standards. (1 reviews) - Reliability (1 reviews) - Troubleshooting (1 reviews) **What users dislike:** - Users find Graylog's **complexity** can lead to wasted time, especially during debugging and API response reviews. (1 reviews) - Users struggle with **debugging difficulties** in Graylog, which can lead to wasted time and frustration during troubleshooting. (1 reviews) - Users find **integration issues** with various platforms in Graylog, making connectivity challenging and limiting functionality. (1 reviews) - Users find the **learning curve steep** , causing time loss during debugging and while reviewing API responses. (1 reviews) - Users find that **time consumption** due to complexity in Graylog negatively impacts efficiency and overall productivity. (1 reviews) - Time-Consumption (1 reviews) ## Graylog Reviews ### 1. My experience with graylog **Rating:** 4.0/5.0 stars **Reviewed by:** Nelli K. | Programmer, Mid-Market (51-1000 emp.) **Reviewed Date:** March 20, 2020 **What do you like best about Graylog?** The syntax there is pretty much simple, that I like. You can setup how often and how much data you want to be stored there **What do you dislike about Graylog?** UI It could be nicer I believe.IMHO add more graphics and charts **What problems is Graylog solving and how is that benefiting you?** We stored logs there, it's obvious. We stored all data from all casinos there ### 2. This tool helped me and my last company to understand and track our logs. **Rating:** 5.0/5.0 stars **Reviewed by:** Jorge C. | Cloud Support Engineer II - Storage and CDN, Enterprise (> 1000 emp.) **Reviewed Date:** March 22, 2020 **What do you like best about Graylog?** The easy way to do queries, correlate and find issuues. **What do you dislike about Graylog?** The way to do upgrades. We have to reinstall the app in our first tempt. **Recommendations to others considering Graylog:** Send all logs to graylog. **What problems is Graylog solving and how is that benefiting you?** We were able to match and correlate logs that happened at the same time from different applications. ### 3. with Graylog all logs in one place and always under control **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Building Materials | Small-Business (50 or fewer emp.) **Reviewed Date:** November 06, 2019 **What do you like best about Graylog?** The Graylog tool allows for the centralization of trace logs that are pushed by all configured software applications. The strong point of Graylog is that it is totally cross-technology, meaning that very different software can easily write their own logs into the same Graylog stream, allowing for the storage and querying of logs from different applications and servers from a single access point. **What do you dislike about Graylog?** Graylog is a very valid and powerful tool, but its installation can definitely be improved; I find it complicated for a beginner. Moreover, to install Graylog, familiarity with Unix operating systems is required. **Recommendations to others considering Graylog:** Graylog is not easy to install and requires expertise in a Linux environment. **What problems is Graylog solving and how is that benefiting you?** In the company, we use the Graylog software to collect all the logs from our applications, which are written with different technologies, in one place. The logs are all consulted from the same point, whether they come from legacy applications or microservices running on Kubernetes in the cloud. ### 4. Graylog as a complete tool for cross-platform log visualization **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Building Materials | Small-Business (50 or fewer emp.) **Reviewed Date:** November 05, 2019 **What do you like best about Graylog?** Graylog offers the possibility to visualize and store in a single point all the logs coming from various types of different environments with different technologies. Graylog is completely cross-platform. You can set alarms, log retention mechanisms, and everything else needed for the complete and centralized management of trace logs. **What do you dislike about Graylog?** The installation of the Graylog server typically occurs on Linux machines. Its installation is not simple for a beginner; however, you can also install Graylog on Docker with Docker Compose or Kubernetes, but even in these cases, the installations are not easy to execute for someone with little experience. **Recommendations to others considering Graylog:** The graphical interface, in my opinion, can definitely be improved; in some cases, it creates confusion for the user. **What problems is Graylog solving and how is that benefiting you?** With the use of Graylog, we have achieved centralization of the logs generated by the software installed on our platform. Both logs from legacy systems using the NLOG and GELF library and those from microservices installations on Kubernetes flow into Graylog. ### 5. Awesome experience **Rating:** 5.0/5.0 stars **Reviewed by:** Michael H. | Administration , Small-Business (50 or fewer emp.) **Reviewed Date:** November 08, 2019 **What do you like best about Graylog?** I like being able to utilize pipelines to filter rules on top of creating quick graphs to see data visually. **What do you dislike about Graylog?** Documentation for custom plug-ins was a little rough. **Recommendations to others considering Graylog:** Filter out noise. It will help in the long run. **What problems is Graylog solving and how is that benefiting you?** Being able to quickly detect potential threats, problems and more. A simple example using a stream to view accounts that have been locked on what machine, time, and what type of authentication it was. ### 6. Graylog Review **Rating:** 3.5/5.0 stars **Reviewed by:** Sharath S. | Software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** April 03, 2020 **What do you like best about Graylog?** It has a lot of features which is useful **What do you dislike about Graylog?** Found it difficult to use and test the features **Recommendations to others considering Graylog:** Evaluate the needs before spending time and resources on the platform **What problems is Graylog solving and how is that benefiting you?** Insight into our systems and alerting mechanisms ### 7. Great tool for flexible searching among tons of logs **Rating:** 5.0/5.0 stars **Reviewed by:** Chandra Sekhar P. | Senior DevOps Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** March 24, 2020 **What do you like best about Graylog?** User experience, the performance and the integration part with Elastic Search **What do you dislike about Graylog?** Nothing much as of now. Cannot think of any. **Recommendations to others considering Graylog:** Use it enjoy it. One of the best products **What problems is Graylog solving and how is that benefiting you?** Searching a specific data among tons documents that store in elastic search ### 8. Fantastic open source solution for log management **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** November 08, 2019 **What do you like best about Graylog?** We were looking into Splunk but the cost was just way too much for us, so we wanted an open source alternative for now. Graylog fit the bill. Super easy to maintain and it's been rock solid for us. **What do you dislike about Graylog?** Main downside is that none of our security tool have Graylog connectors, so sometimes it's hard to get the data in there. **Recommendations to others considering Graylog:** Spin it up and test for yourself. It's very easy and there are OVA's available. **What problems is Graylog solving and how is that benefiting you?** We were trying to get log collection going for on-premise solutions at least. Namely, SSH/VPN/AD logins, Windows Servers, and Ubuntu Servers. We're adding Bro and Sysmon shortly, with AWS in 2020. ### 9. A good tool for monitoring logs for a cloud Environment **Rating:** 4.0/5.0 stars **Reviewed by:** Saifuddin S. | Associate Software Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** March 23, 2020 **What do you like best about Graylog?** Log consolidation using filters. Monitor setup is a good plus. **What do you dislike about Graylog?** Setup is a bit tricky when using dockerized containers. No queuing out of box. **What problems is Graylog solving and how is that benefiting you?** Setting up monitors and consolidated logging for micro services all across the cloud platforms. ### 10. Robust log collection **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Banking | Mid-Market (51-1000 emp.) **Reviewed Date:** May 27, 2020 **What do you like best about Graylog?** Stability , ease of use , nice user interface **What do you dislike about Graylog?** keep up with elastricsearch features , support the latest versions , is up to one year **Recommendations to others considering Graylog:** support latest version elasticsearch **What problems is Graylog solving and how is that benefiting you?** log collection , dashboard creation ### 11. Awesome Log Management Tool **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Telecommunications | Small-Business (50 or fewer emp.) **Reviewed Date:** April 12, 2020 **What do you like best about Graylog?** There’s fancy UI of graylog in which you can manage application wise streams. **What do you dislike about Graylog?** Search box should give suggestions by some shortcuts key to type. **What problems is Graylog solving and how is that benefiting you?** I am working as DevOps so it’s quite helpful to Development teams In our company to debug production or staging issues with the help of graylog logs management tool. ### 12. It’s a great opportunity to experience this kind of tool **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** March 19, 2020 **What do you like best about Graylog?** It provides a perfect data storage for applications logs and structured analytic data. It’s an open source tool. **What do you dislike about Graylog?** Didn’t experience downside since the day that I started using the tool its really nice **Recommendations to others considering Graylog:** Tool is really nice to use and easy **What problems is Graylog solving and how is that benefiting you?** Problem is that for example may registration didn’t continue, with graylog I am able to see the logs if what really happen. ### 13. Easy Logs **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Leisure, Travel & Tourism | Mid-Market (51-1000 emp.) **Reviewed Date:** April 10, 2020 **What do you like best about Graylog?** I think the way it accumulates so many logs, input and output services and provides the better platform to monitor **What do you dislike about Graylog?** It takes time to auto refresh and a little extra time to load **Recommendations to others considering Graylog:** One of the leading Logging and monitoring tools recommended **What problems is Graylog solving and how is that benefiting you?** Monitoring and finding the root cause using respective name space ### 14. Currently, we used Graylog for our devices log and Firewall session log. **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Telecommunications | Small-Business (50 or fewer emp.) **Reviewed Date:** April 10, 2020 **What do you like best about Graylog?** Easy to find and analyst the log with detail information. **What do you dislike about Graylog?** Dashboards did not show with detail information and all features. **Recommendations to others considering Graylog:** About the feature of Graylog that has many options and more useful than other system. **What problems is Graylog solving and how is that benefiting you?** Problem with not enough storage because our devices has send more log. ### 15. Robust Logging Solution **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Marketing and Advertising | Mid-Market (51-1000 emp.) **Reviewed Date:** March 31, 2020 **What do you like best about Graylog?** Rsyslog integration, you can do rsyslog templating to accommodate the GELF standard. **What do you dislike about Graylog?** The menus creation could be better, it takes some time to produce meaninful graphs and stats **Recommendations to others considering Graylog:** Take a look, its pretty good **What problems is Graylog solving and how is that benefiting you?** We replaced our splunk solution with graylog, most of the benefit was cost related. ### 16. Best Centralized Logging Solution for next generation of devs **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Mid-Market (51-1000 emp.) **Reviewed Date:** November 10, 2019 **What do you like best about Graylog?** Few things are best : 1. graylog inputs and extractors 2. we don't have to manage elasticsearch separately 3. alerts on streams **What do you dislike about Graylog?** I think graylog community can add a few things: 1. backup/restore mechanism for elasticsearch and mongodb 2. Seamless JIRA/Pagerduty connectivity 3. docker and k8s ready - helm chart would be very much appreciated by devops community **Recommendations to others considering Graylog:** Definitely YES, Go for it guys. This is the solution - Not just another tool. **What problems is Graylog solving and how is that benefiting you?** 1. It's really fast and simple in work but a very solid tool. The possibilities are very good. At my org we are using graylog for everything. a) HTTP gateway logging and monitoring b) app logging and monitoring c) service monitoring ### 17. the Graylog is a powerful tools to get all logs from your devices in your network **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.) **Reviewed Date:** April 08, 2020 **What do you like best about Graylog?** Easy of use, you can find everything you need from dashboard **What do you dislike about Graylog?** Documentation i think the documentation is need more information **What problems is Graylog solving and how is that benefiting you?** i get all logs from my devices in my network so i can fix the problem before anyone ### 18. Its very good devOps tool for checking the produdction logs. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Internet | Mid-Market (51-1000 emp.) **Reviewed Date:** March 29, 2020 **What do you like best about Graylog?** We can check the log of production, and its very easy integration with java application. **What do you dislike about Graylog?** There is nothing to dislike about graylog. **What problems is Graylog solving and how is that benefiting you?** If incase in production application is not working then we can easily track with the help of graylog. ### 19. Integrating graylog in OLXph **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** March 31, 2020 **What do you like best about Graylog?** webconsole user interphase, graphing, freemium and auto discovery feature **What do you dislike about Graylog?** i encounter some troubles regarding manual coding to monitor a node **Recommendations to others considering Graylog:** good documentation repository and good community **What problems is Graylog solving and how is that benefiting you?** System interupption. We could easily investigate in one stop solution ### 20. Graylog is great opensource log managment system for small business **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Retail | Enterprise (> 1000 emp.) **Reviewed Date:** March 20, 2020 **What do you like best about Graylog?** Collectors is great feature and easy to setup. **What do you dislike about Graylog?** In some cases, collectors are down after server restarted where collector is installed. **Recommendations to others considering Graylog:** Graylog is grea opensourcen solution **What problems is Graylog solving and how is that benefiting you?** we solving gathering logs from servers and infosec procedures ### 21. Very easy to use **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Program Development | Enterprise (> 1000 emp.) **Reviewed Date:** March 31, 2020 **What do you like best about Graylog?** Simple interface and fast to run the query. **What do you dislike about Graylog?** It takes sometime to update the data. If this duration could be reduced. **What problems is Graylog solving and how is that benefiting you?** Serverlogs for payment. Makes life easier with investigation. ### 22. Awesome **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Small-Business (50 or fewer emp.) **Reviewed Date:** March 26, 2020 **What do you like best about Graylog?** Flexible and easy parsing syntax, good performance **What do you dislike about Graylog?** Nothing, all working good , using in production **What problems is Graylog solving and how is that benefiting you?** All in one place log collecting with good web interface ### 23. Best log management tool which is completely open source!! **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** November 11, 2019 **What do you like best about Graylog?** I like the log management feature of graylog. It is very simple to setup and get started. natively integrates with Linux logging **What do you dislike about Graylog?** There are limited integrations with third party applications and also Graylog should provide good articles of using it with Cloud native environments. **What problems is Graylog solving and how is that benefiting you?** Log management, incident Management and reporting ### 24. Very convenient **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** March 27, 2020 **What do you like best about Graylog?** Search tools, simple and complex queries **What do you dislike about Graylog?** Nothing, very useful logs system. All good **What problems is Graylog solving and how is that benefiting you?** Logs of our API system ### 25. Make reading logs fun again **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Electrical/Electronic Manufacturing | Mid-Market (51-1000 emp.) **Reviewed Date:** November 09, 2019 **What do you like best about Graylog?** Fast to setup, super flexible log parsing capabilities. Highly adaptable with community-driven marketplace full of stunning plugins. Full featured open source solution **What do you dislike about Graylog?** Had some trouble with inplace upgrade a previous appliance, graylogctl script ist deprecated **Recommendations to others considering Graylog:** Try it have fun! **What problems is Graylog solving and how is that benefiting you?** Super flexible firewall logging. https://marketplace.graylog.org/addons/951473f4-cd9d-4a94-95cf-0017b60f23a4 ### 26. trace logs everywhere **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Building Materials | Small-Business (50 or fewer emp.) **Reviewed Date:** October 28, 2019 **What do you like best about Graylog?** graylog is a great product for collecting trace logs from multiple systems. I like that there are many libraries to send logs from all types of applications to graylos. **What do you dislike about Graylog?** graylog is not very simple to install for a newbie. the graylog user interface is not super intuitive and it takes some time to understand it thoroughly. **What problems is Graylog solving and how is that benefiting you?** we use graylog to collect logs from different platforms and softwares in a single point. All logs in one place accessible anywhere. ### 27. software for collecting trace logs **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Building Materials | Small-Business (50 or fewer emp.) **Reviewed Date:** October 28, 2019 **What do you like best about Graylog?** graylog is a software to collect logs from many applications even on different platforms, all on a single user interface. **What do you dislike about Graylog?** I don't like the graphical interface which is not very intuitive, you have to do a little practice before learning how to use it. **What problems is Graylog solving and how is that benefiting you?** with graylog we were able to get all the logs coming from multiple servers in the network in a single point, even if they belong to different platforms. ### 28. Open source log management software **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** November 10, 2019 **What do you like best about Graylog?** We have replaced Elastic search with graylog and it has since then been our mainstream log management application for all of our projects. Indeed a really great software with ease of use. **What do you dislike about Graylog?** Integrations are limited and it's dependent on the supporting community to contribute on the Integrations. **What problems is Graylog solving and how is that benefiting you?** We do the following. 1. Log management 2. SIEM 3. Log capture. ### 29. Best log and inventory management software **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Education Management | Small-Business (50 or fewer emp.) **Reviewed Date:** November 10, 2019 **What do you like best about Graylog?** I like the simplicity of graylog. It is predictable software. You can design it and use it in the scenario as you want. It is really able to provide the best. **What do you dislike about Graylog?** There are fewer third party applications available with graylog. Also I will say the documentation should be available for cloud native landscape **What problems is Graylog solving and how is that benefiting you?** Log and incident Management ### 30. Best log management tool in market which is open source **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** November 10, 2019 **What do you like best about Graylog?** We use graylog for log management. There are number of integrations to graylog which is very helpful for us. It is also used as SIEM tool **What do you dislike about Graylog?** There can be many more integrations to graylog also they should provide some good documentations of using it in cloud native environments. **What problems is Graylog solving and how is that benefiting you?** Log management Intrusion detection through logs SIEM ### 31. very complete log management solution **Rating:** 5.0/5.0 stars **Reviewed by:** Davide P. | Cofounder, Small-Business (50 or fewer emp.) **Reviewed Date:** November 13, 2018 **What do you like best about Graylog?** the ability to add information to messages, with pipelines we can add or remove field without modify the original message, it's very usefull for example with lookup table, in this way it's possible to check if an ip (destination or source) it's part of a ransomware campaign. Another cool feature is the ability to route logs in different index, any index can be stored in a different location and have a different retention policy. The enterprise version are free for 5 gb of data /daily, it's a reasonable value **What do you dislike about Graylog?** dashboard and visualizations, there is only two type of visualization and with few customization options, moreover some diagram cannot be modified and must be recreated, for example if a pie diagram was created it's impossible to add stacked field, it must be recreated. **Recommendations to others considering Graylog:** graylog can be implemented easly and solve one of the more understimate topic of IT **What problems is Graylog solving and how is that benefiting you?** centralization of logs with a centralized config management of collectors, it permit to manage hundred configurations of remote hosts, logs are usefull thinghs, they help in troubleshooting, configuration and decisions, with log it's possible to obtain answer from data and graylog is a very usefull tool to do this. With advanced search capabilities and the ability to add additional information to messages graylog help to find answer to questions like wath kind of traffic use a specific firewall rule or if a specific traffic reach a load balancer ### 32. Best log management open source application **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** November 10, 2019 **What do you like best about Graylog?** The log management is simple with graylog. We collect log from hundreds of our servers with rsyslog and graloy. **What do you dislike about Graylog?** Integrations are limited and it is dependent on the community to create and deploy new integrations of third party applications **What problems is Graylog solving and how is that benefiting you?** Log management SIEM Identify verification ### 33. Good product and support, but the 'free' version leaves something to be desired **Rating:** 4.0/5.0 stars **Reviewed by:** Paul M. | Senior Network Engineer, Computer Networking, Mid-Market (51-1000 emp.) **Reviewed Date:** November 06, 2018 **What do you like best about Graylog?** The product installs and runs as advertised. There isn't a lot to say here. It is in the cheaper section of enterprise level log analysis packages but still pay homage to it's roots. It tends to be pretty quick and able to digest a large volume of data at speed. **What do you dislike about Graylog?** The only dislike I have is when we ran over the rated daily limits for the 'free' version, it shut the whole thing down. This caused me to lose some logs... not a big deal, but I do point it out so others will be on the lookout for it and upgrade their license as required. **Recommendations to others considering Graylog:** Make sure to keep in mind of your data requirements. **What problems is Graylog solving and how is that benefiting you?** I need to be able to view log files and find data for compliance purposes at a moments notice. This product answers that very well. If Splunk is a Cadillac Eldorado I would say Graylog is a Buick Roadmaster(in my mind a better vehicle anyway) ### 34. Reemplazando sistemas de registro antiguos con Graylog. **Rating:** 4.5/5.0 stars **Reviewed by:** Alberto H. | Mr., Mid-Market (51-1000 emp.) **Reviewed Date:** November 06, 2018 **What do you like best about Graylog?** We are currently evaluating the functionality of Graylog to replace three old log collection systems. At the moment, we are satisfied with the product, highlighting the ease of installation and simplicity of its user interface. We hope to acquire technical support and training for the tool in the near future. We are currently testing the log collection functionality on about twenty of our most critical network devices. **What do you dislike about Graylog?** We have been using the Graylog tool for a couple of months and so far we have no issues. To mention something, we had to read the forums quite a bit to configure the Log collection system for our devices. This encourages us to consider purchasing technical support and training for our administrators. We hope that soon you can offer technical support and documentation in Spanish, we see it as a differentiator among the other options in the market. **Recommendations to others considering Graylog:** Easy installation and simple user interface. We are currently evaluating the Graylog product to replace three old log collection systems. Graylog offers the option to use the tool without commitment for a limited number of devices. **What problems is Graylog solving and how is that benefiting you?** We are a telecommunications company and we have a couple of data centers, whose devices are monitored 24x7. An important part of this is the collection of their event logs, which we fully cover with Graylog. We have the Graylog tool as part of our monitoring system for our most important network devices. ### 35. Best log management tool in the market **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** November 11, 2019 **What do you like best about Graylog?** We are using graylog for log management in our Infrastructure. It is widely used for capturing system and user login related logs. **What do you dislike about Graylog?** Graylog is good but it is intensive in memory consumption, However it is best when compared to ElasticSearch. **What problems is Graylog solving and how is that benefiting you?** Log management ### 36. Open source log monitoring software **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Education Management | Small-Business (50 or fewer emp.) **Reviewed Date:** November 11, 2019 **What do you like best about Graylog?** The ease of setup and maintenance and crisp and clear documentation. **What do you dislike about Graylog?** I see the lack of integrations In graylog for many popular softwares also there should be more wide variety of third party plugins. **What problems is Graylog solving and how is that benefiting you?** Log and incident Management and reporting ### 37. Has helped simplify security audit response time **Rating:** 5.0/5.0 stars **Reviewed by:** Wayne S. | System Administrator, Mid-Market (51-1000 emp.) **Reviewed Date:** November 13, 2018 **What do you like best about Graylog?** The best part of Graylog is that I don't have to go digging through a directory full of Linux text files or Windows Event Viewer on individual servers. Having a single pane of glass into all of our logs is extremely helpful. **What do you dislike about Graylog?** There's not much to dislike. The biggest annoyance to me is the workaround you have to do to run a syslog pipe on a port below 1000, where it *should* be. **Recommendations to others considering Graylog:** Take the time to set up Windows event shipping carefully or you'll bring the Graylog server to its knees and bury it under a mountain of useless data. **What problems is Graylog solving and how is that benefiting you?** We needed a simpler way to prove to auditors that terminated AD accounts were actually deactivated and when. Graylog gives us a much easier way to do this search. ### 38. Using graylog version 1.3 in our company infrastructure **Rating:** 3.5/5.0 stars **Reviewed by:** Eimantas Z. | System Administrator, Enterprise (> 1000 emp.) **Reviewed Date:** November 20, 2018 **What do you like best about Graylog?** I am a system administrator so its quite easy to configure it, fix it if elasticsearch hangs or kills itself when out of memory **What do you dislike about Graylog?** Our company need few requirements for 3 different system. One system needs to save logs for 30 days, other one for 60 days, and another for 90 days. At least in this first version you can't seperate each stream for saving logs in custom days, every stream logs are saved for one time. So if we need to save logs for seperate times, we need 3 different graylog infrastructures **Recommendations to others considering Graylog:** Prepare a lot of storage if your systems are sending a lot of messages, because elastic search creates shards in each cluster. If one server goes down, the other will take care of the jobs. **What problems is Graylog solving and how is that benefiting you?** We are solving all kinds of problems, we see when some kind of system fails to do a job, or when its successful. We can filter statistics like what channel was most watched and so on. Looking forward to create a new infrastructure with current available version for stability. ### 39. Senior Security Analyst **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Mid-Market (51-1000 emp.) **Reviewed Date:** November 14, 2018 **What do you like best about Graylog?** Graylog has enabled me to easily search through numerous logs in one centralized location. Along with being able to review logs in one central location, Graylog provides an excellent method for creating threshholds and alerting based on those thresholds. Retention is very easy to set up. **What do you dislike about Graylog?** I dislike the lack of functionality when it comes to creating stream thresholds based on a specific field uniqueness. **Recommendations to others considering Graylog:** This is a great product that can really make a difference in incident investigations, system monitoring, and reviewing system logs. You should consider the deployment of the system before going live. For example, do you need just one node or will you need multiple servers for the deployment. Also consider the storage space you will need and how long you plan to retain logs for. I recommend that you also consider how you want your indexes set up. Improperly setting up your indexes will result in a longer than expected wait time for data to be retrieved. **What problems is Graylog solving and how is that benefiting you?** Graylog has given us a better method for managing alerts. ### 40. The best free Event Management software **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Staffing and Recruiting | Mid-Market (51-1000 emp.) **Reviewed Date:** November 14, 2018 **What do you like best about Graylog?** Has many features that you would normally not find in other other free Event Management software (which we tried many). It allows us to add the type of events we want to gather and can modify these events via Pipelines before they get stored (very useful for IIS logs). The website based interface is clean and easy to navigate which allows anywhere access. Both a good and bad feature is it does not provide any default alerts, conditions or dashboard content so you have to create them all from scratch, which can be time consuming. However, this does mean you don't get confused when you get an alert for something you have no idea what it means or is irrelevant to your environment. Searching events has become a lot more easier. **What do you dislike about Graylog?** You can setup email alerts for when a certain condition occurs, however there is a lack of complexity in the conditions. It can only be on total number of messages in a 'stream' or 1 field content is a certain value or 1 field over several messages add up to a certain value; there are no options to combine these conditions. Additionally, we had trouble getting it to install and setup the correct back-end configuration for our environment. Reading the official documentation carefully is a must but we still ran into issues which we could not solve except via a complete rebuild. This software is purely Event Management and does not do any Security incident management that paid-for SIEM software may do and so is not a full SIEM solution. **Recommendations to others considering Graylog:** Carefully read the documentation as the community is quite small and inactive on forums. **What problems is Graylog solving and how is that benefiting you?** Storing a near real-time backup of Events from Servers, switches, Exchange and IIS logs in individual events instead of a text file. Searching all events to help with specific incidents has become considerably easier. We also get alerted to specific problems that need dealing with before an incident may occur. It also, via Dashboards, allows us to see at an instant, the number of incorrect password attempts, object changes, logins and much more. ### 41. Powerful tool for log monitoring **Rating:** 4.0/5.0 stars **Reviewed by:** Andy Larry R. | Informaticien études et développement, Mid-Market (51-1000 emp.) **Reviewed Date:** November 14, 2018 **What do you like best about Graylog?** Best performance, user friendly interface, very smart charts, lot of functionnality, cross-platform compatibility, data very speed searching, very clear indices management, easy to configure dashboard, a very clear and easy message setup and streaming configuration, graylog server configuration is not complicated. **What do you dislike about Graylog?** A little complicated for first installation and configuration, custom regular expression (grok, regex) is a little bit complex to configure. ElasticSearch configuration is more hard that expected, some minor bugs is detected during the first deployment. **Recommendations to others considering Graylog:** Very best and powerful log monitoring tool **What problems is Graylog solving and how is that benefiting you?** We can monitore firewall log to analyse what kind of packet is sending or receiving and what link is accepted/blocked by the firewall. We can monitore our JUNIPER switches too, to detect any anomaly or disfunctionment of the equipment. We can monitore our audiocode equipment for telephony, to detect anomaly and dysfunctionment too. All these functionnality is a very good contribution for the benefits of company. ### 42. Graylog is wonderful **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Education Management | Mid-Market (51-1000 emp.) **Reviewed Date:** November 07, 2018 **What do you like best about Graylog?** It's designed from the ground up to be scale able, user friendly, and snappy. It is a full featured product that we keep expanding our use of. From network infrastructure to Windows and IIS servers, sending our logs to Graylog has helped us identify problems. **What do you dislike about Graylog?** The learning curve is a little steep, but once you get the hang of it, it's easy to keep going and get your problems solved. **Recommendations to others considering Graylog:** Try it! It's easy to get up and running to see if it's right for you. **What problems is Graylog solving and how is that benefiting you?** Log aggregation, analysis, and alerting have benefited greatly from our use of Graylog. Being able to surface important logs while still keeping all logs has been great for troubleshooting, security, and compliance. Building dashboards allows us to quickly identify problem areas, generate quick reports for meetings, and show off how well the software works to management. We are currently working to implement some of the SEIM features in our environment. ### 43. Graylog - Simple, but not as efficient as ELK **Rating:** 3.5/5.0 stars **Reviewed by:** Elijah A. | Integration Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** November 06, 2018 **What do you like best about Graylog?** Graylog was easy to setup and can be up and running in a matter of an hour. The GUI is easy to navigate and making changes to the config file is fairly simple. There is also good documentation. **What do you dislike about Graylog?** I have noticed that some of the operations seem to take longer in Graylog compared to the ELK stack. This is something to weigh when it comes to using this. The ease of setup may be good for a start, however if you want to display more complex graphs and visuals switching to ELK stack may be better. **Recommendations to others considering Graylog:** If you want an easy setup process and good documentation Graylog is a good choice. Setting up alerts for security events is easy and can save a lot of headache. **What problems is Graylog solving and how is that benefiting you?** We use Graylog to contain all of our log information in accordance with HiTRUST. This solution was easy to setup and build upon. ### 44. Collect and analyze data **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Services | Mid-Market (51-1000 emp.) **Reviewed Date:** August 17, 2019 **What do you like best about Graylog?** I like the security in the product and the peace of mind that I’ll get the results I need. **What do you dislike about Graylog?** Integration process and setup takes a bit to get going. **What problems is Graylog solving and how is that benefiting you?** Data collection and analysis with everything being secured. ### 45. Implemented many solutions c/o different end customers for log management and other purpose **Rating:** 5.0/5.0 stars **Reviewed by:** Riccardo P. | Partner, Business Developer, Information Technology and Services, Enterprise (> 1000 emp.) **Reviewed Date:** November 06, 2018 **What do you like best about Graylog?** The product flexibility, when you have some machine data somewhere and you want to get it, manipulate it and analyze it. The possibility to start free and then switch, when needed, to the enterprise solution **What do you dislike about Graylog?** It would be good to have more options to manipulate and present the data without the need of external solutions **Recommendations to others considering Graylog:** When you try it, you start small but then you put there as most as data you can... **What problems is Graylog solving and how is that benefiting you?** Middle log system to "clean" and reduce the data amount forwarded to a popular SIEM/AI cloud service; netflow management. ### 46. Log Management for Everyone **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** November 23, 2018 **What do you like best about Graylog?** You can start with a single server, and migrate to a multi-server, highly available logging monster. Because there is no restriction on licensing for the base Graylog product, you can setup a test deployment and test what will happen when you upgrade etc in production. The community is helpful and active. The product is getting updates frequently. The system has a purpose built Graylog Collector client which you can monitor directly through the Graylog web interface to determine if the system is still sending logs properly. Easily integrates with Active Directory to allow authentication of users. Also has the ability to integrate with AD Groups for providing easy access to new users. All of the Graylog web interface is using the Graylog API. The API browser is well thought out and fully documented. Development teams should find it easy to navigate the API in order to integrate with Graylog. API access also means that any system used for monitoring that can make API calls will be able to query Graylog for system health statistics easily. Overall the system is very well thought through and comprehensive. **What do you dislike about Graylog?** Documentation needs improvement. The marketplace is a bit hit or miss as far as the quality of the plugins. Customer submitted marketplace items are not curated. Anyone who wants to put together a plug-in can, and while that's great it leads to a highly fragmented experience. Graylog still relies on Elasticsearch 5.6.x which means that a large amount of the new Elasticsearch improvements are not yet supported. The Collector Sidecar can and will stop sending logs at random, on Windows, or not startup during system startup after a reboot. Having a system that either forces the service to start or automatically restarts the service at a set period is ideal. **Recommendations to others considering Graylog:** Have a solid understanding of Linux. Also learn the basics of MongoDB in an HA cluster, Elasticsearch in a clustered deployment. Graylog relies heavily on these two products in order to properly operate. Ensure that you have either the ability to run HAProxy, Nginx, If you don't know how your systems log, what those logs look like, or how you're going to get the logs out of the system and into a log stream to another product you need to start there. Graylog will require that you either log things in a well known format (typical of all logging solutions) or use a combo of Regex/GROK/Graylog Processing Pipelines to break out the logs into different fields so they are individually searchable. Other products have a much larger supported base of these available. If you can't find one you'll be left to either ingest logs as a blob in the message field, or learn to write your own processor pipelines. If you have the ability to pay for professional services then you can enlist Graylog corporate to assist you. **What problems is Graylog solving and how is that benefiting you?** Log management for all devices. Netflow capture of all network devices. Historic capture of all events and alerting on those events. Active Directory log analysis and forensics. Event correlation and issue root cause. ### 47. Amazing centralized logging platform with a great looking interface. **Rating:** 4.0/5.0 stars **Reviewed by:** Robert S. | Enterprise (> 1000 emp.) **Reviewed Date:** June 15, 2018 **What do you like best about Graylog?** - Easy to try out thanks for the OVA/docker - Interface updates in real-time - Good looking dashboards - Integrates into various platforms like Slack for alerting - Has API **What do you dislike about Graylog?** - Some aspects such as pipelines and collector snippets can have a bit of a learning curve - Initial configuration of streams and alerts can take a long time. This can be setup using the API if you have time to look into that. **Recommendations to others considering Graylog:** If you're a business that needs a quick solution to drop in place for centralized logging, definitely look into Graylog. ELK stack also widely used, but that requires more setting up. Depending on your needs, this can be up and running in minutes if using the OVA. **What problems is Graylog solving and how is that benefiting you?** We initially set this up to do basic monitoring of various SQL, disk, and logon events in our Windows environment. Once it was up and running, we saw the large amount of data we could analyze and our dashboards have been expanding ever since. From all this new insight we have been able to address issues we didn't even know were happening. ### 48. GraylogReview **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Logistics and Supply Chain | Mid-Market (51-1000 emp.) **Reviewed Date:** November 06, 2018 **What do you like best about Graylog?** I like graylog ability to ingest data from variety of sources, run analytics, and extremely fast searches. **What do you dislike about Graylog?** Well, not really dislike, but I would be happy if graylog introduce more dashboard graphs something like kibana, rules simulation engine to test the rules, how to use rules with real examples (documentation), ability to run search queries based on Boolean logic between 2 different documents [correlation] for example show data from all the events where logon id matches (something like vlookup/slookup but enhanced), ability to download automatic correlation rules something like alienvault ossim. **What problems is Graylog solving and how is that benefiting you?** We have used graylog for security and we have good success with it. ### 49. Great Solution **Rating:** 4.0/5.0 stars **Reviewed by:** Thiago B. | Defensive Security Leader, Information Technology and Services, Enterprise (> 1000 emp.) **Reviewed Date:** November 06, 2018 **What do you like best about Graylog?** Speedy Searches and Normalized Logs. The interface is easy to use and bery intuitive. The Indices are Flexibles. **What do you dislike about Graylog?** Archiving feature is limited and lack of a better integration to Cloud Storages like Azure Blob and GCP. in addition do Amazon S3. **Recommendations to others considering Graylog:** Try to use a High Availability setup. It increases search speedy and make you environment secure **What problems is Graylog solving and how is that benefiting you?** Normalized Log Storage ofr Compliance and Regulatory purposes. ### 50. Finally, all your log data available and accessible in one central location **Rating:** 4.5/5.0 stars **Reviewed by:** Serhii M. | Sales Specialist, Information Technology and Services, Mid-Market (51-1000 emp.) **Reviewed Date:** July 24, 2018 **What do you like best about Graylog?** Audit Log records and stores actions taken by a user or administrator that make changes in your Graylog system. With the new archiving functionality in Graylog Enterprise, you can now store everything older than 30 days on slow storage and only re-import it into Graylog when you need it. **What do you dislike about Graylog?** Search through terabytes of log data to discover and analyze important information. Now they have a powerful search syntax, which makes browsing process easier, but before it was a little bit confusing. Visualize metrics and statistics could be more creative and you wish simply for more. **Recommendations to others considering Graylog:** This software has a nice prices for business usage and as well the search is really good developed. If you will need to get an information from the past it will not be a problem for you to do that. So considering this soft for business is a really good idea. I will highly recommend that product for new users. First of all try it for some time before grading it. **What problems is Graylog solving and how is that benefiting you?** We are using this product to work with data that we gather through out the working time. It helps to collect and gather data properly, so whenever you will need to check your archive you will know where to look for a specific information. ## Graylog Discussions - [Can we integrated with service now for event management.](https://www.g2.com/discussions/can-we-integrated-with-service-now-for-event-management) - 1 comment, 1 upvote - [What is your experience with Graylog in managing log data, and what features do you find most useful?](https://www.g2.com/discussions/what-is-your-experience-with-graylog-in-managing-log-data-and-what-features-do-you-find-most-useful) - 1 comment - [View Graylog pricing details and edition comparison](https://www.g2.com/products/graylog/reviews?page=2§ion=pricing&secure%5Bexpires_at%5D=2026-05-30+07%3A22%3A20+-0500&secure%5Bsession_id%5D=2df3eb07-c510-4ef7-81b8-4d04d9de497d&secure%5Btoken%5D=100d83bcad8155162f1efba5eaeb906b876c91ab1bc5ae9e1b18337c462c55d6&format=llm_user) ## Graylog Integrations - [1Password](https://www.g2.com/products/1password/reviews) - [Active Directory Auditing Tool](https://www.g2.com/products/active-directory-auditing-tool/reviews) - [Amazon AWS Platform](https://www.g2.com/products/amazon-aws-platform/reviews) - [Amazon EventBridge](https://www.g2.com/products/amazon-eventbridge/reviews) - [AWS Security Hub](https://www.g2.com/products/aws-security-hub/reviews) - [Azure Active Directory Domain Services](https://www.g2.com/products/azure-active-directory-domain-services/reviews) - [Azure Portal](https://www.g2.com/products/azure-portal/reviews) - [Cisco Adaptive Security Virtual Appliance (ASAv)](https://www.g2.com/products/cisco-adaptive-security-virtual-appliance-asav/reviews) - [CrowdStrike Security Services](https://www.g2.com/products/crowdstrike-security-services/reviews) - [Docker](https://www.g2.com/products/docker-inc-docker/reviews) - [Google Cloud Code](https://www.g2.com/products/google-cloud-code/reviews) - [Google Cloud Platform (GCP) - Alliance](https://www.g2.com/products/google-cloud-platform-gcp-alliance/reviews) - [Google Workspace](https://www.g2.com/products/google-workspace/reviews) - [Grafana Labs](https://www.g2.com/products/grafana-labs/reviews) - [ITSM 365](https://www.g2.com/products/itsm-365/reviews) - [Json](https://www.g2.com/products/json/reviews) - [Kubernetes](https://www.g2.com/products/american-cloud-kubernetes/reviews) - [Microsoft 365](https://www.g2.com/products/microsoft365/reviews) - [NetBox](https://www.g2.com/products/netbox-labs-netbox/reviews) - [NXLog](https://www.g2.com/products/nxlog/reviews) - [Okta](https://www.g2.com/products/okta/reviews) - [Palo Alto Networks Cloud NGFW](https://www.g2.com/products/palo-alto-networks-cloud-ngfw/reviews) - [QualySec](https://www.g2.com/products/qualysec/reviews) - [Salesforce CRM Connector](https://www.g2.com/products/salesforce-crm-connector/reviews) - [ServiceNow Connector](https://www.g2.com/products/servicenow-connector/reviews) - [Slack](https://www.g2.com/products/slack/reviews) - [SOC Prime Services](https://www.g2.com/products/soc-prime-services/reviews) - [Tenable Cloud Security](https://www.g2.com/products/tenable-tenable-cloud-security/reviews) - [Wazuh](https://www.g2.com/products/wazuh/reviews) ## Graylog Features **Visibility** - Dashboards and Visualizations - Alerts and Notifications - Reporting **Data Preparation** - Data Sources - Indexing - Automated Tagging - Data Blending **Network Management** - Activity Monitoring - Asset Management - Log Management **Monitoring and Management** - Automation - Performance Baseline - Real-Time Monitoring **Analysis** - Track Trends - Detect Anomalies - Metric and Event Data - Search - Alerts - Live Tail **Incident Management** - Event Management - Automated Response - Incident Reporting **Visualization** - Dashboards - Data Discovery **Agentic AI - Log Monitoring** - Autonomous Task Execution - Multi-step Planning - Natural Language Interaction - Decision Making **Security Intelligence** - Threat Intelligence - Vulnerability Assessment - Advanced Analytics - Data Examination **Agentic AI - Security Information and Event Management (SIEM)** - Autonomous Task Execution - Multi-step Planning - Decision Making **Agentic AI - Log Analysis** - Autonomous Task Execution - Multi-step Planning - Natural Language Interaction - Decision Making ## Top Graylog Alternatives - [Datadog](https://www.g2.com/products/datadog/reviews) - 4.4/5.0 (694 reviews) - [Splunk Enterprise](https://www.g2.com/products/splunk-enterprise/reviews) - 4.3/5.0 (414 reviews) - [Logz.io](https://www.g2.com/products/logz-io/reviews) - 4.5/5.0 (163 reviews)