Overview
Product Information on Graylog
What is Graylog?
Graylog Pricing
Graylog Product Images
Overall experience with Graylog
“Graylog Simplifies Centralized Log Management and Troubleshooting Across Multiple Servers”
“Difficult Set-Up Challenges with Product Implementation”
About Company
Company Description
Deployed in over 50,000 installations worldwide, Graylog captures, stores, and analyzes terabytes of machine data in real-time to detect threats faster, investigate issues efficiently, and simplify compliance—without drowning in noise. Graylog delivers an affordable, flexible architecture that meets the evolving needs of IT and security teams—whether hosted by us, on-premises, or in your cloud. Started as an open-source project, it has grown into a platform offering SIEM, API Security, and Enterprise Log Management with built-in SOAR capabilities to automate and accelerate response. Graylog’s machine learning, real-time monitoring, and AI-assisted investigation tools streamline workflows, reduce alert fatigue, and optimize security operations. With a vision of a secure digital world, we provide threat detection and response that delivers a strong analyst experience while maintaining cost efficiency, ensuring organizations stay ahead of ever-evolving cyber threats.
Company Details
Do You Manage Peer Insights at Graylog?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
User Sentiment About Graylog
Reviewer Insights for: Graylog
Deciding Factors: Graylog Vs. Market Average
Performance of Graylog Across Market Features
Graylog Likes & Dislikes
- Creating Dashboards based on filters is great and easy. It's no different than filtering day-to-day tasks. - Powerful search and filtering. - Versatility in OS/Vendor support. - There is a community version available.
Does a good job of collecting logs.
- The modularity in inputs, outputs, and processing - The fact that it is free and open source and the non-enterprise version is actually good.
You cannot create a read-only user for dashboarding on our TV that displays the system overview: - Indices problems - Graylog outdated version view - System messages
Setup is difficult.
- Setting up the correct parsing & processing of new types of logs requires some time & knowledge. Without prior knowledge it is daunting to learn about input extractors with grok patterns, streams and pipelines with the pipeline rules DSL and on top of that you also need to understand the Graylog search syntax. - Due to the nature of Elasticsearch/Opensearch modifying or deleting logs is complicated, and field types can only be changed by rotating the index
Top Graylog Alternatives
Peer Discussions
Graylog Reviews and Ratings
- Vp, Engineering<50M USDIT ServicesReview Source
Graylog Simplifies Centralized Log Management and Troubleshooting Across Multiple Servers
We have been using Graylog Community edition since 2018. Since then our experience with Graylog has been excellent. It has significantly simplified the process of monitoring and analyzing logs across multiple servers. The intuitive interface and powerful search capabilities make troubleshooting and log analysis faster and more efficient. For example, we use Graylog to keep track of all Active Directory changes and replaced our old fashioned email reports. Also, determining the source of an account lockout has never been easier. Which saves us a lot of time compared to diving into log files on our several domain controllers on different sites. We even created a PowerShell script that calls the Graylog API to get the results even faster. We currently stream logs from Cisco Switches, Routers, ASA, FTD and ISE as well as our Microsoft Print server and VMWare ESXi nodes. Key highlights for us are: - Centralized Log Management: View logs from different servers and appliances. - Dashboards and metrics: The dashboards provide real-time insights into critical metrics, such as Active Directory logins for service accounts. This helps us stay proactive and maintain security compliance like ISO 27001 and NIS2. - Error resolution: Graylog has been instrumental in diagnosing and resolving transient errors when querying AD in various PowerShell Scripts. This has improved the reliability of our automation processes. - Log forwarder to our SIEM: Since our externally managed SIEM does not require all logs generated by our firewalls (FTD/ASA), we use Graylog to selectively filter and forward only the security-relevant messages to our SOC. We highly recommend it for organizations seeking a centralized and scalable logging solution. - It Associate<50M USDSoftwareReview Source
Graylog Offers Effective Log Aggregation, But Has Steep Configuration Learning Curve
Graylog is a nice service to gather & aggregate relatively large amounts of logs for debugging, operational, and security purposes. In my experience, Graylog works well for this. I wouldn't recommend it (the free version) however to people looking for a plug&play SIEM in a box. For instance: while it is possible to configure dashboards and alerts, it doesn't know about vulnerabilities out of the box. Graylog has nice visualization options, but these have their limits. If you want to make advanced dashboards you might want to combine it with an external graphing tool. This is also advisable if you want to combine logs & metric data: while you can store metrics in Graylog, I wouldn't recommend it and instead limit Graylog to actual logs. It does use its own query language, but this isn't too complicated and the web interface makes it easy to build a query by including and excluding properties of shown logs, without having to know the query language by heart. - IT Associate<50M USDIT ServicesReview Source
Graylog Offers Minimal Maintenance and Quick Data Access After Initial Setup
Graylog is easy to set up and has ample documentation with broad explanation what each setting means. Once set up the maintenance work is minimal. It's easy to use, digging through TiB's amount of data within a few seconds. The dashboarding can be set up quickly without fiddling with 1000s of parameters. Even when you forget to expand your disks the entire application doesn't break down completely and can be repaired pretty easily with minimal data loss. - IT AssociateGov't/PS/EdEducationReview Source
Graylog Does What It Says on the Tin Very Well, But Not Much Else (And That's Fine)
As an interface, Graylog works well. It is not designed for any serious analytics of those logs, but as an aggregation service, does fine. You just have to know what you can and cannot do with the product. Implementation and upgrades are somewhat tricky, as there are several, semi-documented steps you have to unravel, and some errors are opaque, with your only support being old community forum posts that don't apply to you. - IT Security Engineer<50M USDHealthcare and BiotechReview Source
Graylog: A High-Performing Log Management Solution with Minor Flaws
We've had Graylog now for a couple of months and we really like the product. It has a lot of possibilities and capabilities and is very easy to set up and maintain. The web interface is intuitive and highly customizable.