Devo vs Graylog comparison

Devo and Graylog are both solutions in the Log Management category. Devo is ranked #25 with an average rating of 8.3, while Graylog is ranked #18 with an average rating of 6.5. Devo holds a 0.7% mindshare in LM, compared to Graylog’s 6.5% mindshare. Additionally, 95% of Devo users are willing to recommend the solution, compared to 94% of Graylog users who would recommend it.

Devo

Read 22 Devo reviews

2,786 Views
1,214 Comparison Views

95% willing to recommend

Graylog

Read 18 Graylog reviews

9,501 Views
8,322 Comparison Views

94% willing to recommend

Devo

Graylog

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 9, 2024

Graylog and Devo are competitive in the log management solutions category, with Devo slightly leading due to its advanced features and higher user satisfaction.

Features: Graylog offers effective search capabilities, intuitive usability, and cost-efficient performance, making it appealing to budget-conscious users. Devo provides real-time analytics, comprehensive data visualization, and extensive functionality, attracting those requiring sophisticated solutions.

Room for Improvement: Graylog needs improved documentation, enhanced alerting, and more user-friendly interfaces. Devo could benefit from refining its query language, streamlining navigation, and reducing the complexity of its tools.

Ease of Deployment and Customer Service: Graylog is known for easy deployment backed by strong customer support, aiding users with fewer technical resources. Devo's deployment necessitates more initial setup but is supported by responsive customer service, maintaining parity with Graylog in overall support quality.

Pricing and ROI: Graylog offers a cost-effective solution with notable ROI, ideal for small to medium enterprises. Devo, with higher initial costs, delivers satisfactory ROI due to its advanced features, making it an attractive investment for larger enterprises seeking extensive capabilities.

To learn more, read our detailed Devo vs. Graylog Report (Updated: December 2024).

Buyer's Guide

Devo vs. Graylog

December 2024

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

Devo

Ranking in Log Management

25th

Average Rating

8.4

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (28th), IT Operations Analytics (4th), AIOps (16th)

Graylog

Ranking in Log Management

18th

Average Rating

8.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of December 2024, in the Log Management category, the mindshare of Devo is 0.7%, down from 1.1% compared to the previous year. The mindshare of Graylog is 6.5%, up from 5.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Log Management

Featured Reviews

Michael Wenn

CEO / Co-Founder at Aiops ltd

Has cloud-first architecture with SIEM technology to run security operations

When it comes to scale, they're architected quite well. They handle some of the biggest customers globally, with significant throughput on their platform, managing thousands of customers. One of the most impressive aspects of Devo is its customer community. A large majority, over 80 percent of their customers, actively participate on a Devo-specific community page. They're contributing to product development and support, events, and user group information, helping each other out. This high level of engagement is rare and demonstrates both the loyalty of their customer base and the quality of their product. They offer a range of small, medium, and large options to cater to everyone. I sold Devo products while working with them, focusing on enterprise solutions. However, as a small reseller, my customers were typically smaller businesses. I rate the solution's scalability a nine out of ten.

Read full review

Nicolae CIornii

Security Officer at BC Energbank S.A.

Stable solution with room for improvement in interactivity and user-friendliness

We have tested IBM QRadar and now use it. First of all, the key factor is the pricing. I saw that IBM QRadar has an interactive dashboard, providing valuable insights to people. Additionally, I've seen that IBM QRadar has an agent that simplifies installations across various platforms without requiring intricate configurations. Also, IBM QRadar has automatic reporting.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"One of the biggest features of the UI is that you see the actual code of what you're doing in the graphical user interface, in a little window on the side. Whatever you're doing, you see the code, what's happening. And you can really quickly switch between using the GUI and using the code. That's really useful."

"Those 400 days of hot data mean that people can look for trends and at what happened in the past. And they can not only do so from a security point of view, but even for operational use cases. In the past, our operational norm was to keep live data for only 30 days. Our users were constantly asking us for at least 90 days, and we really couldn't even do that. That's one reason that having 400 days of live data is pretty huge. As our users start to use it and adopt this system, we expect people to be able to do those long-term analytics."

"The most powerful feature is the way the data is stored and extracted. The data is always stored in its original format and you can normalize the data after it has been stored."

"It centralizes security management within a business, functioning as a core system for a SOC."

"The user experience [is] well thought out and the workflows are logical. The dashboards are intuitive and highly customizable."

"The alerting is much better than I anticipated. We don't get as many alerts as I thought we would, but that nobody's fault, it's just the way it is."

"Devo helps us to unlock the full power of our data because they have more than 450 parsers, which means that we can ingest pretty much any type of log data."

"The user interface is really modern. As an end-user, there are a lot of possibilities to tailor the platform to your needs, and that can be done without needing much support from Devo. It's really flexible and modular. The UI is very clean."

More Devo pros

"We run a containerized microservices environment. Being able to set up streams and search for errors and anomalies across hundreds of containers is why a log aggregation platform like Graylog is valuable to us."

"The build is stable and requires little maintenance, even compared to some extremely expensive products."

"Real-time UDP/GELF logging and full text-based searching."

"Message forwarding through the in-built module."

"We have scaled from a single machine installation (a VM with a Graylog + ES + MongoDB) to (2 Graylog + 2 ES + 3 MongoDB). This was done smoothly with a minimal impact on logging."

"UDP is a fast and lightweight protocol, perfect for sending large volumes of logs with minimal overhead."

"One of the most valuable features is that you are able to do a very detailed search through the log messages in the overview."

"Graylog's search functionality, alerting functionality, user management, and dashboards are useful."

More Graylog pros

Cons

"The Activeboards feature is not as mature regarding the look and feel. Its functionality is mature, but the look and feel is not there. For example, if you have some data sets and are trying to get some graphics, you cannot change anything. There's just one format for the graphics. You cannot change the size of the font, the font itself, etc."

"Devo has a lot of cloud connectors, but they need to do a little bit of work there. They've got good integrations with the public cloud, but there are a lot of cloud SaaS systems that they still need to work with on integrations, such as Salesforce and other SaaS providers where we need to get access logs."

"My opinion on the solution's technical support is not as great as it could be because of the issues I have faced regarding the service management element."

"Some third-parties don't have specific API connectors built, so we had to work with Devo to get the logs and parse the data using custom parsers, rather than an out-of-the-box solution."

"The price is one problem with Devo."

"There's always room to reduce the learning curve over how to deal with events and machine data. They could make the machine data simpler."

"An admin who is trying to audit user activity usually cannot go beyond a day in the UI. I would like to have access to pages and pages of that data, going back as far as the storage we have, so I could look at every command or search or deletion or anything that a user has run. As an admin, that would really help. Going back just a day in the UI is not going to help, and that means I have to find a different way to do that."

"There is room for improvement in the ability to parse different log types. I would go as far as to say the product is deficient in its ability to parse multiple, different log types, including logs from major vendors that are supported by competitors. Additionally, the time that it takes to turn around a supported parser for customers and common log source types, which are generally accepted standards in the industry, is not acceptable. This has impacted customer onboarding and customer relationships for us on multiple fronts."

More Devo cons

"Dashboards, stream alerts and parsing could be improved."

"More complex visualizations and the ability to execute custom Elasticsearch queries would be great."

"I would like to see a default dashboard widget that shows the topology of the clusters defined for the graylog install."

"Over six months, I had two similar issues where searches were performed on field "messages". It exhausted all the memory of the ES node causing an ES crash and a Graylog halt."

"Its scalability gets complicated when we have to update or edit multiple nodes."

"Graylog needs to improve their authentication. Also, the fact that Graylog displays logs from the top down is just ridiculous."

"Elasticsearch recommendations for tuning could be better. Graylog doesn't have direct support for running the system inside of Kubernetes, so it can be challenging to fill in the gaps and set up containers in a way that is both performant and stable."

"Since container orchestration systems are popular and Graylog fits the niche well, perhaps they could officially support running in docker containers on Kubernetes as a StatefulSet as a use case. That way, the declarative nature of Kubernetes config files would document their best case deployment scenario-"

More Graylog cons

Pricing and Cost Advice

"I'm not involved in the financial aspect, but I think the licensing costs are similar to other solutions. If all the solutions have a similar cost, Devo provides more for the money."

"It's a per gigabyte cost for ingestion of data. For every gigabyte that you ingest, it's whatever you negotiated your price for. Compared to other contracts that we've had for cloud providers, it's significantly less."

"Pricing is based on the number of gigabytes of ingestion by volume, and it's on a 30-day average. If you go over one day, that's not a big deal as long as the average is what you expected it to be."

"Be cautious of metadata inclusion for log types in pricing, as there are some "gotchas" with that."

"Devo is definitely cheaper than Splunk. There's no doubt about that. The value from Devo is good. It's definitely more valuable to me than QRadar or LogRhythm or any of the old, traditional SIEMs."

"[Devo was] in the ballpark with at least a couple of the other front-runners that we were looking at. Devo is a good value and, given the quality of the product, I would expect to pay more."

"The way Devo prices things is based on the amount of data, and I wish the tiers had more granularity. Maybe at this point they do, but when we first negotiated with them, there were only three or four tiers."

"We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the same way as any other customer, e.g., we use the backroom."

More Devo pricing and cost advice

"If you want something that works and do not have the money for Splunk or QRadar, take Graylog."

"Graylog is a free open-source solution. The free version has a capacity limitation of 2 GB daily, if you want to go above this you have to purchase a license."

"You get a lot out-of-the-box with the non-enterprise version, so give it a try first."

"Having paid official support is wise for projects."

"It's an open-source solution that can be used free of charge."

"Consider Enterprise support if you have atypical needs or setup requirements."

"We are using the free version of the product. However, the paid version is expensive."

"I use the free version of Graylog."

More Graylog pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Log Management solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

13%

Government

University

Computer Software Company

17%

Comms Service Provider

Government

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Devo?

Devo has a really good website for creating custom configurations.

See all answers

What is your experience regarding pricing and costs for Devo?

Compared to Splunk or SentinelOne, it is really expensive. I rate the product’s pricing a nine out of ten, where one is cheap and ten is expensive.

See all answers

What needs improvement with Devo?

They can improve their AI capabilities. If you look at some integrations like XDR or AI, which add to the platform to correlate situations in events, there are areas for enhancement. For instance, ...

See all answers

What do you like most about Graylog?

The product is scalable. The solution is stable.

See all answers

What is your experience regarding pricing and costs for Graylog?

We are using the free version of the product. However, the paid version is expensive.

See all answers

What needs improvement with Graylog?

Since it's a free tool, I don't have much to say. Troubleshooting is important to me. The initial setup is complex. I hope to see improvements in Graylog for more interactivity, user-friendliness, ...

See all answers

Comparisons

Splunk Enterprise Security vs Devo

Compared 22% of the time

IBM Security QRadar vs Devo

Compared 19% of the time

Microsoft Sentinel vs Devo

Compared 15% of the time

LogRhythm SIEM vs Devo

Compared 8% of the time

Wazuh vs Devo

Compared 7% of the time

More Devo Competitors

Grafana Loki vs Graylog

Compared 44% of the time

Wazuh vs Graylog

Compared 21% of the time

syslog-ng vs Graylog

Compared 10% of the time

Security Onion vs Graylog

Compared 4% of the time

Fortinet FortiAnalyzer vs Graylog

Compared 3% of the time

More Graylog Competitors

Product Reports

Buyer's Guide

Devo

December 2024

Download Devo product report

Buyer's Guide

Graylog

December 2024

Download Graylog product report

Also Known As

No data available

Graylog2

Learn More

Devo

Graylog

Overview

Devo is the only cloud-native logging and security analytics platform that releases the full potential of all your data to empower bold, confident action when it matters most. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.

Graylog is purpose-built to deliver the best log collection, storage, enrichment, and analysis. Graylog is:

Considerably faster analysis speeds.
More robust and easier-to-use analysis platform.
Simpler administration and infrastructure management.
Lower cost than alternatives.
Full-scale customer service.
No expensive training or tool experts required.

Sample Customers

United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel

Blue Cross Blue Shield, eBay, Cisco, LinkedIn, SAP, King.com, Twilio, Deutsche Presse-Agentur

Buyer's Guide

Devo vs. Graylog

December 2024

Free Report: Devo vs. Graylog

Find out what your peers are saying about Devo vs. Graylog and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our Devo vs. Graylog report.

See our list of best Log Management vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.