Graylog vs Logstash comparison

Graylog and Elastic are both solutions in the Log Management category. Graylog is ranked #17 with an average rating of 6.5, while Elastic is ranked #32 with an average rating of 10.0. Graylog holds a 6.4% mindshare in LM, compared to Elastic’s 0.5% mindshare. Additionally, 94% of Graylog users are willing to recommend the solution, compared to 100% of Elastic users who would recommend it.

Graylog

Read 18 Graylog reviews

9,650 Views
8,360 Comparison Views

94% willing to recommend

Logstash

Read 1 Logstash review

428 Views
402 Comparison Views

100% willing to recommend

Graylog

Logstash

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Graylog and Logstash based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management.

To learn more, read our detailed Log Management Report (Updated: November 2024).

Buyer's Guide

Log Management

November 2024

Download the complete report

Helped 816,636 peers since 2012

Categories and Ranking

Graylog

Ranking in Log Management

17th

Average Rating

8.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Logstash

Ranking in Log Management

32nd

Average Rating

10.0

Reviews Sentiment

7.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of November 2024, in the Log Management category, the mindshare of Graylog is 6.4%, up from 5.4% compared to the previous year. The mindshare of Logstash is 0.5%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Log Management

Featured Reviews

Nicolae CIornii

Security Officer at BC Energbank S.A.

Stable solution with room for improvement in interactivity and user-friendliness

We have tested IBM QRadar and now use it. First of all, the key factor is the pricing. I saw that IBM QRadar has an interactive dashboard, providing valuable insights to people. Additionally, I've seen that IBM QRadar has an agent that simplifies installations across various platforms without requiring intricate configurations. Also, IBM QRadar has automatic reporting.

Read full review

Mustafa Husny

Senior System Engineer at Techline-eg

Helps to collect logs from various data sources, including hardware

I use Logstash primarily for connecting logs from hardware. This is the main use case. The second use case involves making correlations between logs from various sources. I can collect logs from various data sources, including hardware. The product needs to improve its compatibility. I rate…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Message forwarding through the in-built module."

"We run a containerized microservices environment. Being able to set up streams and search for errors and anomalies across hundreds of containers is why a log aggregation platform like Graylog is valuable to us."

"It is used as a log manager/SIEM. It provides visibility into the infrastructure and security related events."

"The ability to write custom alerts is key to information security and compliance."

"We have scaled from a single machine installation (a VM with a Graylog + ES + MongoDB) to (2 Graylog + 2 ES + 3 MongoDB). This was done smoothly with a minimal impact on logging."

"The best feature of Graylog is the Elasticsearch integration. We can integrate and we can run filters, such as an event of interest, and those logs we can send to any SIEM tool or as an analytic. Additionally, there are clear and well-documented implementation instructions on their website to follow if needed."

"Real-time UDP/GELF logging and full text-based searching."

"UDP is a fast and lightweight protocol, perfect for sending large volumes of logs with minimal overhead."

More Graylog pros

"I can collect logs from various data sources, including hardware."

Cons

"Its scalability gets complicated when we have to update or edit multiple nodes."

"Graylog needs to improve their authentication. Also, the fact that Graylog displays logs from the top down is just ridiculous."

"The biggest problem is the collector application, as we wanted to avoid using Graylog Collector Sidecar due to its architecture."

"With technical support, you are on your own without an enterprise license."

"Lacks sufficient documentation."

"I would like to see a default dashboard widget that shows the topology of the clusters defined for the graylog install."

"More customization is always useful."

"Graylog could improve the process of creating rules. We have to create them manually by doing parses and applying them. Other SIEM solutions have basic rules and you can create and get more events of interest."

More Graylog cons

"The product needs to improve its compatibility."

Pricing and Cost Advice

"Graylog is a free open-source solution. The free version has a capacity limitation of 2 GB daily, if you want to go above this you have to purchase a license."

"I use the free version of Graylog."

"Consider Enterprise support if you have atypical needs or setup requirements."

"It's an open-source solution that can be used free of charge."

"You get a lot out-of-the-box with the non-enterprise version, so give it a try first."

"If you want something that works and do not have the money for Splunk or QRadar, take Graylog."

"It's open source and free. They have a paid version, but we never looked into that because we never needed the features of the paid version."

"We are using the free version of the product. However, the paid version is expensive."

More Graylog pricing and cost advice

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Log Management solutions are best for your needs.

See recommendations

816,636 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Comms Service Provider

Government

University

Financial Services Firm

17%

Computer Software Company

14%

Government

Media Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Graylog?

The product is scalable. The solution is stable.

See all answers

What is your experience regarding pricing and costs for Graylog?

We are using the free version of the product. However, the paid version is expensive.

See all answers

What needs improvement with Graylog?

Since it's a free tool, I don't have much to say. Troubleshooting is important to me. The initial setup is complex. I hope to see improvements in Graylog for more interactivity, user-friendliness, ...

See all answers

What do you like most about Logstash?

I can collect logs from various data sources, including hardware.

See all answers

What needs improvement with Logstash?

The product needs to improve its compatibility.

See all answers

What is your primary use case for Logstash?

I use Logstash primarily for connecting logs from hardware. This is the main use case. The second use case involves making correlations between logs from various sources.

See all answers

Comparisons

Grafana Loki vs Graylog

Compared 45% of the time

Wazuh vs Graylog

Compared 21% of the time

syslog-ng vs Graylog

Compared 10% of the time

Security Onion vs Graylog

Compared 4% of the time

Fortinet FortiAnalyzer vs Graylog

Compared 3% of the time

More Graylog Competitors

Cribl vs Logstash

Compared 47% of the time

syslog-ng vs Logstash

Compared 27% of the time

Grafana Loki vs Logstash

Compared 16% of the time

Wazuh vs Logstash

Compared 10% of the time

More Logstash Competitors

Product Reports

Buyer's Guide

Graylog

November 2024

Download Graylog product report

Buyer's Guide

Log Management

November 2024

Download Logstash product report

Also Known As

Graylog2

No data available

Learn More

Graylog

Video not available

Elastic

Overview

Graylog is purpose-built to deliver the best log collection, storage, enrichment, and analysis. Graylog is:

Considerably faster analysis speeds.
More robust and easier-to-use analysis platform.
Simpler administration and infrastructure management.
Lower cost than alternatives.
Full-scale customer service.
No expensive training or tool experts required.

Logstash is a versatile data processing pipeline that ingests data from multiple sources, transforms it, and sends it to preferred destinations, enabling seamless data utilization across systems.

Logstash provides an efficient and flexible way to manage data flow, supporting diverse input sources and offering a rich set of plugins. Its real-time processing capability and ease of integration with Elasticsearch make it advantageous for businesses looking to enhance data analytics. While valuable, Logstash can benefit from improvements like scalability enhancements and more robust error-handling mechanisms.

What are the key features of Logstash?

Input Plugin Support: Connects to a wide range of data sources for seamless ingestion.
Filter Plugin: Processes and enriches logs before output.
Output Plugin Flexibility: Delivers data to various endpoints efficiently.
Real-Time Pipeline: Processes data in real-time for immediate insights.

What benefits does Logstash provide?

Enhanced Data Processing: Streamlines data ingestion and transformation workflows.
Improved Analytics: Facilitates deeper insights through seamless Elasticsearch integration.
Cost Efficiency: Reduces total expenses by optimizing data handling processes.
Scalability: Adapts to diverse data volumes and use cases.

Industries like finance and e-commerce leverage Logstash for managing extensive log data and improving decision-making by feeding enriched data into analytics platforms. Its ability to handle diverse formats and integrate with Elastic Stack has proven crucial in implementing comprehensive data strategies.

Sample Customers

Blue Cross Blue Shield, eBay, Cisco, LinkedIn, SAP, King.com, Twilio, Deutsche Presse-Agentur

Information Not Available

Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management. Updated: November 2024.

DOWNLOAD NOW

816,636 professionals have used our research since 2012.

See our list of best Log Management vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.