Useful and free SIEM tool
June 16, 2022

Useful and free SIEM tool

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Software Version

Graylog Open

Overall Satisfaction with Graylog

Allows insight into logs from various systems and products that would otherwise be time consuming to access and identify. Dashboards can be customised to your preferences and Alerts/emails can be defined when specific events or patterns occur, which is not possible directly from the log source. Our use case is primarily security related looking at access/sign-in logs from various platforms and then sending alerts as required.
  • Ingesting various log sources
  • Dashboards - Customisable
  • Event alerts/emails
  • Support for more log sources
  • Event alerts/emails - Some cases where unable to separate data from multiple clients, and no easy fix
  • API - Limits results to 10,000 and can cause server to lockup on queries that exceed the limit
  • Multiple log sources
  • Customisable Dashboards
  • Event alerts/emails
  • Able to offer monitoring services to new and existing clients to increase revenue
  • Staff have increased billing percentage
  • Potential to expand security services

Do you think Graylog delivers good value for the price?


Are you happy with Graylog's feature set?


Did Graylog live up to sales and marketing promises?

I wasn't involved with the selection/purchase process

Did implementation of Graylog go as expected?

I wasn't involved with the implementation phase

Would you buy Graylog again?


Well suited for scenarios such as:
  • Detecting user OS logins, or user logins from unknown IPs etc.
  • Access attempts made on a firewall or other network infrastructure
  • Monitoring changes to Active Directory Groups
Less suited for scenarios where logs and alerts are time critical, soon as an event occurs an alert is generated and sent