Blog

Want deeper insights? Read exclusive commentary from the Gravwell team on the issues that matter most.
Filter By

The Sky is no longer the limit. Gravwell blasts off into space.

As a Gravwell founder, it has been absolutely incredible to watch a growing team take a product that I started in a basement with my college buddy and create a powerhouse startup serving large...
Blog
07.27.2021

Top 5 Questions to Ask when Considering Log Management Solutions

Compare Scalability, Cost, and Performance There have been no shortage of self-proclaimed "Splunk Killers" and log analytics products throughout the years as hype and buzzwords get thrown about like...
Blog
06.03.2021

Threat Hunting, Spaf, Sun Tzu, and You

I often quote Spaf who says "A system is good if it does what it's supposed to do, and secure if it doesn't do anything else." Making our systems secure requires a few things. We first have to know...
Blog
05.27.2021

How to move to Gravwell from Splunk (or another platform)

As applications generate more data, as we adopt more IoT, and as more things move to cloud, log volumes explode. Traditional log management solutions have trouble keeping up and cause major budgeting...
Blog
05.13.2021

Add Threat Hunting to your SIEM with Gravwell

Enhance Security by Removing Limits SIEMs have historically done well in helping organizations detect threats. Modern threat activity has shown, however, that tracking pre-selected data and relying...
Blog
05.06.2021

What the HEC - Gravwell HTTP Ingester Supports Splunk Compatibility

The Gravwell HTTP ingester now supports a default config block that's compatible with Splunk HEC ingester defaults. To show this in action, we will use an awesome attacker simulation tool, Scythe and...
Blog
04.15.2021

Practical Application of MITRE ATT&CK

SC Magazine published an article headlined "SIEM rules ignore bulk of MITRE ATT&CK framework, placing risk burden on users." In the article, Bradley Barth writes about a study showing only 16 percent...
Blog
03.18.2021

What's in a Sysmon Event Pt. 2 - Network Connections

We're building a Gravwell Kit for Sysmon! This blog series examines some of the event types that Sysmon generates to see what data they contain, opportunities for enhancing security, and example...
Blog
10.09.2020

What's in a Sysmon Event Pt. 1 - Process creation

I'm building a Gravwell Kit for Sysmon! This blog series follows the development of that kit for the awesome (free) sensor for Windows EDR, Sysmon. In this series we'll look at each event type that...
Blog
09.03.2020

A personal short story about broken pricing models

This personal story I'm about to tell highlights one of the most important differentiators between Gravwell vs Splunk -- a non-abusive pricing model. Data rates aren't always predictable….
Blog
08.21.2019
1 2 3

Subscribe for Gravel Updates

Signup for the Gravwell newsletter to be the first to hear about announcements, new product features, events, and more.

TOP