Blog

Introducing Gravwell Macros

Nov 27, 2019 9:24:55 AM / by John Floren posted in Software Updates

0 Comments

One of the exciting new features in Gravwell 3.3.0 is search macros. Anyone who's experimented much with Gravwell knows you may often end up crafting a long and complex regular expression which you'll want to use over and over, but such a long regex makes the query hard to work with. Macros let you turn that long regular expression (or any other part of a search query) into a much shorter name you can use again and again.

Read More

Gravwell 3.3.0 - Overwatch Release

Nov 22, 2019 12:56:34 PM / by Kris Watts posted in Software Updates, DevOps Analytics

0 Comments

We are excited to announce the immediate availability of Gravwell version 3.3.0. This release being a Minor release features a few fairly significant features and a whole heap of bug fixes and performance improvements. Over the next couple of days we will be doing a series of blog posts for this release detailing each of the new things in Gravwell, but first we need need to show off the centerpiece of this release, Overwatch.

Read More

Introducing the Key-Value Search Module

Oct 1, 2019 2:35:15 PM / by John Floren posted in Gravwell Story, Software Updates, Logging

0 Comments

With Gravwell 3.2.4 we've introduced a new search module: kv, short for 'key-value'. This module is designed to help you extract key-value data from text entries without having to hand-craft regular expressions. It also interfaces with the fulltext indexer automatically, so you can analyze your indexed data more quickly.

Read More

Announcing Gravwell Version 3.2

Jul 31, 2019 9:26:42 AM / by John Floren posted in Software Updates, DevOps Analytics

0 Comments

We are happy to announce the immediate availability of Gravwell version 3.2.0!

Read More

New Gravwell Feature: Introducing Autoextractors

Feb 27, 2019 10:51:08 AM / by Kris Watts posted in Software Updates

0 Comments

We are excited to introduce autoextractors with Gravwell version 3.0.2.  Autoextractors make it easy for regex gurus and binary ninjas to generate extractions and share them in a portable format.  Autoextractors can dramatically simplify the process of performing field extractions from unstructured data without complicated time-of-ingest data definitions; they can built and shared by ninjas and and used by us mere mortals.

Read More

Fighting social media propaganda

Feb 19, 2019 9:55:00 AM / by John Floren posted in Software Updates, ingester, reddit

0 Comments

We're continuing to work with investigative reporters to research unscrupulous activity on social media. Most recently, Engadget published a piece on nefarious political influencers on Reddit. We’ve written in the past about analyzing social media comments, but didn’t make the ingesters publicly available. With an increasing need for research in this area, we decided that releasing our Reddit and Hacker News ingesters could help new users get started with Gravwell even faster, so we open-sourced them. Read on to learn how to get the ingesters, how to run them, and how to get started with the data.

Read More

Announcing Gravwell Version 3

Jan 24, 2019 10:44:56 AM / by Corey Thuen posted in Gravwell Story, Software Updates, Community Edition

0 Comments

Huge Gravwell updates today!

Thanks for your patience during this short period of radio silence, but it’s been for good reason. Today we’re happy to announce Gravwell version 3 which comes with a whole slew of delicious features and improvements.

The 2018 development year was primarily focused on improving search and ingest performance, scalability, and stability. We’ve made tremendous strides on this front and I’m excited to talk briefly about those here and in greater detail during the coming weeks. Our 2019 has a strong focus on improving out-of-the-box functionality -- keep reading for more info about the update and exciting plans for this year.

Read More

Gravwell 2.2.1 Released!

Aug 1, 2018 3:48:22 PM / by John Floren posted in Software Updates, ingester, docker, Community Edition

0 Comments

We’re pleased to announce the release of Gravwell 2.2.1! For a point release, it’s got some very cool new features; read on to learn what we’ve added.

Read More

Distributed Webserver Frontends in Gravwell

Apr 19, 2018 8:06:36 AM / by John Floren posted in Software Updates, docker, cluster

0 Comments

With the release of Gravwell 2.0, Gravwell customers can now deploy multiple webservers tied to a central storage system. This means you can deploy multiple webservers behind a load balancer for better search performance; the webservers synchronize resources, user accounts, dashboards, and search history behind the scenes so users don’t need to worry about which server they’re actually using.

Read More

Gravwell Release Update: Version 2 Lands

Apr 5, 2018 3:09:18 PM / by Corey Thuen posted in Gravwell Story, Software Updates

0 Comments

This week marks the release of a Gravwell version 2. It’s been a journey with plenty of long days and nights but we’re really excited about the new capabilities. We’ll be publishing a series of blog posts which go into details of the major points, but I’d like to discuss the highlights.

Read More