Cribl Search is a unified log search and investigation platform that answers data questions with AI-assisted insights.

One Place to Search All Your Data

​

Combine fast ingest-based search with search-in-place
Ingest data directly into Cribl Search for high-speed access, while running federated queries on unindexed data stored elsewhere.

Understand your data before searching it
Explore your data and see available fields before writing a query.

Run AI-native investigations
Investigate incidents with AI guidance and capture your findings in one workspace.

Collaborate in Notebooks
Combine queries, visualizations, and Markdown notes in shareable Notebooks.

Visualize results
Build charts and Dashboards from your searches, track key metrics, and share live views with others.

Get alerted
Schedule searches, watch for spikes or outliers, and send alerts to your existing tools.

Scale with Packs
Install or build custom Packs of Dashboards, saved searches, Macros, and lookups.

Many Engines, One Interface

​

Lakehouse engines host and accelerate your data. You can:

• Onboard data directly from existing pipelines, APIs, webhooks, agents.
• Shape, filter, and enrich events on ingest.
• Organize your data into Search Datasets and fine-tune their retention.

The federated engine connects to external data without indexing, so you can:

• Query data where it lives: object stores, analytics services, APIs, and more.
• Search across multiple systems at once without copying data around.
• Run queries natively on AWS and Azure.

A unified interface lets you:

• Run lakehouse queries and federated searches side by side without switching tools.
• Use the same query language and natural-language prompts for both types of searches.
• Investigate incidents across both backends with AI guidance and capture the full story in a single Notebook.

Read the Docs

​

Overview

​

• Concepts: Get a glossary-level overview of Cribl Search’s core building blocks.
• Quick Start: Create a Cribl.Cloud Organization to run your first search.
• Cribl Search Tour: Find your way around the Cribl Search UI.

Setup

​

• Get Data In: Ingest data into a lakehouse engine.
• Connect to External Data: Set up federated search for data stored elsewhere.
• Manage: Control engines, access, and system limits.

Search & Analysis

​

• Search: Learn how to build efficient queries.
• Investigate: Answer data questions with Notebooks and AI-driven workflows.
• Visualize: Turn search results into charts and Dashboards.
• Alert: Schedule searches and send notifications.

Reference

​

• Language Reference: Learn Kusto Query Language that powers your queries.
• API Workflows: Run searches programmatically.
• API Reference: Full API reference for Cribl Search.