惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

T
The Exploit Database - CXSecurity.com
F
Fortinet All Blogs
U
Unit 42
F
Full Disclosure
雷峰网
雷峰网
博客园 - 司徒正美
云风的 BLOG
云风的 BLOG
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
T
Tailwind CSS Blog
The Cloudflare Blog
Last Week in AI
Last Week in AI
罗磊的独立博客
D
DataBreaches.Net
C
Check Point Blog
www.infosecurity-magazine.com
www.infosecurity-magazine.com
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
O
OpenAI News
C
CXSECURITY Database RSS Feed - CXSecurity.com
aimingoo的专栏
aimingoo的专栏
S
Security @ Cisco Blogs
大猫的无限游戏
大猫的无限游戏
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
S
SegmentFault 最新的问题
NISL@THU
NISL@THU
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The Hacker News
The Hacker News
Webroot Blog
Webroot Blog
Security Latest
Security Latest
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Google DeepMind News
Google DeepMind News
酷 壳 – CoolShell
酷 壳 – CoolShell
N
News | PayPal Newsroom
P
Proofpoint News Feed
B
Blog RSS Feed
MongoDB | Blog
MongoDB | Blog
C
Cybersecurity and Infrastructure Security Agency CISA
N
News and Events Feed by Topic
Google Online Security Blog
Google Online Security Blog
H
Help Net Security
Spread Privacy
Spread Privacy
T
Threat Research - Cisco Blogs
GbyAI
GbyAI
I
Intezer
Application and Cybersecurity Blog
Application and Cybersecurity Blog
M
MIT News - Artificial intelligence
Vercel News
Vercel News
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
IT之家
IT之家
MyScale Blog
MyScale Blog
腾讯CDC

Datadog | The Monitor blog

Introducing our open source AI-native SAST Instrument and monitor Boomi integration flows with OpenTelemetry and Datadog Not all index scans are equal: How we cut query latency by over 99% Platform engineering metrics: What to measure and what to ignore Integrate Recorded Future threat intelligence with Datadog Cloud SIEM CI/CD security: threat modeling using a MITRE-style threat matrix CI/CD security: How to secure your GitHub ecosystem Ingress NGINX is EOL: A practical guide for migrating to Kubernetes Gateway API Operating agentic AI with Amazon Bedrock AgentCore and Datadog LLM Observability: Lessons from NTT DATA Introducing the Datadog Code Security MCP Capture and analyze custom heatmaps in Session Replay Understand session replays faster with AI summaries and smart chapters Monitor ClickHouse query performance with Datadog Database Monitoring How we designed empathetic alert sounds for on-call engineers Search and act across Datadog to resolve issues faster with Bits Assistant Measure the business impact of every product change with Datadog Experiments Analyzing round trip query latency Configuring JavaScript caches for better performance Introducing Bits AI Dev Agent for Code Security Datadog achieves ISO 42001 certification for responsible AI Monitor Nutanix clusters, hosts, and VMs with Datadog Monitor Juniper Mist in Datadog A new Host Map for modern infrastructure Annotate traces to improve LLM quality with Datadog LLM Observability What’s new in Cloud SIEM: AI-powered investigations, enhanced threat intelligence, and scalable security operations Explore Kubernetes with native OpenTelemetry data Monitor Oracle Fusion Cloud Applications with Datadog Announcing the Datadog Terraform provider v4.0.0 Scaling Kubernetes workloads on custom metrics How to design cloud environments for AI-powered threat analysis Monitor Aruba Central in Datadog How we centralize and remediate risks with Datadog Case Management Accelerate incident response with Datadog and ServiceNow Monitor your application and network load balancer logs Understanding Karpenter architecture for Kubernetes autoscaling Tools for collecting metrics and logs from Karpenter Monitor Karpenter with Datadog What your product data is actually saying Key metrics for monitoring Karpenter Securing Datadog’s platform in the AI age: The role of observability data Four ways engineering teams use the Datadog MCP Server to power AI agents Approaching your observability migration with the right mindset Meet the new Bits AI SRE: Deeper reasoning, twice as fast Key learnings from the 2026 State of DevSecOps study Use plain English to query your multi-cloud infrastructure in Resource Catalog Simplifying troubleshooting across the user journey with Datadog Synthetic Monitoring Protect your OCI resources with Datadog Cloud Security This Month in Datadog - February 2026 Amazon EC2 security: How misconfigured and public AMIs expand your cloud attack surface Enable end-to-end visibility into your Java apps with a single command Measure and improve mobile app startup performance with Datadog RUM Evaluating our AI Guard application to improve quality and control cost Identify untested code across every level of your codebase Make use of guardrail metrics and stop babysitting your releases Monitor Versa Networks SD-WAN performance in Datadog Improve performance and reliability with APM Recommendations Remediate transitive vulnerabilities faster with Datadog Software Composition Analysis Generate audit-ready vulnerability and compliance reports with Datadog Sheets Monitor Fortinet FortiManager performance in Datadog Improve test coverage across codebases with Datadog Code Coverage Move fast, don’t break things: Consistent testing standards at scale Enrich logs with ServiceNow CMDB context before routing to any SIEM or logging tool Monitor Lustre with Datadog Make faster, better product decisions with Datadog Product Analytics Surface and remediate runtime posture issues with Workload Protection Findings Protect agentic AI applications with Datadog AI Guard How to optimize JavaScript code with CSS Trace Google Pub/Sub workloads in Cloud Run with Datadog Detect human names in logs with ML in Sensitive Data Scanner How we cut our NLQ agent debugging time from hours to minutes with LLM Observability Debug PostgreSQL query latency faster with EXPLAIN ANALYZE in Datadog Database Monitoring Datadog acquires Propolis Unify and correlate frontend and backend data with retention filters Scale compliance across global frameworks with Datadog Cloud Security Monitor Arista VeloCloud SD-WAN performance with Datadog Building reliable dashboard agents with Datadog LLM Observability Simplify log collection and aggregation for MSSPs with Datadog Observability Pipelines Mitigation for Node.js denial-of-service vulnerability affecting Datadog APM Automate flaky test fixes with the Bits AI Dev Agent and Test Optimization How we built an AI SRE agent that investigates like a team of engineers Datadog integrations 2025 recap: Observability for AI, security, and hybrid cloud Design effective executive dashboards with Datadog Implement dbt data quality checks with dbt-expectations Bring faster visibility into AWS Lambda functions with remote instrumentation Troubleshoot faster with the GitLab Source Code integration in Datadog How Cambia Health Solutions saved $30,000 monthly with Cloud Cost Management and the Datadog Resource Catalog Normalize any logs for Cloud SIEM with Datadog's OCSF processor Optimizing Datadog at scale: Cost-efficient observability at Zendesk Detect, diagnose, and resolve network issues easily with CNM Network Health Connect engineering errors to user impact in early-stage products Cilium configuration for Kubernetes operations at scale Designing feedback loops for progressive delivery Ship features faster and safer with Datadog Feature Flags Choosing the right OpenTelemetry Collector distribution Route your monitor alerts with Datadog monitor notification rules Automate Cloud SIEM investigations with Bits AI Security Analyst Cloud threat detection: How to identify risky activity across control and data planes Collecting Kafka performance metrics Monitoring Kafka with Datadog Monitoring Kafka performance metrics
Find the root cause faster with Datadog and Zebrium
Nicholas Thomson · 2022-08-23 · via Datadog | The Monitor blog
Nicholas Thomson

Nicholas Thomson

Technical Content Writer

When troubleshooting an incident, DevOps teams often get bogged down searching for errors and unexpected events in an ever-increasing volume of logs. The painstaking nature of this work can result in teams struggling to resolve issues before new incidents appear, potentially leading to an incident backlog, longer MTTR, and a degraded end-user experience.

Zebrium leverages unsupervised machine learning to find correlated anomalies in your logs, thereby helping distributed teams quickly find the most useful root cause indicators in large volumes of complex log data. In a March 2022 study of 192 actual customer incidents, Cisco determined that Zebrium could correctly identify the root cause 95 percent of the time.

Datadog is pleased to announce that Zebrium now offers a data integration and Datadog app, available as a bundle through one tile on the Integrations page. You can now also purchase a subscription to Zebrium in the Datadog Marketplace, which is the first step in getting set up to stream data and alerts from Zebrium into Datadog. After you start a free trial or purchase a Zebrium subscription, the data integration component can send events and metrics about your logs and anomalies to Datadog. The app, in turn, can then populate a native Datadog dashboard widget that enriches any of your new or existing dashboards with root cause information from Zebrium. Joint Zebrium-Datadog customers can use this new functionality to instantly determine root causes without ever needing to dig through logs, thereby improving incident response workflow and reducing resolution times.

Expedite troubleshooting

Say you are a DevOps engineer for an organization that runs an e-commerce site built on Amazon EKS. In your EKS dashboard, you notice that network traffic and CPU utilization in the cluster have dropped to zero. Because your EKS dashboard tracks metrics across all your different services, you might be uncertain about where to start investigating the issue. However, the Zebrium widget can help by automatically flagging the potential root cause of the problem. The screenshot below displays your EKS dashboard in this example scenario. The dashboard shows that the Zebrium Root Cause Finder widget has automatically flagged a malicious agent (here called Chaos Monkey) as the potential root cause of the issue.

the Zebrium app detects a potential root cause of the issue

You can see a Natural Language Processing (NLP) summary by hovering over the alert (the red dot) in the Zebrium Root Cause Finder. Clicking on the alert shows a word cloud that helps communicate the nature of the issue by highlighting the most common terms found in log entries associated with the incident.

the Zebrium app provides a natural language summary of the alert

For even more information about the root cause, you can click on View full Root Cause Report. This step opens a full root cause report on the Zebrium site, an example of which is shown in the image below. From the millions of log entries generated by your application while the failure was occurring, Zebrium has surfaced 46 events from seven different services to tell the story of the incident.

Zebrium detects a chaos agent

After following the link to the full root cause report, you can confirm that Chaos Monkey is indeed the root cause of the issue. Specifically, the chaos agent set off a cascading chain of events by kicking off a pod-network-corruption chaos experiment, which ultimately resulted in a queue length misconfiguration on eth0. You can see the evidence of this misconfiguration in the log entry that is highlighted and magnified below. This cause-and-effect sequence would have been very difficult for an engineer to piece together by manually searching through the logs without the help of Zebrium.

Zebrium finds a queue length misconfiguration on eth0
a close up of the log entry for the misconfiguration on eth0

Zebrium also pulls out error messages and other log entries that highlight the impacts (symptoms) of the incident on your e-commerce application. For example, we can see the following symptoms in the root cause report below:

  • A timeout in the order service

  • A 500 error in the frontend service

  • And a socket exception in the carts service

Zebrium detects the symptoms of the root cause

As a DevOps engineer in our scenario, without even needing to search through the logs, you’ve been able to use Datadog’s Zebrium App to pinpoint the root cause behind the issue of zero network traffic and CPU utilization in your Kubernetes cluster. And you identified this root cause without having created any predefined rules or having performed any manual ML training on datasets beforehand.

Speed up root cause analysis with Zebrium and Datadog

The Zebrium app and integration give you tools to easily find root causes while you’re working within Datadog, thereby expediting your troubleshooting and reducing MTTR. The Zebrium integration and app are now available on the Integrations page, and the software license needed to enable the Zebrium app and widget can be purchased in the Datadog Marketplace. To get up and running, sign up for a free trial in the Datadog Marketplace. If you’re new to Datadog, sign up for a 14-day free trial.

The ability to promote branded monitoring tools in the Datadog Marketplace is one of the benefits of membership in the Datadog Partner Network. If you’re interested in developing an integration or application for the Datadog Marketplace, contact us at marketplace@datadog.com.