Enriched in-stream analysis
Data enrichment
Coralogix adds business, geolocation, cloud infrastructure, threat and ASN data to every log in real time.
Enrichment built for scale, speed, and control
Your data,
your rules
Enrich logs without bloating storage. Run in your own cloud with Streama© for full retention and total control.
In-stream enrichment with zero delay
Add location data, threat intel, or business context as logs are ingested. No slowdowns, no reprocessing.
Custom mapping,
made simple
Define mappings between log fields and important contextual data. Automatic enrichment with no configuration.
From simple logs to structured events
Enrichment for every use case
Enrich logs in real time with geolocation, business metadata, and threat intelligence, right as they stream through. IPs are transformed into countries, cities, and ASNs. Risky activity is flagged instantly using live threat feeds and Coralogix-curated data.
Schema on read, schema on write
Apply enrichment dynamically at ingest or retroactively during queries using DataPrime. Access contextual data wherever you are in the Coralogix platform.
Custom mapping at scale
Connect IDs in your logs to custom business information. Coralogix automatically enriches matching fields with human-readable context, at scale, with zero delay.
Scalable observability for your systems
In-stream analysis
Continuous, real-time monitoring of AI interactions, detecting risks and performance issues before they impact users.
Infinite retention
Archives all system logs indefinitely, enabling deep historical audits and preventing data gaps without ballooning storage costs.
DataPrime engine
Transforms any incoming data for advanced querying, revealing hidden patterns without manual preparation or complexity.
Remote, index-free querying
Enables rapid searches across your infrastructure data, eliminating indexing overhead and cutting operational expenses instantly.