1,284,920,341

Trust & Proof

Architecture, deployment model, security posture, runtime support, benchmarks, and public documents — in one place. Live today vs roadmap is clearly distinguished throughout.

Start Free Trial Book office hours

Status key used on this page

Live todayShipped. Publicly available. Use it today.
RoadmapPlanned. Not yet available. Do not evaluate as current capability.

Deployment model

How Cerbi deploys into your infrastructure

Azure is the current production deployment target. AWS and GCP support are on the roadmap - they are listed here for transparency, not as current capability.

CerbiStream (SDK)

Live today

Installed in your application process. Intercepts log events at write time before any sink call. Zero network calls on the hot path. Available on NuGet, PyPI, Maven, and the Go module registry.

CerbiShield (Control Plane)

Live today

Deployed into your own Azure subscription via Azure Marketplace. Hosts the governance dashboard, policy editor, violation tracking, RBAC, and audit log. Your data never leaves your infrastructure.

View on Azure Marketplace

AWS deployment

Roadmap

Native AWS Marketplace listing and ARM-equivalent infrastructure-as-code. Architecture is designed for multi-cloud but AWS deployment is not yet publicly available.

Google Cloud deployment

Roadmap

GCP Marketplace listing and GKE-native deployment pattern. Part of the cloud portability strategy, not yet publicly available.

Runtime support matrix

Which runtimes are governed today

Click any row for install instructions.

Security & privacy posture

What Cerbi does and does not do with your data

Data stays in your infrastructure

CerbiShield deploys inside your Azure subscription. CerbiStream runs inside your application process. Cerbi never receives your raw log data.

No network calls during log emission

In-process governance adds no latency-sensitive network round trips. Rules evaluate in memory. There is no hot-path dependency on an external service.

Governance policy is version-controlled

Governance profiles are JSON files that live in your repo. They are code-reviewed, versioned, and deployed alongside your application — not configured through a third-party UI.

RBAC and audit log included

CerbiShield includes role-based access control and a full audit log of policy changes, violation events, and dashboard access. Required for SOC 2 and HIPAA audit trails.

Compliance alignment

Cerbi's governance model is designed around GDPR, SOC 2 Type II, HIPAA, and PCI-DSS logging requirements. Governance policies can be scoped per environment and per regulation.

Performance benchmarks

Governance adds near-zero overhead

All benchmarks run via BenchmarkDotNet on .NET 8. Full methodology and raw data available on the benchmarks page.

Plain logging overhead vs NLog/Serilog

~1%

CerbiStream adds approximately 1% overhead in plain structured logging benchmarks against the fastest .NET loggers.

Encryption overhead (CerbiStream vs unencrypted alternatives)

0% added

CerbiStream with encryption enabled benchmarks at 63.92ns vs 250 - 256ns for alternatives adding their own encryption layer.

PII redaction overhead

Near zero

Field-level redaction is evaluated in-memory against a compiled rule set. No regex scanning on the hot path.

Live vs planned

What you can use today vs what is coming

Live today

CerbiStream SDK for .NET, Python, Java, Go, and Node.js
CerbiShield on Azure Marketplace (trial + paid)
MEL, Serilog, NLog, Logback, Log4j2, slog, zap, Pino, Winston support
PII redaction, JWT blocking, field masking
Schema enforcement and required field validation
Violation dashboard and governance metadata
RBAC, audit log, policy version control
Azure DevOps pipeline scanner extension
Visual Studio Marketplace extension
Splunk, Datadog, Azure Monitor, Seq sink compatibility

Planned - not yet available

AWS Marketplace deploymentCloud
Google Cloud deploymentCloud
Streaming governance (CerbiStream for queues and event buses)Feature
AI-assisted rule generationFeature
OpenTelemetry native integrationIntegration
GitHub Actions scannerCI/CD

Observability tool compatibility

Cerbi works with your existing stack

CerbiStream governs events before they reach any sink. The sink receives already-governed data. No pipeline changes, no new routing, no sink replacement.

ToolRoleStatus
SplunkLog aggregation sink — receives governed events
Live today
DatadogObservability platform — receives governed events
Live today
Azure MonitorCloud-native sink — receives governed events
Live today
SeqStructured log viewer — receives governed events
Live today
Elastic / ELKSearch and analytics — receives governed events
Live today
OpenTelemetry CollectorNative OTEL integration layer
Roadmap
AWS CloudWatchAWS-native sink support
Roadmap
Google Cloud LoggingGCP-native sink support
Roadmap

Marketplace availability

Where you can install Cerbi right now

Azure Marketplace

Live today

Deploy CerbiShield (the control plane) directly into your Azure subscription. Trial and paid plans available.

Open

Visual Studio Marketplace

Live today

Install the Cerbi Scanner extension for Azure DevOps. Scans pipelines and flags governance violations in CI.

Open

NuGet (.NET)

Live today

Install CerbiStream for .NET via NuGet. MEL, Serilog, and NLog packages available.

Open

Public documents

Documents available for review

Terms of Use

Policy

Privacy Policy

Policy

Security Overview

Technical

Logging Governance Whitepaper

Guide

CerbiStream Architecture Overview

Technical

View all documents

Time to value

How quickly a team can prove value

Most teams have CerbiStream running against real log output within 30 minutes of first install.

01

Install CerbiStream

Add the SDK to your application. Under ten minutes for any supported runtime.

02

Connect your logger

Wrap your existing MEL, Serilog, NLog, Python logging, Logback, or Go slog instance. No routing changes.

03

Define a governance profile

Specify which fields to redact, block, or require. Profiles are JSON, checked into your repo.

04

Deploy CerbiShield (optional)

If you want the dashboard and policy editor, deploy via Azure Marketplace into your subscription.

05

Book your onboarding call

Every plan includes a 20-minute call with the Cerbi team. No sales process.

Still have questions?

Book a 30-minute office hours call with the Cerbi team. We will walk through your architecture, answer compliance questions, and help you evaluate fit - no sales process attached.

Start Free TrialBook office hours

[ cerbi ] · Start now

Govern logging before it leaves your application.

One NuGet package. No pipeline changes. Policy-as-code governance that runs in-process before sensitive data ever reaches Splunk, Datadog, or Azure Monitor.

Start free trialView Pricing
14-day free trial/No credit card/Works with Serilog · NLog · MEL
Cerbi | Logging Governance for Your Stack