Search Results for "log analysis tools"
Sort By:
Showing 112 open source projects for "log analysis tools"
View related business solutions-
$300 Free Credits to Build on Google CloudStart your next project with $300 in free Google Cloud credit. Spin up VMs, run containers, query petabytes in BigQuery, or build agents with Gemini Enterprise Agent Platform. Once your credits are used, keep building with 20+ always-free tier products including Compute Engine, Cloud Storage, GKE, and Cloud Run functions. No commitment required—just sign up and start building.
-
Build Securely on Azure with Proven FrameworksMoving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
-
1
S.M.A.R.T. Monitoring Tools
Disk Inspection and Monitoring
smartmontools contains utility programs (smartctl, smartd) to control/monitor storage systems using the Self-Monitoring, Analysis and Reporting Technology System (S.M.A.R.T.) built into most modern ATA and SCSI disks. It is derived from smartsuite. -
2
ProcMon for Linux
A Linux version of the Procmon Sysinternals tool
ProcMon-for-Linux by Microsoft is an open-source port of the legendary Windows Sysinternals Process Monitor, adapted for Linux environments. It captures and displays real-time syscall activities—alongside process/thread details—in an interactive terminal interface. With filtering capabilities, full thread stack capture, logging to SQLite, and event replay, it offers powerful visibility into system behavior. Currently distributed as a preview release (up to v2.0 on Linux), it supports Ubuntu... -
3
fluentbit
Fast and Lightweight Logs and Metrics processor for Linux, BSD, OSX
Fluent Bit is a super-fast, lightweight, and highly scalable logging and metrics processor and forwarder. It is the preferred choice for cloud and containerized environments. A robust, lightweight, and portable architecture for high throughput with low CPU and memory usage from any data source to any destination. Proven across distributed cloud and container environments. Highly available with I/O handlers to store data for disaster recovery. Granular management of data parsing and routing.... -
4
Logan
Logan is a lightweight case logging system based on mobile platform
Logan is a log platform with the ability to collect, store, upload and analyze front-end logs. We provide five components, including iOS SDK, Android SDK, Web SDK, analysis services Server SDK and LoganSite. In addition, we also provide a Flutter plugin Flutter Plugin. LoganSite provides a visualized way for developers to scan and search logs uploaded from App and Web. -
Ship Agents FasterGemini Enterprise Agent Platform lets you rapidly build, scale, govern and optimize production-ready agents grounded in your organization's data. The platform enables developers to build custom or pre-built agents for virtually any use case. New customers get $300 in free credits.
-
5
BCC (BPF Compiler Collection)
Tools for BPF-based Linux IO analysis, networking, monitoring, etc.
BCC is a toolkit that simplifies creating efficient kernel tracing, monitoring, and manipulation programs by leveraging extended Berkeley Packet Filters (eBPF). It includes a rich set of example tools and scripting interfaces in C, Python, and Lua. BCC makes BPF programs easier to write, with kernel instrumentation in C (and includes a C wrapper around LLVM), and front-ends in Python and lua. It is suited for many tasks, including performance analysis and network traffic control. With a BPF-specific frontend, one should be able to write in a language and receive feedback from the compiler on the validity as it pertains to a BPF backend. ... -
6
Performance Co-Pilot (PCP)
Performance Co-Pilot
Performance Co-Pilot (PCP) provides a framework and services to support system-level performance monitoring and management. It presents a unifying abstraction for all of the performance data in a system, and many tools for interrogating, retrieving and processing that data. PCP is a feature-rich, mature, extensible, cross-platform toolkit supporting both live and retrospective analysis. The distributed PCP architecture makes it especially useful for those seeking centralized monitoring of distributed processing. -
7
AERIS-10
Open-source, low-cost 10.5 GHz PLFM phased array RADAR system
...The repository structure suggests an emphasis on simulation rather than hardware integration, allowing users to test radar concepts in a controlled software environment. It likely includes tools for waveform synthesis, matched filtering, and spectral analysis, which are critical for interpreting radar returns. -
8
systemd
The systemd system and service manager
systemd is a suite of basic building blocks for a Linux system. It provides a system and service manager that runs as PID 1 and starts the rest of the system. systemd provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. systemd... -
9
Grafana
Leading open-source visualization and observability platform
Grafana OSS is the leading open-source platform for visualization and observability. It enables teams to query, visualize, alert on, and explore telemetry data from multiple sources in a single interface. With support for 100+ data source plugins—including Prometheus, Loki, Elasticsearch, InfluxDB, SQL/NoSQL databases, and OpenTelemetry—Grafana helps teams correlate metrics, logs, and traces across applications and infrastructure. Users can build interactive dashboards with rich... -
Secure File Transfer for Windows with Cerberus by RedwoodCerberus supports unlimited users and connections on a single IP, with built-in encryption, 2FA, and a browser-based web client — all deployable in under 15 minutes with a 25-day free trial.
-
10
SSHGuard
Intelligently block brute-force attacks by aggregating system logs
SSHGuard protects hosts from brute-force attacks against SSH and other services. It aggregates system logs and blocks repeat offenders using several firewall backends, including iptables, ipfw, and pf. -
11
Web-based Firewall Log Analyzer
Firewall log analyzer
Flexible web-based firewall log analyzer, supporting netfilter and ipfilter, ipfw, ipchains, cisco routers and Windows XP system logs, and mysql or postgresql database logs using the iptables ULOG or NFLOG target of netfilter others mapped to the ulogd format with a view. Fully supports IPv6 for database logs, and netfilter and ipfilter system file logs. Also supports Maxmind's GeoIP version 2 location databases. For Linux, FreeBSD, OpenBSD, Solaris, OSX,etc. -
12
nmon for Linux
Linux performance monitoring on-screen or to CSV file
nmon is short for Nigel's Performance Monitor It either shows you the stats on-screen updating once a second or saves the data to a CSV file for later analysis and graphing. For details see the homepage ==> http://nmon.sourceforge.net Please use the latest version. The new version "njmon" outputs JSON format that a lot of tools use these days. It integrates well with saving data directly to InfluxDB and graphing with Grafana. -
13
ttyrpld is a multi-OS kernel-level TTY keylogger and screenlogger with (a)synchronous replay support. It runs on Linux, Solaris, FreeBSD, NetBSD and OpenBSD.
-
14
DBD2
A multi-threaded, multi-database tcp-based database insertion app.
DBD2 inserts database records from TCP input. It is a companion project to Syslgod2 and an application in its own right. It ships with a backgrounding client for generic use. The client sends whatever information the user puts on the command-line to the back-end daemon via TCP. Upon successful transmission, the client exits. On failure, it backs off and retries until its life-time timer expires. The back-end daemon accepts data from Syslogd2 or its own client and inserts that data... -
15
Chameleon-Mini
Versatile contactless smartcard emulator compliant to NFC
...It supports multiple card types and codecs, enabling it to replicate real-world access cards, payment systems, and identification tokens. One of its most powerful capabilities is its ability to log and sniff RF traffic, which allows detailed inspection of communication between readers and cards. The project includes firmware, drivers, and software tools that enable configuration and interaction across different operating systems. -
16
What is DracOS GNU/Linux Remastered ? DracOS GNU/Linux Remastered ( https://github.com/dracos-linux ) is the Linux operating system from Indonesia , open source is built based on Debian live project under the protection of the GNU General Public License v3.0. This operating system is one variant of Linux distributions, which is used to perform security testing (penetration testing). Dracos linux in Arm by hundreds hydraulic pentest, forensics and reverse engineering. Use a GUI-based...
-
17
pcapfix
repair corrupted pcap and pcapng files
this tool tries to repair your broken pcap and pcapng files by fixing the global header respectively packet blocks and recovering the packets by searching und guessing the packet headers or blocks -
18
XNU
Legacy mirror of Darwin Kernel
Darwin XNU is the hybrid kernel that powers Apple’s macOS, iOS, watchOS, and tvOS operating systems, forming the foundation of the Darwin open-source core. The name XNU stands for X is Not Unix, highlighting its origin as a combination of multiple kernel technologies—primarily the Mach microkernel from Carnegie Mellon University, integrated with substantial components from FreeBSD and Apple’s proprietary IOKit driver framework. This hybrid architecture merges the microkernel model’s... -
19
CTREE Graphic Tree Generator for C
An analysis tool showing the structure of a C program
CTREE is a command line utility providing analysis tools useful to software engineers tasked with tracking down problems or verifying a program's soundness. It is also an aid to understanding the structure of unfamiliar programs. As it works with standard C it finds most of its utility in embedded systems and older software. CTREE comes with a comprehensive manual. CTREE is is released by Cleveland Engineering Design, LLC - developer of the CoRTOS cooperative RTOS https://sourceforge.net/projects/cortos-simple/ and PRTOS pre-emptive RTOS https://sourceforge.net/projects/prtos-preemptive-rtos/ V 1.01 - fixed bug that could cause lock-ups or garbage output with some coding styles. -
20
Snare Lite (SIEM & Logging Software)
Snare Enterprise: bit.ly/Snare-Trial
...https://www.snaresolutions.com/try-snare-for-free/ Snare Enterprise was created to keep up with the fast paced security software market. It started with the desire to create premium logging and SIEM tools that were agnostic by nature so they could be used to boost any SIEM architecture regardless of third party developers. In fact, the agnostic nature allows it to bridge gaps between multiple SIEM implementations across business units. For more on use cases, check out the Intersect Alliance website. https://www.snaresolutions.com/ Snare Enterprise’s premium features include: - Regulatory Compliance - TLS Encryption - Log Simulcasting - TCP – Guaranteed Log Delivery - USB Device Monitoring - And more! ... -
21
Project's goal is to create better tools for diagnosing Linux systems. Diagnostics include first failure data capture, error log analysis, preventative testing, and system inventory gathering. You can now find Power System specific packages on github. libservicelog : https://github.com/power-ras/libservicelog servicelog : https://github.com/power-ras/servicelog lsvpd : https://github.com/power-ras/lsvpd libvpd : https://github.com/power-ras/libvpd ppc64-diag : https://github.com/power-ras/ppc64-diag sysfsutils is moved to github. ...
-
22
IPAC-NG is the iptables/ipchains based IP accounting package for Linux. It collects, summarizes, and nicely displays IP accounting data. Ipchains and (preferably) iptables are supported. Logs are stored in files, a gdbm or a PostgreSQL database.
-
23
ipgrep
Copies IP packets from source to destination PCAP files.
IPGREP is a command line tool to grep IP packets out of PCAP files. It provides basic filter for IP version and IP addresses. It is written in pure C without LIBPCAP, so it should run faster. -
24
FW1-Loggrabber is a command-line tool to grab logfiles from Checkpoint FW-1 remotely using Checkpoints LEA (Log Export Api), which is one part of Checkpoints OPSEC API.
-
25
AlienVault OSSIM
Open Source SIEM
OSSIM, AlienVault’s Open Source Security Information and Event Management (SIEM) product, provides event collection, normalization and correlation. For more advanced functionality, AlienVault Unified Security Management (USM) builds on OSSIM with these additional capabilities: * Log management * Advanced threat detection with a continuously updated library of pre-built correlation rules * Actionable threat intelligence updates from AlienVault Labs Security Research Team * Rich...