I recently identified a need for a tool which I could use for analysing logs locally. I’m therefore not talking about a SIEM or IDS, and the only solution I could find online was LogMX which i felt required a licence (and therefore cost money – that I dont have).
I took it upon myself to explore how I could build a local offline log analyzer to my needs and the following is what I have developed. It is free for anyone willing to trust my coding skills and software. I also would like to apologize for the bad UI, but I’m not a graphics designer.
Welcome to Logators User Guide!
Logator is a versatile log file analysis tool designed to streamline the process of examining and extracting valuable information from log files. With an intuitive graphical user interface, Logator empowers users to filter log entries based on date, syslog level, custom criteria, and more. This Python-based application enables quick identification of relevant events and facilitates efficient troubleshooting. Logator’s functionality extends to IP address filtering, IPv6 identification, and keyword searches, making it a valuable resource for network administrators and developers. Whether investigating server actions or searching for specific keywords, Logator provides a user-friendly platform for parsing and analyzing log files effortlessly.
Getting started with Logator:
- Select a file using the Browse button
- Press “Apply Filters” and you will see the entire content of the log file. Nothing filtered.
- At the bottom of the window, you will be provided with a number that informs you of how many rows are in the content shown.
- – This may be the full log or the filtered log.
- Use the Move to Top and Move to Bottom buttons to navigate quickly in logs that are big.
- Apply filters
- Date Filter: The date filter currently shows only a single day. It will query your log for any month and day string in the following format “Mon/DD” for example “Mar/12”
- Syslog Level Filter: This filter will identify any log records that contain the string “Error”, “Warning”, “Info” or “Debug”
- IPv4 Filter: This filter will identify any rows in the log that have IPv4 addresses that are not 127.0.0.1 or 0.0.0.0.
- IPv6 Filter: This filter will identify any rows in the log that have IPv6 addresses.
- Auth Keywords Filter: This filter will identify any rows that contain the string “username”, “password”, “secret”, “email”, which is used to try and identify any credential information.
- Server Power Cycle Filter: This filter will identify any rows that contain the string “start”, “shutdown”, “restart”. These are to help identify when a server or service has restarted etc.
- Custom Filters: This allows you to enter any string you like to try and filter against the log you have chosen.
- You can now export your results
- Export to CSV. This is here to assist with taking the filtered data to excel/libre calc.
- Export to HTML. This is here to assist with providing the filtered data to a nice readable format.
- Once done, or if you need to restart your filtering, you can use the clear all filters button, or go to file > restart. 0
Explore Logator and efficiently analyze your log files!
Thank you for choosing Logator! We appreciate your trust in our log file analysis tool. Your satisfaction is our priority, and we strive to enhance your experience continually. If you have any feedback, suggestions, or encounter any issues, please feel free to reach out to us at EmailToBeProvidedLater. Your insights are invaluable and contribute to the ongoing improvement of Logator. We’re committed to providing a seamless and efficient log analysis solution, and your feedback plays a crucial role in achieving that goal. Thank you for being part of the Logator community!
`Link to software: https://manaduvortes.com/LogatorV0-6`