Anteater is a log analyser for MTA logfiles (such
as those produced by sendmail and postfix). The
tool is written in 100% C++ and is very easy to
customize. Input, output, and the analysis are
modular class objects with a clear interface.
Currently, there are modules for reading the
syslog format of sendmail and postfix that do up
to eight useful analyses and write the result in
plain ASCII or HTML, to stdout or to files.
php-syslog-ng is a front-end for viewing syslog-ng messages logged to MySQL in real-time. It features customized searches based on device, time, priority, message, and date.
Lire is a pluggable log analyzer. It has analyzers for over 25 log file formats, ranging from Apache WWW log files to iptables firewall logs and CUPS printing logs. Reports are generated in 9 different output formats, ranging from Excel 95 to PDF to HTML, optionally with included graphs.
相關的專案GLOBALBASE PROJECT, PukiWiki, SmillaEnlarger, Darik's Boot and Nuke, DeSmuME
Free-SA is tool for statistical analysis of daemons' log files, similar to SARG. Its main advantages over SARG are much better speed (7x-20x), more support for reports, and W3C compliance of generated HTML/CSS reports. It can be used to help control traffic usage, to control Internet access security policies, to investigate security incidents, to evaluate server efficiency, and to detect troubles with configuration.
相關的專案Dumpper v.60.3, Chattr, SmillaEnlarger, GLOBALBASE PROJECT, UstAlert
analyze is a tool for studying the raw logs generated by an Apache HTTP server. With no options, it gives page and count, hacks, 404s, and bandwidth. It has options for remote address with pages and counts; bots by robots.txt and page requests, downloads by IP and time, hacks by IP and time, referrers, and user-agents not listed as BOTS. Users of analyze must adjust the USER CONST section of the script to suit their own logs. It comes set to interpret a deep server's logs, but that is easily changed.
360-FAAR (Firewall Analysis Audit and Repair) is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate, and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA, or ScreenOS commands. It is all contained in one file. It can read policy and logs for: Checkpoint FW1 (in odumper.csv / logexport format), Netscreen ScreenOS (in get config / syslog format), and Cisco ASA (show run / syslog format). It uses both inclusive and exclusive CIDR and text filters, permitting you to split large policies into smaller ones for virutalization at the same time as removing unused connectivity. It supports policy to log association, object translation, rulebase reordering and simplification, rule moves, and duplicate matching automatically. It allows you to seamlessly move rules to where you need them. 'print' mode creates a spreadsheet for your audit needs with one command.
相關的專案TuxGuitar, DeSmuME, Hinemos, GLOBALBASE PROJECT, SmillaEnlarger
Mailgraph is a very simple mail statistics RRDtool frontend for Postfix that produces daily, weekly, monthly, and yearly graphs of received/sent and bounced/rejected mail.
ppplag reads system logs and shows a table of all
found PPP sessions with stats for start times,
durations, bytes in/out, and speed in/out.
Qmail-Scanner Statistics (QSS) uses the Qmail-Scanner Logfile to generate
daily, monthly, and yearly statistics. It also shows a complete list of viruses
stopped by Qmail-Scanner, the top five domains from which the viruses came, as
well as the countries of origin.
相關的專案GLOBALBASE PROJECT, MPC-BE, Wireshark, Media Player Classic - Home Cinema, WordPress Plugins/JSeries
Petit was developed to quickly analyze syslog and Apache log files in large environments. It can also be used for word discovery within log data. It is a general purpose tool that can do hashing, word counts, and command line graphing of Apache and syslog files. It is designed to be a standard Unix tool that can be employed with pipes or by opening files. Petit works by sifting data with standard patterns and allows for custom filters and fingerprints. This leaves the analyst with data that is both varied and interesting.
fwanalog is a shell script that parses and summarizes firewall logfiles. It understands logs from ipf (xBSD, Solaris), OpenBSD 3.x pf, Linux 2.2 ipchains, Linux 2.4 iptables, and a few types of routers and firewalls (Cisco, Checkpoint FW-1, and Watchguard). The excellent log analysis program Analog is used to create the reports.
unalog is a Web-based human event (links/books read, songs played, etc.) logging tool focused on bibliographic metadata support and library (as in books-on-shelves) workflow integration.
Apache-logViewSQL is a PHP frontend for
mod_log_sql (formerly mod_log_mysql) which
supports live viewing of Apache log data via
MySQL. It provides the ability to drill down on
live data as it comes in, and it also integrates
with geoIP databases.
aNTG (another Network Traffic Grapher) is a PHP program that collects and graphs network traffic statistics on a Linux machine.
BetterAWStats is an Web server log analysis tool that provides better statistics from the data provided by AWStats. It is not a replacement for AWStats. The most significant features are rolling months and days and support for new types of charts (maps etc.). The overall goal is to make the data more accessible for the user.