Logdissect

Free

1 saves

Updated 11 March 2025

Logdissect is a CLI utility and Python library for analyzing log files and other data. It can parse, merge, filter, and export data (to log files, or JSON). Installing: To install the latest release, see the latest instructions on the releases page. To install the development source, see the instructions in CONTRIBUTING.md. Usage Options: usage: logdissect.py [-h] [--dhost DHOST] [--grep PATTERN] [--last LAST] [--process PROCESS] [--protocol PROTOCOL] [--range RANGE] [--utc] [--rdhost DHOST] [--rgrep PATTERN] [--rprocess PROCESS] [--rprotocol PROTOCOL] [--rshost SHOST] [--rsource SOURCE] [--shost SHOST] [--source SOURCE] [--linejson LINEJSON] [--outlog OUTLOG] [--label LABEL] [--sojson SOJSON] [--pretty] [--version] [--verbose] [-s] [--list-parsers] [-p PARSER] [-z] [-t TZONE] [file [file ...]] For library documentation, see the module documentation.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

EXPLORE BY TAGS

Log Analysis

Log Parsing

Cli Tool

Python Library

SIMILAR TOOLS

Blauhaunt

A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.

Free

SIEM

Starbase

Democratizing graph-based security analysis by collecting assets and relationships from services and systems into an intuitive graph view.

Free

SIEM

Log-Killer

Tool for deleting logs on Linux/Windows servers.

Free

SIEM

Elastic

Elasticsearch is a versatile platform for centralized data storage, fast search, and scalable analytics.

Free

SIEM

syslog-ng

A log management solution that optimizes SIEM performance, provides rapid search and troubleshooting, and meets compliance requirements.

Commercial

SIEM

RedELK

RedELK enhances Red Team operations with SIEM capabilities to monitor and alert on Blue Team activities.

Free

SIEM

Sysmon for Linux

Sysmon for Linux is a tool that monitors and logs system activity with advanced filtering to identify malicious activity.

Free

SIEM

MongoDB-HoneyProxy

A logging proxy tool created in response to the 'MongoDB Apocalypse', with Docker support.

Free

SIEM

LastActivityView

A tool that collects and displays user activity and system events on a Windows system.

Free

SIEM

PINNED

Proton Pass

Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.

Data Protection

NordVPN

NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.

Network Security

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security