Rsyslog is an enhanced multi-threaded syslogd. Among others, it offers support for on-demand disk buffering, reliable syslog over TCP, SSL, TLS, and RELP, writing to databases (MySQL, PostgreSQL, Oracle, and many more), email alerting, fully configurable output formats (including high-precision timestamps), the ability to filter on any part of the syslog message, on-the-wire message compression, and the ability to convert text files to syslog. It is a drop-in replacement for stock syslogd and able to work with the same configuration file syntax.
LogAnalyzer is a Web front-end for syslog and other network event data. It provides easy browsing, searching, basic analysis, and some graphics. Data is taken from databases or plain syslog text files, so LogAnalyzer does not require changes to an existing logging infrastructure. Depending on the log data present, it can process syslog messages, Windows event log entries, and some more exotic things. Its troubleshooting support enables users to quickly find solutions to problems seen in the log data. LogAnalyzer was previously called phpLogCon, and has been renamed since v3.
adslometer is a script to log your router's connection information. It allows you to track line problems, analyze them, or get statistical information about your Internet connection. It currently supports the SMC7908A-ISP VOIP router from the Ya.com Spanish ISP, the Zyxel 660HW from Telefonica's ISP, and the Conceptronic C54APRA2+.
PostRemoteLog is a tool that allows you to send information across the network to a centralized location. Three methods are currently supported: XMLRPC, Email, and Growl. It is generally aimed at system administrators who want to keep track of information such as backup post-run scripts, network monitoring scripts, UPS information, service outages, power on/off, unexpected restarts, etc. PostRemoteLog is designed to be used in other scripts. Captured data can be analyzed and aggregated as needed.
Callstats collects and displays call statistics for Siemens HiPath OpenOffice ME in a pretty Web interface. It may work with other Siemens HiPath devices (probably Hipath 3000). With some modifications, it could be adapted to your own system. It has 3 parts: -tcp->text log (via netlog); text log->sqlite database (PHP script); and a Web interface to the SQLite database (PHP). It has been tested without problems in a 50-user installation fulltime since 2009.
python-tracing provides the Python library "tracing" to help with logging debug messages. This module provides a couple of functions for logging debug messages. It is sometimes practical to add a lot of debugging log messages to a program, but having them enabled all the time results in very large log files. Also, logging that much takes quite a bit of time. This module provides a way to turn such debugging or tracing messages on and off, based on the filename in which they occur.
LoginIDS provides functions to analyze log files from different services in order to detect unusual login behavior. The normal user behavior is learned by analyzing log files and saved in a database. Logins are analyzed by time, service, source, and destination address. If a user's login is new or considered unlikely by LoginIDS, an alert is generated. Alerts can be handled by external scripts and viewed using the log file management system Splunk and the LoginIDS App.
Habitat is an application and system monitoring system which captures, stores, and visualises table-based time series data. Monitor probes exist for Linux and Solaris with Windows and others coming soon. It has a command line interface, a fast GUI client for graphical visualisation, and a simple format for extending data capture in the agent. It can access data from its peers directly, by file sharing, or with the use of a separate central archiving repository to scale to installations of significant size.