Firewall Log Analysis

AnalogX QuickDNS speeds up the DNS lookup portion of Analog's webserver log analysis tool, and handles all of the DNS work that Analog normally does (rechecking valid and invalid links after a certain amount of time). Platforms: Windows

PFL can either operate as a stand-alone firewall log parser or set up to run and configure ipfw. The major focus is parsing, compressing, and filtering *NIX (to include Mac OSX) firewall logs generated by IPFW for quick and easy admin review. Platforms: Windows, Mac, Linux

Postfix Log Parser in Python is a log analysis tool written in python language to get statistic reports and detect anomalous behaviours on a mail server based on Postfix and Cyrus Platforms: Windows, Mac, Linux

A java-based 3D Visualisation tool for MySQL data logged by snort, for either log analysis or alert monitoring. The program requires an installation of snort+mysql, and works with either the sun or black-down versions of java + java 3D. Platforms: Windows, Mac, Linux

statmail is a nearly drop-in replacement for the `mailstat' program that comes with procmail. It aims at being faster and more correct than mailstat when computing e-mail statistics. Platforms: Windows, Mac, Linux

This patch can be used on a masquerading firewall (NAT) to keep a log of all the outgoing masqueraded TCP connections. Its even possible to log the name of the user who has opened the connection. This can be a useful security tool for many small networks that are hidden by a masquerading box if... Platforms: *nix

Traffic Log is a web statistics script. Traffic Log enables you to track hits and unique visitors, hits by page, by date, browser and captures the entry page for each visitor. The log file can be purged of old visits through use of the script. Traffic Log is not intended to duplicate the use... Platforms: *nix

Lire is an Open Source reporting and analysis software, and serving as a nexus of documentation, ideas, and thought on the topic of log files and their potential applications. As any good system administrator knows, theres a lot more to keep track of in an active network than just webservers.... Platforms: *nix

log_analysis is a log file analysis engine that extracts relevant data for any of the recognised log messages and produces a summary that is much easier to read.. Platforms: *nix

Log Mine is a tool that produces reports on usage patterns on your Web site. Web server log files are not just hit counters. They contain valuable information about the usage patterns of your website. Unforunately many web log analysis tools lay emphasis on telling you how many hits your site... Platforms: *nix

Lepide Event Log Manager is a comprehensive Windows event log monitor tool that helps enterprises in efficient log management. With the help of this application, organizations can carry out comprehensive log analysis by continuously monitoring both the system and web based events. Windows event... Platforms: Windows

Desktop-based Apache and IIS website log analyzer (freeware). Log Analyzer: Trends Freeware. Monitoring daily changes in website statistics. Detailed summary statistics with all major parameters on one screen. Useful webmaster tool for web marketing and website optimization. Main reports: pages,... Platforms: Windows

fwanalog is a shell script that parses and summarizes firewall logfiles. It currently (version 0.6.9) understands logs from ipf (tested with OpenBSD 2.8s and 2.9s ipf, also FreeBSD, NetBSD and Solaris 8 with ipf (+ ipfw on FreeBSD)), OpenBSD 3.x pf, Linux 2.2 ipchains, Linux 2.4 iptables, some... Platforms: *nix

Relax for Windows is a free GPL licensed web server log analyzer. This tool analyzes which search engines, search keywords and referring URLs led visitors to the web site. Frequently updated parser module recognizes hundreds of search engines. HTML reports can be configured to include links to... Platforms: Windows

KFireWatcher is a application to view the firewall logs in a more readable form. (just remote ip address, local if local connection, only the needed infos...) Needs kommander 3.5, and a separate firewall-log file (you can separate firewall lines with syslog-ng). Accepts logs multilines with... Platforms: *nix

WallFire is a very general and modular firewalling application based on Netfilter or any kind of low-level framework. It will enable to manage every aspect of a firewall administration, from configuration to monitoring, intrusion detection, etc... WallFire will provide command line and... Platforms: *nix

OSSEC is a full platform to monitor and control your systems. It mixes together all the aspects of HIDS (host-based intrusion detection), log monitoring and SIM/SIEM together in a simple, powerful and open source solution. OSSEC HIDS performs log analysis, file integrity checking, policy... Platforms: Windows, XP, 2003, Windows Vista, 7, 7x64

Blue dot is a free GPL licensed Perl CGI tracking and web site activity measurement script which generates Apache combined style access log files. These log files can be analyzed with most standard log analysis tools to track site's popularity, referrers, hosts, etc. The logging is based on...

Insight, the analysis TechTool for developers is a platform independent tool for viewing & analying run time meta data of applications. It aids in trouble shooting problems, and aids the developer in every day work through very advanced log analysis. Platforms: Windows, Mac, Linux

The system also provides support for grouping links together into categories to view total click-throughs for multiple links.The system's backend is provided by a MySQL database, and support is included for addition, deletion, and viewing of link and category statistics through a web... Platforms: PHP