$ cat mission.txt
Sharp little tools for people who read logs.
No accounts. No uploads. Your data stays in your browser.
1
paste your log
Drop raw lines straight from journalctl, nginx, a firewall — anything. Nothing is uploaded.
2
review the fields
LogForge detects timestamps, IPs, users, status codes. Rename or retype anything it got wrong.
3
copy the parser
Grab a working regex, Grok pattern, Wazuh decoder, or rsyslog template — ready to deploy.
Tools
LogForge
betaPaste raw log lines, review the auto-detected fields, and copy a working parser: regex, Grok, Wazuh decoder XML, or an rsyslog template.
open →
LogScrub
betaPaste a log, mask the IPs, emails, hostnames, tokens and secrets, and copy a version that's safe to share with a vendor or paste into an LLM. Consistent pseudonyms keep it readable — the mapping never leaves your browser.
open →
IOC Extractor
betaPaste a threat report, phishing email or notes and pull out the indicators — IPs, domains, URLs, emails, file hashes, CVEs. Defanged IOCs (hxxp://evil[.]com) are caught, private and benign noise is flagged, and Pro exports STIX, CSV and MISP.
open →
LogAnvil
betaGenerate realistic synthetic logs — nginx, syslog, FortiGate, Windows, JSON and more — for pipeline testing, SIEM demos and decoder dev. Deterministic seeds, and optional anomaly injection (brute-force, port scans, exfil) — logs that should get caught.
open →