$ cat mission.txt
Free log tools for people who read logs.
Parse logs into Splunk, Grok, Wazuh and more. Mask secrets before you share. Extract IOCs. Build SIEM rules. No accounts, no uploads — it all runs in your browser.
1
paste your log
Drop raw lines straight from journalctl, nginx, a firewall — anything. Nothing is uploaded.
2
review the fields
LogForge detects timestamps, IPs, users, status codes. Rename or retype anything it got wrong.
3
copy the parser
Grab a working parser — regex, Grok, Splunk, Elastic, Datadog, Wazuh and 6 more — ready to deploy.
Tools
LogForge
betaPaste raw log lines, review the auto-detected fields, and copy a working parser: regex, Grok, Wazuh, and configs for Splunk, Elasticsearch, Datadog, Vector and more.
open →
LogScrub
betaPaste a log, mask the IPs, emails, hostnames, tokens and secrets, and copy a version that's safe to share with a vendor or paste into an LLM. Consistent pseudonyms keep it readable — the mapping never leaves your browser.
open →
IOC Extractor
betaPaste a threat report, phishing email or notes and pull out the indicators — IPs, domains, URLs, emails, file hashes, CVEs. Defanged IOCs (hxxp://evil[.]com) are caught, private and benign noise is flagged, and Pro exports STIX, CSV and MISP.
open →
LogAnvil
betaGenerate realistic synthetic logs — nginx, syslog, FortiGate, Windows, JSON and more — for pipeline testing, SIEM demos and decoder dev. Deterministic seeds, and optional anomaly injection (brute-force, port scans, exfil) — logs that should get caught.
open →
RuleForge
betaPaste mixed logs, label each class alarm / watch / noise, and get a Wazuh decoder + rule set that alerts on what matters and keeps the noise at level 0.
open →