zlog is a reliable, efficient, thread safe, flexible, pure C logging library. It was written because there were no good C logging libraries along the lines of Logback for Java or log4cxx for C++. printf can work, but can not be easily redirected or reformatted, and syslog is slow and designed for system use. It provides a syslog model, log format customization, multiple output, safe run-time reconfiguration, high performance, user-defined log levels, safe log rotation, a log4j-style key-value map, in-built debugging, and no external dependencies.
ZedLog is a robust cross-platform input logging tool (A.K.A., a key logger). It is based on a flexible data logging system which makes it easy to get the required data. It features logging of all keyboard and mouse events, a replay simulation tool, logging to a file, and hiding in the background.
LoginIDS provides functions to analyze log files from different services in order to detect unusual login behavior. The normal user behavior is learned by analyzing log files and saved in a database. Logins are analyzed by time, service, source, and destination address. If a user's login is new or considered unlikely by LoginIDS, an alert is generated. Alerts can be handled by external scripts and viewed using the log file management system Splunk and the LoginIDS App.
BSM Pseudonymizer pseudonymizes records from Solaris BSM audit trail files. Personal data such as user IDs, pathnames, timestamps, etc. is replaced with pseudonyms so that the generated output doesn't reveal private information about the system's users, but still preserves a maximum of integrity and consistency.
Rsyslog is an enhanced multi-threaded syslogd. Among others, it offers support for on-demand disk buffering, reliable syslog over TCP, SSL, TLS, and RELP, writing to databases (MySQL, PostgreSQL, Oracle, and many more), email alerting, fully configurable output formats (including high-precision timestamps), the ability to filter on any part of the syslog message, on-the-wire message compression, and the ability to convert text files to syslog. It is a drop-in replacement for stock syslogd and able to work with the same configuration file syntax.
ProcMeter3 is a program for monitoring the system status and other information and displaying it in a series of graphs or as text. Most of the information comes from the /proc filesystem (cpu usage, load average , processes information, memory usage, network traffic, interrupts etc.). Other information is available for other sources (date, time, email status, log file length, disk status etc.). The program is modular and highly configurable.
check_logfiles is a plugin for Nagios which checks logfiles for defined patterns. It is capable of detecting logfile rotation. If you tell it how the rotated archives look, it will also examine these files. Unlike check_logfiles, traditional logfile plugins were not aware of the gap which could occur, so under some circumstances they ignored what had happened between their checks. A configuration file is used to specify where to search, what to search, and what to do if a matching line is found.