The ultimate solution for
log collection and centralization

Trusted by thousands

Compare NXLog Enterprise and Community Editions Select your use case
Centralized logging from across macOS fleets

At NXLog, our mission is to provide you with solutions to enable you to collect event data securely reliably efficiently

We offer superior log collection technology that works on all major operating systems, is compatible with most SIEM and log analytics products, and can handle data sources that other tools cannot cope with giving you more visibility into your systems and operations.

NXLog is trusted by thousands of users and organizations across the globe, and is used and recommended by MSSPs and IT security professionals.

Log Collection Solutions

The NXLog Community Edition is an open source log collection tool available at no cost. It is available for various platforms including Windows and GNU/Linux. The NXLog Community Edition is used by thousands worldwide from small startup companies to large security enterprises and has over 70,000 downloads to date. Its flexibility allows it to be utilized in various setups and can be used both as a log collector agent and as a log server.

In addition to the features that our NXLog Community Edition users love such as the flexibility, low memory footprint and high performance, the NXLog Enterprise Edition contains dozens of enhancements and additional features which can be useful in enterprise deployments. These features are enhanced reliability, support for additional log sources such as CheckPoint LEA, NetFlow and SNMP events, agent management and monitoring capabilities, remote Windows EventLog collection, ODBC input and output modules to read/write data into databases (e.g. Microsoft SQL Server) and many more.

Managing and monitoring a large number of log collector agents can be tough, especially if you have a lot of servers in different roles with multiple teams in charge. NXLog Manager can remotely manage and monitor NXLog Enterprise Edition instances using a centralized web based management console.

We offer a number of add-on products to collect logs from various solutions and services such as Salesforce, Box, Okta, Microsoft Exchange, and Microsoft Azure and Office365.

NXLog Chatter

Windows Event Collector unreliable log delivery

In this curious case of Windows Event Collector producing unreliable log delivery, NXLog was used to forward host event logs instead of WEC/WEF, and NXLog achieved 100% reliable delivery.

2022.07.23. 08:47

How to convert windows security events into .log or .syslog format

NXLog is recommended to be used to filter out login details and SIDs from windows security events.

2022.07.04. 14:58

NXLog's felxibility and speed is exceptional

NXLog is endorsed for its features when it comes to edge filtering/routing/processing

2022.07.02. 11:01

NXLog News

Jun 01

Compliance mandates are frameworks that organizations must implement to meet industry regulations. Some of these mandates provide guidelines and best practices, while others ...

May 30

It is known that measuring performance is one of the most challenging tasks in system administration. It requires proper configuration and a good understanding of the results...

May 26

ON-DEMAND WEBINAR: Collect logs from your macOS computers centrally to increase security We are happy to share the recording of our latest webinar focusing on the importance of ...

May 17

NXLog Community Edition 3.0.2284 is now available on the download page This is a minimal hotfix release addressing two critical bugs community users reported against the releas...

What Users Say

This is an amazing product. Nxlog looks super-cool in so many ways.

nxlog is a lot leaner and does a great job pulling Windows Event Log data and forwarding it to Logstash using JSON or GELF. Its configuration syntax is also a lot more robust and full-featured than Logstash's, so you might find it easier to do complex things with your event logs before you forward them, like filtering out noisy logs before they ever get to the server.

Awesome! everything is working as expected, thank you for the great support and product!

I wanted to pop in and say how impressed I am with nxlog. I really like the architecture and philosophy on how it is compartmentalized and tries to maintain structured data throughout the transaction. That makes perfect sense.

papertrailapp.com: To send log files and event logs from all Windows variants, we recommend nxlog.

Have already spent lots of time testing other opensource tools, but none suited so far, only nxlog has helped this far that too with less memory, CPU and IO :)

nxlog is a GREAT application, and it has countless uses in my development test environment. Glad I ran across it!

First of all, I checked out a bunch of centralized logging systems before finding nxlog, and it is refreshing in its simplicity and conciseness. I really appreciate the small and tight C code.

In researching how to get nxlog up and running, I found the configuration syntax easy to use and really flexible. Thank you very much for the excellent program NXLOG.

Nice work on nxlog, it's a great product!

Our Partners

TEHTRIS is a French company specialized in cutting-edge IT security technologies. Their eGambit solution is a defensive cyber weapon system that includes SIEM, Endpoint Security, and Artificial Intelligence.

Raijin develops database products suitable for ingesting and storing event log data. NXLog Enterprise Edition can be configured to send logs directly to Raijin Server using the Raijin (om_raijin) output module.

Securonix is a provider of Next-Gen SIEM and EUBA solutions and is redefining the next generation of cyber-threat detection using the power of machine learning and big data.

LogPoint is a security analytics company based in Denmark providing a SIEM solution to turn big-data into real-time insights.

AST specializes in detecting and remediating even unknown types of cyberattacks in no time.

SIEMENS provides cybersecurity solutions to protect industrial plants and automation systems as well as grid operation with high-security standards. SIMATIC PCS 7 is a Supervisory Control and Data Acquisition (SCADA) solution from Siemens

AT&T Cybersecurity (before AlienVault) is a leading provider of SIEM products that include the Unified Security Management® (USM) platform which combines key security capabilities with expert threat intelligence.

Years in production