Providing Log Management
solutions for everyone

GET STARTED NOW!

Check out our products and services

Log Management Solutions

The NXLog Community Edition is an open source log management tool available at no cost. It is available for various platforms including Windows and GNU/Linux. The NXLog Community Edition is used by thousands worldwide from small startup companies to large security enterprises and has over 70,000 downloads to date. Its flexibility allows it to be utilized in various setups and can be used both as a log collector agent and as a log server.

In addition to the features that our NXLog Community Edition users love such as the flexibility, low memory footprint and high performance, the NXLog Enterprise Edition contains several enhancements which can be useful in enterprise deployments. These features are enhanced reliability, support for additional log sources such as CheckPoint LEA and SNMP events, agent management and monitoring capabilities, remote Windows EventLog collection, ODBC input and output modules to read/write data into databases (e.g. Microsoft SQL Server) and many more.

Managing and monitoring a large number of log collector agents can be tough, especially if you have a lot of servers in different roles with multiple teams in charge. NXLog Manager can remotely manage and monitor NXLog Enterprise Edition instances using a centralized web based management console.

NXLog Chatter

In his article titled Security Information & Event Management Design: Why log filtering is essential for windows domain log sources? Paul Dutot from Defence Logic raises some valid points about agent side filtering which we have been advocating for some time now. Well worth the read!

2018.05.23. 16:42

It's always delighting to hear users recommend NXLog:

NxLog - Such an awesome little free tool that will push windows events to your log aggregator in a variety of formats. Can even read in from files and push contents out

2018.04.10. 14:30

There was a discussion by the community on reddit about Centralized logging with Windows Event Forwarding. Some alternatives were also recommended.

2018.03.28. 13:46

Log Management News

Apr 11

As a result of several months' hard work we have released the NXLog Enterprise Edition v4.0 yesterday. Below is a summary of what the new release brings. Improved user guide ...

Dec 04

The main source of information for users looking to configure NXLog was the NXLog [EE/CE] Reference Manual until recently. The Reference Manual is mostly what it is called: a re...

Jul 18

NXLog users can benefit from a SANS course titled SEC555: SIEM with Tactical Analytics, the first vendor-neutral course of its kind. About SANS First of all, what is SANS? The...

Jun 30

We are proud to announce the general availability of NXLog Enterprise Edition v3.0 which is a major step forward to enhance the features and reliability of our flagship product....

What Users Say

papertrailapp.com: To send log files and event logs from all Windows variants, we recommend nxlog.

I went in search of a logging tool that could solve at least some of these issues... After looking around for some time, I stumbled across nxlog. Nxlog seems to support just about every log format on the planet, and will run on Windows and *nix servers. Its easy to setup, and just seems to work. The configuration is logical.

I wanted to pop in and say how impressed I am with nxlog. I really like the architecture and philosophy on how it is compartmentalized and tries to maintain structured data throughout the transaction. That makes perfect sense.

nxlog is a lot leaner and does a great job pulling Windows Event Log data and forwarding it to Logstash using JSON or GELF. Its configuration syntax is also a lot more robust and full-featured than Logstash's, so you might find it easier to do complex things with your event logs before you forward them, like filtering out noisy logs before they ever get to the server.

I set a lab environment up today with. A few ios syslogs, nix syslogs, and a 2008 nxlog sender. It(nxlog) fetched the events and sent it with no hassle. Pretty cool I must say...

Nxlog-ce is for me the best Windows logs parser, low memory footprint , low cpu.

I'm glad I discovered nxlog. I almost came to the conclusion that only the Splunk Universal Forwarder could do what I needed to do. Glad I performed that one last Google search which discovered nxlog...

nxlog is a GREAT application, and it has countless uses in my development test environment. Glad I ran across it!

This is an extremely slick and configurable tool...

I'm very new to this, but deeply impressed, what nxlog-ce is capable of...

Our Partners

Loggly is a cloud-based log management and analytics service provider based in San Francisco, California.

FireEye is an enterprise cybersecurity company that provides products and services, innovative security technologies and nation-state grade threat intelligence to protect against advanced cyber threats.

TEHTRI-Security is a French company specialized in cutting-edge IT Security technologies. Their eGambit solution is a defensive cyber weapon system that includes SIEM, Endpoint Security and Artificial Intelligence.

Raijin Ltd develops database products suitable for ingesting and storing event log data.

IS-Systems is a Russian systems integrator providing IT security services.

AlienVault is a leading provider of SIEM products that include the Unified Security Management® (USM) platform which combines key security capabilities with expert threat intelligence.

5thColumn, LLC is a full service information technology company centered on next generation cyber threat protection and enterprise data security.

Aster Security is a US based company providing products and professional services focusing on IT security.

Securonix is a provider of Next-Gen SIEM and EUBA solutions and is redefining the next generation of cyber-threat detection using the power of machine learning and big data.

Radarservices is a Managed Security Services Provider based in Austria using a unique combination of automated risk detection and analysis tools combined with risk and security experts running a cyber defense center.

LogPoint is a security analytics company based in Denmark providing a SIEM solution to turn big-data into real-time insights.

Infosecurity LLC is an IT security services provider and integrator in Russia.

Symtrex is a cyber security solutions provider with focus on consultancy and assist their customers in North America with cyber security issues, solutions and products.