The ultimate solution for
log collection and centralization

Trusted by thousands

Explore NXLog
products SIEM Optimization
Resource Pack Watch
Enterprise 5.0 webinar

Log Collection Solutions

The NXLog Community Edition is an open source log collection tool available at no cost. It is available for various platforms including Windows and GNU/Linux. The NXLog Community Edition is used by thousands worldwide from small startup companies to large security enterprises and has over 70,000 downloads to date. Its flexibility allows it to be utilized in various setups and can be used both as a log collector agent and as a log server.

In addition to the features that our NXLog Community Edition users love such as the flexibility, low memory footprint and high performance, the NXLog Enterprise Edition contains dozens of enhancements and additional features which can be useful in enterprise deployments. These features are enhanced reliability, support for additional log sources such as CheckPoint LEA, NetFlow and SNMP events, agent management and monitoring capabilities, remote Windows EventLog collection, ODBC input and output modules to read/write data into databases (e.g. Microsoft SQL Server) and many more.

Managing and monitoring a large number of log collector agents can be tough, especially if you have a lot of servers in different roles with multiple teams in charge. NXLog Manager can remotely manage and monitor NXLog Enterprise Edition instances using a centralized web based management console.

We offer a number of add-on products to collect logs from various solutions and services such as Salesforce, Box, Okta, Microsoft Exchange, and Microsoft Azure and Office365.

NXLog Chatter

"NXLog is an excellent log shipper that, besides being able to collect Windows Security logs, Sysmon logs, can collect custom logs", including logs from various browsers.

2020.09.21. 12:54

Collecting Windows event logs in enterprise environment

NXLog gets recommended in a Tweet as the ultimate solution for the job

2020.09.02. 10:18

NXLog gets recommended in a MCAfee discussion community as a solution for parsing additional fields in different Windows events

2020.08.20. 15:51

NXLog News

Sep 17

Release Announcement We are proud to announce the first minor release in the new major version of NXLog Enterprise Edition. The release fixes a number of bugs and issues, but ...

Aug 20

In this 30-minute webinar Jesse Hulsey, Product Manager, walks you through the various new features of NXLog Enterprise Edition 5.0, including passive network monitoring and cap...

Jul 31

We are excited to announce our upcoming LIVE WEBINARS on the new NXLog Enterprise Edition 5.0 REGISTER NOW IN THIS 30-MINUTE LIVE WEBINAR, JESSE HULSEY, PRODUCT MANAGER, WILL ...

Jul 17

Release announcement We are happy to announce the release of NXLog Enterprise Edition v4.8 Our team has worked on and solved 58 issues to reach this milestone. This release i...

What Users Say

Oh #nxlog, why did we not get to know each other sooner? Great to see such a well-designed logging tool.

Nxlog-ce is for me the best Windows logs parser, low memory footprint , low cpu.

I'm using nxlog-ce for a couple of weeks now, and I love it. Every day I'm finding out a new detail that impresses me, or an easier way to solve a problem I had before...

Small and efficient and gets the job done.

I find that your product is very powerful and is one of the best choice for the implementation of a distributed log system in a heterogeneous network where multiple OS (Unix/Linux and windows) should be supported.

I definitely prefer the way you present configuration to that of rsyslog etc. I have suggested nxlog to some customers however as far better option to collectors from the likes of Arcsight...

I'm glad I discovered nxlog. I almost came to the conclusion that only the Splunk Universal Forwarder could do what I needed to do. Glad I performed that one last Google search which discovered nxlog...

If Snare’s your butter knife, nxlog is your Swiss Army Knife. With multi-platform support and a gigantor feature list, nxlog is likely to be your next step when you run into some of the limitations of Snare and other simple forwarders. Capturing data from more locations than event logs? Check! Secure transport? Of course! Without question there’s more of a learning curve, but for most organizations serious about log collection on windows (and other platforms!), it’s well worth the time investment. https://opsbot.com/windows-first-class-centralized-logging-citizen/

nxlog is a GREAT application, and it has countless uses in my development test environment. Glad I ran across it!

This little piece of software is awesome, you rock!

Our Partners

SolarWinds Loggly® is an easy-to-use, cloud based service for monitoring, log analysis, and collaboration. Since 1999, SolarWinds' mission has been to provide purpose-built products that are designed to make jobs easier for technology professionals.

FireEye is an enterprise cybersecurity company that provides products and services, innovative security technologies and nation-state grade threat intelligence to protect against advanced cyber threats.

TEHTRI-Security is a French company specialized in cutting-edge IT Security technologies. Their eGambit solution is a defensive cyber weapon system that includes SIEM, Endpoint Security and Artificial Intelligence.

Raijin Ltd develops database products suitable for ingesting and storing event log data.

IS-Systems is a Russian systems integrator providing IT security services.

AlienVault is a leading provider of SIEM products that include the Unified Security Management® (USM) platform which combines key security capabilities with expert threat intelligence.

5thColumn, LLC is a full service information technology company centered on next generation cyber threat protection and enterprise data security.

Aster Security is a US based company providing products and professional services focusing on IT security.

Securonix is a provider of Next-Gen SIEM and EUBA solutions and is redefining the next generation of cyber-threat detection using the power of machine learning and big data.

Radarservices is a Managed Security Services Provider based in Austria using a unique combination of automated risk detection and analysis tools combined with risk and security experts running a cyber defense center.

LogPoint is a security analytics company based in Denmark providing a SIEM solution to turn big-data into real-time insights.

Infosecurity LLC is an IT security services provider and integrator in Russia.

Symtrex is a cyber security solutions provider with focus on consultancy and assist their customers in North America with cyber security issues, solutions and products.