The ultimate solution for
log collection and centralization

Trusted by thousands

Explore NXLog
products Download
brochure Read our SIEM
eBook Reliable
DNS logging

Log Collection Solutions

The NXLog Community Edition is an open source log collection tool available at no cost. It is available for various platforms including Windows and GNU/Linux. The NXLog Community Edition is used by thousands worldwide from small startup companies to large security enterprises and has over 70,000 downloads to date. Its flexibility allows it to be utilized in various setups and can be used both as a log collector agent and as a log server.

In addition to the features that our NXLog Community Edition users love such as the flexibility, low memory footprint and high performance, the NXLog Enterprise Edition contains dozens of enhancements and additional features which can be useful in enterprise deployments. These features are enhanced reliability, support for additional log sources such as CheckPoint LEA, NetFlow and SNMP events, agent management and monitoring capabilities, remote Windows EventLog collection, ODBC input and output modules to read/write data into databases (e.g. Microsoft SQL Server) and many more.

Managing and monitoring a large number of log collector agents can be tough, especially if you have a lot of servers in different roles with multiple teams in charge. NXLog Manager can remotely manage and monitor NXLog Enterprise Edition instances using a centralized web based management console.

We offer a number of add-on products to collect logs from various solutions and services such as Salesforce, Box, Okta, Microsoft Exchange, and Microsoft Azure and Office365.

NXLog Chatter

NXLog in Enterprise Security Magazine Medium post "Top SIEM Companies 2020".

"NXLog is a generic log collector and centralization tool with an open source log management system to manage the quality of data for SIEM. It is used by thousands of customers worldwide from small startup companies to large security enterprises and has over 70,000 downloads to date. NXLog makes Windows Event logs easy to read and interpret, while being less time-consuming and error-free. The SIEM solution provider is able to parse the event logs into readable JSON formatted logs. With a strong background in UNIX systems, NXLog remains platform neutral, benefitting the enterprise clients significantly."

Download our SIEM book here.

2020.03.20. 22:17

No More Secrets: Logging Made Easy Through Graylog Part 3

This a continuation of a longer series that VDA Labs is writing on Graylog also features NXLog Community Edition to ship DC logs back to Graylog.

2020.03.04. 12:47

Interesting discussion in a thread about open source SIEM at the Educause Security Discussion mailing list. Don't believe that 'nothing integrates' with your SIEM. Log collection agents such as ours can be integrated with your SIEM solution regardless if it is open source or not.

2020.02.13. 21:48

NXLog News

Jun 23

Release announcement We are happy to announce NXLog Enterprise Edition v5.0. This is a new major release that lays the foundation of improvements for the near future. We worke...

Jun 23

NXLog Ltd, developer of multiplatform log collection suite, has now published a new major release, NXLog Enterprise Edition version 5.0, which includes many new features for enh...

Apr 03

Release announcement After a period of quiet contemplation we are proud to announce version 5.5 of NXLog Manager. The team added a few minor features, but the highlight of the...

Mar 17

At NXLog we aim to provide quality service and support to our customers despite the restrictions associated with COVID-19. The company has established a business continuity plan...

What Users Say

Its the ultimate tool so far to get android logs into logstash/splunk/and other futuristic log mgmt tools.

This is an extremely slick and configurable tool...

NXLog - Such an awesome little free tool that will push windows events to your log aggregator in a variety of formats. Can even read in from files and push contents out. https://www.reddit.com/r/sysadmin/comments/8a9xzt/everyone_loves_to_bitch_about_printers_dns/dwx4em9/

Oh #nxlog, why did we not get to know each other sooner? Great to see such a well-designed logging tool.

In researching how to get nxlog up and running, I found the configuration syntax easy to use and really flexible. Thank you very much for the excellent program NXLOG.

I really like nxlog and am gonna start using it on other projects we have. Thank you for this great product!

nxlog is a GREAT application, and it has countless uses in my development test environment. Glad I ran across it!

My goal was simple: to find a decent, reliable, easy to install and configure syslog server app. Windows support and rotation were critical. So far looks like nxlog is the answer and I already started recommending it to customers...

Tired of Snare? Need more than what OSSEC can provide? Then check nxLog. It is a highly flexible event forwarder for both Windows and Linux. https://www.alienvault.com/forums/discussion/1800/nxlog-for-collecting-windows-logs

While I have used both rsyslog and syslog-ng, I am now drawn towards nxlog as a more powerful tool. It does a lot natively in terms of log massaging and organization. Take a look at it when you have the chance.

Our Partners

SolarWinds Loggly® is an easy-to-use, cloud based service for monitoring, log analysis, and collaboration. Since 1999, SolarWinds' mission has been to provide purpose-built products that are designed to make jobs easier for technology professionals.

FireEye is an enterprise cybersecurity company that provides products and services, innovative security technologies and nation-state grade threat intelligence to protect against advanced cyber threats.

TEHTRI-Security is a French company specialized in cutting-edge IT Security technologies. Their eGambit solution is a defensive cyber weapon system that includes SIEM, Endpoint Security and Artificial Intelligence.

Raijin Ltd develops database products suitable for ingesting and storing event log data.

IS-Systems is a Russian systems integrator providing IT security services.

AlienVault is a leading provider of SIEM products that include the Unified Security Management® (USM) platform which combines key security capabilities with expert threat intelligence.

5thColumn, LLC is a full service information technology company centered on next generation cyber threat protection and enterprise data security.

Aster Security is a US based company providing products and professional services focusing on IT security.

Securonix is a provider of Next-Gen SIEM and EUBA solutions and is redefining the next generation of cyber-threat detection using the power of machine learning and big data.

Radarservices is a Managed Security Services Provider based in Austria using a unique combination of automated risk detection and analysis tools combined with risk and security experts running a cyber defense center.

LogPoint is a security analytics company based in Denmark providing a SIEM solution to turn big-data into real-time insights.

Infosecurity LLC is an IT security services provider and integrator in Russia.

Symtrex is a cyber security solutions provider with focus on consultancy and assist their customers in North America with cyber security issues, solutions and products.