Event Horizon is a powerful, interactive log analysis tool designed to help you visualize and explore complex log files. Upload one or more log files, and Event Horizon provides an interactive timeline and detailed event table to help you identify patterns, correlate events, and diagnose issues.
- Interactive Timeline: Visualize log entries over time with dynamic vertical grid lines and time markers. Pan (click & drag), zoom (Ctrl/Cmd + mouse wheel, or use the zoom slider), and double-click to center and zoom in on a specific point in time. Use Shift+drag to create a selection box that intelligently zooms and centers the selected region. The current zoom level is displayed for easy reference.
- Detailed Event Table: View all log entries in a filterable, sortable table. Found entries are counted and displayed.
- Dynamic Filtering: Filter events by log level (Error, Warning, Info, etc.), source, and a full-text search on messages. The availability of other filters dynamically updates based on your selections to guide you toward meaningful results.
- Multi-File Support: Upload and analyze multiple log files simultaneously. Sources are automatically grouped by filename in the filter panel for easy identification.
- Session Management: Save your entire session—including all loaded logs, filters, and timeline position—to a JSON file. Load a session later to pick up right where you left off.
- Log Parsing: Automatically parses a variety of common log formats. Unrecognized lines are ingested with a generic 'Information' level and the timestamp of the previous valid entry.
- Significant Findings: Get a quick, at-a-glance overview of the total number of events, warnings, and errors across all loaded files.
- Click-to-Focus: Click an event in the table to immediately center it in the timeline, zoom to maximum magnification, and flash the event's icon, making it easy to see surrounding activity in high detail.
- Run the application.
- Drag and drop a log file onto the upload area, or click to browse.
- To add more files, click the "Add Log" button in the "Filter Events" panel.
- Use the filter controls and search bar on the left to narrow down events.
- Explore the timeline to identify patterns and anomalies.
- Click on any row in the "Detailed Event Log" table to highlight it and automatically navigate to it on the timeline.
- Use the "Save" and "Load" buttons to manage your analysis sessions.
Event Horizon is designed to be flexible and can parse many common text-based log formats out-of-the-box, including:
- Syslog (RFC 5424 and RFC 3164): Standard formats for system messages on Linux and other UNIX-like systems.
- Application Logs: Common formats like
TIMESTAMP LEVEL [Source] Message. - Windows Event Viewer (CSV): Logs exported from the Windows Event Viewer as
.csvfiles. - fail2ban:
fail2ban.logfiles with their specific format. - cloud-init: Both
cloud-init.logandcloud-init-output.logfiles. - dpkg:
dpkg.logfiles for Debian package management events. - apt-history:
apt-history.logfiles, with support for their multi-line, block-based format. - And more. The parser attempts to match against a variety of patterns.
This project was generated in Firebase Studio.
MIT License
Copyright (c) 2024 Google
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.