syslog-scripts

filter syslog files, create counts...

group output by time

This should give you idea what you can grep for to find in that file:

cat /var/log/syslog | cut -d' ' -f-5 | sed 's/\[[0-9]*\]//' | ./group-by-10m.sh | less -S

grep -i from= /var/log/mail.log | grep to= | sed -e 's/\[.*from=/ from=/' | ./group-by-1h.sh  | less -S

grep squirrelmail /var/log/mail.log | cut -d: -f -5 | ./group-by-10m.sh | less -S

grep 'wordpress\[' /var/log/auth.log | ./group-by-10m.sh  | less -S

perl -p -i -n -e 's/(\s+)daily/$1daily\n$1dateext/' /etc/logrotate.d/*

show uses with more than 5 ldap ENTRY requests

grep slapd /var/log/syslog | grep ENTRY | sed -e 's/: conn=.*ENTRY//' | ./group-by-10m.sh | grep -v '^ *[1234] ' | less -S

show number of ban/unban events on group by priod

grep NOTICE /var/log/fail2ban.log | sed -e 's/ [0-9\.]*$//' | ./group-by-1h.sh

Name		Name	Last commit message	Last commit date
Latest commit History 23 Commits
munin-plugins		munin-plugins
README.md		README.md
check-mikrotik.sh		check-mikrotik.sh
grep-mac.sh		grep-mac.sh
grep-sw.sh		grep-sw.sh
group-by-10m.sh		group-by-10m.sh
group-by-1h.sh		group-by-1h.sh
group-by-5m.sh		group-by-5m.sh
mail-count.sh		mail-count.sh
ntop-flood.sh		ntop-flood.sh
ntop-tail.sh		ntop-tail.sh
syslog-count-hosts.sh		syslog-count-hosts.sh
tail-sw.sh		tail-sw.sh
wlan-ssid-stations-total.sh		wlan-ssid-stations-total.sh
wlan-ssid-stations.sh		wlan-ssid-stations.sh
wordpress-tail.sh		wordpress-tail.sh