Skip to content
/ libgrok-py Public
forked from atomatt/libgrok-py

Python wrapper for semicomplete's Grok - a library that allows you to easily parse logs and other files, turning unstructured log text into structured data

1 star 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kippandrew/libgrok-py

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
libgrok
libgrok
 
 
test
test
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
setup.py
setup.py
 
 

Repository files navigation

Python wrapper for semicomplete's Grok library.

About

Grok allows you to easily parse logs and other files and turns the unstructured log and event data into structured data.

Installing

You will need libgrok installed in other to use libgrok-py. On MacOSX, Grok is available via Homebrew:

Install Grok Dependencies

brew install tokyo-cabinet pcre libevent

Install Grok

brew install grok

Install libgrok-py

python test/testlibgrok.py
python setup.py install

Usage

>>> import libgrok
>>> grok = libgrok.Grok()
>>> grok.add_patterns_from_file('test/patterns/base')
>>> grok.compile('%{URI:foo}')
>>> match = grok("http://www.example.com/test/")
>>> match.captures.items()
[('USERNAME', ''), ('HOSTNAME', 'www.example.com'), ('URIPATH', '/test/'), ('IPORHOST', 'www.example.com'), ('POSINT:port', ''), ('URIPROTO', 'http'), ('IP', ''), ('URIHOST', 'www.example.com'), ('URIPATHPARAM', '/test/'), ('URI:foo', 'http://www.example.com/test/'), ('URIPARAM', ''), ('USER', '')]
>>> match["foo"]
'http://www.example.com/test/'

About

Python wrapper for semicomplete's Grok - a library that allows you to easily parse logs and other files, turning unstructured log text into structured data

Resources

Readme
Activity

Stars

1 star

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 67.3%
  • Perl 32.7%