AzioEventLog Analyzer is a monitoring and analysis tool for Windows Event Logs with real-time tracking, database storage, advanced filtering capabilities, and interactive dashboard visualization.
- Real-time Monitoring Mode: Continuously monitor Windows Event Logs
- Database Mode: View and analyze historical logs with pagination and session-based filtering
- Summary Cards: Quick overview of total logs, errors, warnings, and information events
- Pie Chart: Visual distribution of log levels
- Timeline Chart: Events over time with zoom capability
- Top Sources Chart: Bar chart showing most active event sources
- Top Event IDs Chart: Horizontal bar chart of most frequent event IDs
- Session Filtering: Filter dashboard data by monitoring session
- Auto-refresh: Dashboard updates when switching sessions
- Filter by log source (System, Application, Security, etc.)
- Filter by log level (Error, Warning, Information, AuditSuccess, AuditFailure)
- Time-based filtering (Last hour, 24 hours, 3 days, 7 days)
- Session-based filtering for historical data
- Search in messages
- Filter by Event ID
- Filter by Source
- Save logs in multiple formats (TXT, JSON)
- Persistent SQLite database for log history
- Session tracking with unique identifiers
- Clear all history with one click
- Send log archives via email
- SMTP configuration through settings
- Archive latest logs folder to ZIP
- Built with Avalonia UI
- LiveChartsCore for interactive data visualization
- Batch processing for large log volumes
- Efficient memory management with pagination
- Error handling and user feedback
- WMI (Windows Management Instrumentation) integration
- Entity Framework Core with SQLite
- Operating System: Windows (tested on Windows 11)
- .NET: .NET 9.0
- Administrator Rights: Required for reading certain event logs (Security log)
- Select a Log Source (e.g., System, Application)
- Choose a Log Level to monitor (e.g., Error, Warning)
- Set a Time Range (e.g., Last 24 hours)
- Click Start to begin monitoring
- View logs in real-time in the output window
- Click Stop to end monitoring
- Click Save Logs to export the current session
- Toggle Database Mode to view historical logs
- Select a Session from the dropdown
- Use Search to find specific messages
- Filter by Event ID or Source
- Navigate through pages using pagination controls
- Adjust items per page for comfortable viewing
- Click Export Session to save all logs from a session
- Use Clear All History to delete all stored logs
- Switch to the Dashboard tab
- View summary cards with key metrics
- Analyze log distribution with the pie chart
- Track event frequency over time with the timeline
- Identify top event sources and IDs
- Select a session to filter dashboard data
- Click Refresh to update charts
Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.
Bohdan Harabadzhyu
This project is licensed under the MIT License - see the LICENSE file for details.
