---
name: log-sentinel
description: Use this skill when the user asks to "analyze logs", "monitor logs", "detect anomalies", "log alerting", "setup log monitoring", "check for errors in logs", or mentions analyzing system/application logs.
version: 1.0.0
---

# Log Sentinel Skill

Analyzes system and application logs to detect anomalies, errors, security threats, and performance issues.

## What It Detects

- **Security Threats**: Brute force, intrusion attempts
- **System Issues**: OOM events, disk warnings, crashes
- **Application Errors**: HTTP 500, database failures

## Quick Commands

```bash
# Find errors in syslog
grep -i "error\|fail\|critical" /var/log/syslog | tail -50

# Failed SSH logins
grep "Failed password" /var/log/auth.log | awk '{print $(NF-3)}' | sort | uniq -c | sort -nr

# Real-time monitoring
tail -f /var/log/syslog | grep --line-buffered -i "error"
```

## Usage

```
"Analyze system logs for errors"
"Check for brute force attempts"
"Setup log alerting for this server"
```