Log-bringer
Log-bringer is designed for automatic collection of system log files. It collects all logs and useful system information into one archive. Log-bringer is delivered with each module and is embedded into DerScanner as a system program. To run the program, it must have execution permissions.
If DerScanner version 11 or higher is installed, the log collection program is embedded into the system's modules (APP, SAST, DAST, SCA) by default. If a lower version is installed, an up-to-date program can be requested from technical support.
To execute the program, run the command: sudo log-bringer
The program will ask you to select a date from which event logs should be collected. Choose the desired date. The program will automatically collect event logs from the selected date up to the current date and create an archive with them.
The result is an archive with logs. The archive is password-protected. The archive adheres to the following structure:
Common logs
| Path | Description |
|---|---|
| log_bringer.log | errors that occur when the program is running |
| system/cpuinfo.log | information about the processor |
| system/meminfo.log | information about RAM |
| system/os_info.log | information about the OS |
| system/disk_space.log | information about the disk space |
| system/kernel.log | information about the OS core errors |
| system/processes.log | a list of processes running in the system |
| system/vm_state.log | information about the used resources |
| system/ip_addr.log | information about the network configuration of the server |
| system/loadavg.log | information about the load average on a processor |
| system/uptime.log | information about the system's uptime since last restart |
Docker logs
| Path | Description |
|---|---|
| docker/docker_info.log | information about version of docker and docker compose |
| docker/daemon.json | information about the docker configuration of the server (/etc/docker/daemon.json) |
| docker/docker_ps.log | table with main information about containers (docker ps -a) |
| docker/container_top.log | extended information about containers |
| docker/docker_images.log | information about loaded images in the docker |
| docker/docker_volumes.log | information about created volumes in the docker |
| docker/ docker_system_disk_free.log | information about docker disk usage |
| docker/ docker_system_disk _free_detailed.log | detailed information about docker disk usage |
| docker/docker_stats.log | container(s) resource usage statistics |
APP module logs
| Path | Description |
|---|---|
| app-module | directory, exists if the APP module is available; files with information about Frontend, Backend, ActiveMQ Artemis, Postgres, Postfix |
| app-module/app.compose.yml | docker-compose configuration for APP module |
| app-module/ systemd_app_service.log | information about APP systemd service |
| app-module/app-db/postgres.env | configuration for app-db service; first initialization of DB connection |
| app-module/app-db/ container_app-db.log | logs from app-db container; main postgresql log file |
| app-module/app-db/scans.log | exists if the app-db docker image is available; information about SAST scans from DB table |
| app-module/app-db/tasks.log | exists if the app-db docker image is available; information about SAST tasks from DB table |
| app-module/frontend | directory with configurations and logs for NGINX |
| app-module/frontend/ default.conf.template | NGINX configuration (old version) |
| app-module/frontend/ frontend.env | NGINX configuration variables (new version) |
| app-module/frontend/ logs/access.log | NGINX access logs |
| app-module/frontend/ logs/error.log | NGINX error logs |
| app-module/backend | directory, files with logs and configuration for Backend |
| app-module/backend/license.xml | product license |
| app-module/backend/backend.env | configuration for Backend |
| app-module/backend/logs | directory, main logs from web application |
| app-module/artemis/ container_artemis.log | logs from ActiveMQ Artemis container |
| app-module/postfix/ container_postfix.log | logs from Postfix container |
SAST module logs
| Path | Description |
|---|---|
| sast-module | directory, exists if the SAST module is available; configuration and log files for SAST module |
| sast-module/ sast.compose.yml | docker-compose configuration for SAST module |
| sast-module/ systemd_sast _service.log | information about SAST systemd service |
| sast-module/ sast-daemon/ daemon.env | configuration for daemon service |
| sast-module/ sast-daemon/logs | directory, SAST logs on the server |
DAST module logs
| Path | Description |
|---|---|
| dast-module | directory, exists if the DAST module is available; configuration and log files for DAST module |
| dast-module/ dast.compose.yml | docker-compose configuration for DAST module |
| dast-module/ systemd_dast_service.log | information about DAST systemd service |
| dast-module/daemon/ dast-daemon.env | configuration for DAST module service |
| dast-module/daemon/ container_dast _daemon.log | logs from DAST module container |
| dast-module/ daemon/logs | directory, logs from DAST module |
| dast-module/zap/zap.env | configuration for DAST module service - DAST locale |
| dast-module/zap/ container_zap.log | logs from DAST module container |
SCA module logs
| Path | Description |
|---|---|
| osa-module | directory, exists if the SCA module is available; configuration and log files for SCA module |
| osa-module/ osa.compose.yml | docker-compose configuration for SCA module |
| osa-module/ systemd_osa_service.log | information about SCA systemd service |
| osa-module/osa-daemon/ osa-daemon.env | configuration for osa-daemon service |
| osa-module/osa-daemon/ container_osa-daemon.log | logs from osa-daemon container |
| osa-module/osa-daemon/ logs | directory, logs from osa-daemon analysis |
| osa-module/osa/ container_osa.log | logs from SCA container |
| osa-module/osa-db/ container_osa-db.log | logs from osa-db container |
| osa-module/ sbom-generator/ container_sbom- generator.log | logs from SBOM-generator container |