Sharing some resources for building and testing Grok patterns in adapter parsers.
Grok Constructor: https://grokconstructor.appspot.com/
This hasn’t been updated in a while, but it’s handled all of the default patterns I’ve thrown at it. It can also help generate the patterns, but your mileage may vary.
List of default patterns supported by LimaCharlie:
These are the patterns that LimaCharlie supports out of the box. If you need any of the extended patterns (e.g., Firewalls, Syslog, etc.), you’ll need to look at the pattern definition and build it from scratch