v1.0 is now available
Your logs deserve
a better home.
Stop juggling AWS Console tabs and CSV exports. Query CloudWatch Logs and local files in a native macOS notebook.
Native macOS app • Universal Binary • No subscription
Stop juggling AWS Console tabs and CSV exports. Query CloudWatch Logs and local files in a native macOS notebook.
Native macOS app • Universal Binary • No subscription
Log investigation is iterative. You query, you refine, you cross-reference. Sherlog is designed around that workflow—not fighting against it.
Each query is a block with its own context. Chain investigations together, compare results side-by-side, and never lose your train of thought.
Query multiple log groups across regions without opening 15 browser tabs. Same Insights syntax you know, minus the AWS Console frustration.
Drag a CSV export, JSON dump, or JSONL file into Sherlog and instantly query it with SQL. No import wizards, no database setup.
Your local queries run on DuckDB—the same engine powering modern data tools. Analyze millions of rows without breaking a sweat.
Not an Electron app. Built with SwiftUI for instant startup, low memory usage, and the responsiveness you expect from macOS software.
Interactive data grids with sorting, filtering, and one-click export. See patterns in your logs, not just walls of text.
No setup wizards. No configuration files. Open Sherlog and start investigating.
Link your AWS credentials to query CloudWatch, or drag-and-drop local log files. Both work seamlessly.
Use CloudWatch Insights syntax for AWS logs, or standard SQL for local files. Each block remembers its own time range and source.
Results appear in an interactive grid. Sort columns, filter rows, and export what you need without leaving the app.
Found something interesting? Add a new block to dig deeper. Your investigation builds like a document you can save and revisit.
You've been doing this the hard way. Here's what changes.
Switching between AWS Console tabs
All log groups in one interface
Copy-pasting results to spreadsheets
Query and analyze in the same place
Re-running queries after timeout
Persistent blocks that save your work
CLI tools for local file analysis
Drag, drop, and query with SQL
Losing context between sessions
Notebook saves your investigation
Waiting for Electron apps to load
Native macOS speed
Sherlog was built by engineers who got tired of the same painful debugging workflows. Here's when it shines.
"Users are reporting 500 errors. You need answers fast."
Query your API Gateway logs and Lambda logs side by side. Filter by request ID, trace the error through services, and identify the failing deployment—all without context-switching.
"You just shipped. Did anything break?"
Compare error rates before and after deployment. Query two time ranges in separate blocks and visually diff the results. Know within minutes, not hours.
"Support needs to know what happened to user X at timestamp Y."
Pull CloudWatch logs and that CSV export from your billing system. Query both with SQL and correlate by user ID. Export your findings as evidence.
"Security team needs 90 days of access logs analyzed."
Export logs to JSON, drop them into Sherlog, and run SQL aggregations. Who accessed what, when, how many times. Generate the report without spinning up infrastructure.
Professional Edition
Download Sherlog and turn your chaotic debugging sessions into structured investigations. First query in under 60 seconds.