Ship logs from any source, parse them, get the right timestamp, index them, and search them.

All your logs from all over your infrastructure in one place - with searching and graphing. Since we can easily parse text-based logs, you can query for more precise things like, all 404 http errors, nagios critical alerts in hard state, or mail server faults - all without accidentally finding logs with the word ‘404’ or ‘critical’ in the wrong place.

[36 mins] logstash @ puppetconf (September 2012)
[30 mins] logstash @ SF Metrics (October 2012)
[24 mins] logstash on Concise Courses (October 2012)