Initial cross-server log inventory + anomaly scan

- 10 hosts (mo1, ams, ams2, ro1, ca1, ca2, ca3, fr1, sony, termux) - discover-logs.sh: portable inventory (Linux/FreeBSD/Termux) - scan-anomalies.sh: ERROR/WARN/CRITICAL counts + journalctl + kubectl - run-all.sh: parallel SSH fan-out - build-summary.py: aggregates into reports/SUMMARY.md - 5 HIGH-severity findings identified on ro1 (apache scanner traffic, mount_monitor warnings)
2026-04-10 21:49:17 +00:00
parent cabf4c587f
commit e96a8b03fc
26 changed files with 1636 additions and 1 deletions
--- a/logs/inventory/ca3.csv
+++ b/logs/inventory/ca3.csv
@@ -0,0 +1,9 @@
+"/var/log/alternatives.log",4186,"2026-03-21 17:01:09","alternatives.log"
+"/var/log/apt/eipp.log.xz",12428,"2026-03-31 21:36:43","apt"
+"/var/log/apt/history.log",11579,"2026-03-31 21:36:51","apt"
+"/var/log/apt/term.log",63092,"2026-03-31 21:36:51","apt"
+"/var/log/auth.log",1476,"2024-02-05 18:44:54","auth.log"
+"/var/log/daemon.log",28345,"2024-02-05 18:44:55","daemon.log"
+"/var/log/dpkg.log",137512,"2026-03-31 21:36:51","dpkg.log"
+"/var/log/messages",281,"2024-02-05 18:42:59","messages"
+"/var/log/syslog",28775,"2024-02-05 18:44:55","syslog"