Sloggo is a lightweight log collection and exploration tool designed for small to medium-sized setups. It ingests logs over TCP and UDP using the RFC 5424 Syslog protocol, stores them in DuckDB, and presents them in a clean, modern web UI. The tool is specifically designed for environments where users want real-time logs without spinning up the JVM or a full Kubernetes cluster.

Key features include RFC 5424 log ingestion over TCP and UDP, fast search capabilities, filtering functionality, log tailing, and support for up to 1 million logs per second ingestion rate. The application runs as a single process with minimal resource usage and requires quick configuration via environment variables.

The system works by collecting syslog messages through configurable TCP and UDP ports, parsing them according to RFC 5424 standards (with fallback to RFC 3164), and storing them efficiently in DuckDB. The web interface provides real-time log viewing and exploration capabilities through a React-based UI component called data-table-filters.

Benefits include lightweight operation with less than 10 MiB compressed size, real-time log monitoring, and simplified setup compared to full-fledged log management systems. It's suitable for development environments, small deployments, and scenarios where comprehensive logging solutions would be overkill.

Target users include developers and system administrators working with small to medium-sized setups who need basic log collection and viewing capabilities. The tool integrates with Docker containers and supports configuration through environment variables for TCP/UDP ports, API ports, log retention settings, and parsing formats.