Incident response log checklist
Confirm context, ownership, and redaction quality before escalation.
OpenLog / JSON Sanitizer
Mask tokens and PII while keeping JSON/log structure readable. Runs locally in your browser.
Input logs / JSON
Safe output
Redaction report
Run sanitize to see what changed.
Recommended Next Steps
What this tool does
Log / JSON Sanitizer: Mask tokens and PII in logs or JSON while keeping structure readable.
This tool scans logs and JSON payloads for common secrets and identifiers and replaces them with explicit placeholders.
It keeps formatting intact so the sanitized output is still useful for incident timelines and debugging notes.
What we redact
| Category | Examples | Replacement |
|---|---|---|
| Authorization header | Authorization: Bearer … | [REDACTED:AUTH] |
| API key headers | x-api-keyapi-key | [REDACTED:API_KEY] |
| Cookie header | Cookie: sessionid=… | [REDACTED:COOKIE] |
| Set-Cookie header | Set-Cookie: session=… | [REDACTED:SET_COOKIE] |
| Token-like query params | tokenaccess_tokenid_tokenapi_keysignaturesessionauth | [REDACTED:QP] |
| JWTs in text | eyJ... | [REDACTED:JWT] |
| Email addresses | user@example.com | [REDACTED:EMAIL] |
| IP addresses | 203.0.113.10 | [REDACTED:IP] |
| Card numbers (Luhn) | 4111 1111 1111 1111 | [REDACTED:CARD] |
| Bearer tokens inline | Bearer abc.def.ghi | Bearer [REDACTED:BEARER] |
Common use cases
- Sharing production logs in a support ticket safely.
- Preparing incident handoff notes for another team.
- Posting error payloads in internal chat without secrets.
- Cleaning up JSON before attaching it to a Jira ticket.
FAQ
Does this upload my logs anywhere?
Sanitization runs locally in your browser. Only anonymized analytics events (e.g., button clicks) may be sent if analytics is enabled; raw input/output is not transmitted by default.
Will it pretty-print JSON for me?
Yes. If the input is valid JSON, the tool can pretty-print it before redacting so the result is readable.
Can I share sanitized logs in a ticket?
Yes, that is the intended workflow. Always review output for any context-specific secrets first.
Popular search queries
- sanitize logs for support
- redact api keys in logs
- remove jwt from logs
- mask emails in logs
- mask ip addresses in logs
- sanitize json payloads
- clean logs for incident handoff
- redact tokens in logs
- secure log sharing
- sanitize logs locally
More search queries
- remove secrets from logs
- redact cookies in logs
- sanitize logs for vendor
- mask authorization in logs
- sanitize logs for jira
- redact card numbers in logs
- sanitize logs for zendesk
- safe log snippet sharing
- sanitize error payloads
- sanitize logs for compliance
Related tools & docs
- Tools hub
- cURL / header sanitizer
- HAR sanitizer for request traces
- Guide: how to share logs safely
- Incident response log checklist
- Redaction coverage reference
- Incident handoff checklist
- /lp/sanitize-production-logs/
- /docs/what-we-redact
- /tools/redaction-test-lab
Not legal advice and not a security guarantee. Always review sanitized output before sharing.