my recommendation is for you to get your logs into something that you can then build an API on top of (or use an existing one)

ok that makes sense, I was going to feed results in graylog later so maybe it would make more sense to use their API. Thanks!