search
MainDiscord Community
githubEdit

rectangle-terminalgrep

When investigating bugs, crashes, or unexpected behavior, analyzing logs becomes crucial. The grep command is one of the most powerful and essential tools in Linux for this purpose.

hashtag
Basic Syntax

grep [options] pattern [file...]

hashtag
Option Examples

Option
Example
Description

-i

Ignore case sensitivity.

-w

Search for the full word only.

-A

Show 3 lines after the match.

-B

Show 4 lines before the match.

-C

Show 5 lines around the match.

-r

Recursive search in subdirectories.

-v

Show lines that do not match.

-e

Use regex (basic regular expressions).

-E

Use extended regex.

-c

Count the number of matches.

-l

Print filenames of matches.

-o

Only show the matching part.

-n

Show line numbers of matches.

hashtag
grep Regular Expressions

hashtag
Wildcards

  • . Any single character

  • ? Optional, occurs once

  • * Optional, occurs multiple times

  • + Required, occurs multiple times

hashtag
Quantifiers

  • {n} Exactly n times

  • {n,} At least n times

  • {,m} Up to m times

  • {n,m} Between n and m times

hashtag
POSIX Character Classes

  • [:alpha:] Any letter (a-zA-Z)

  • [:digit:] Any digit (0-9)

  • [:alnum:] Any letter or digit

  • [:space:] Any whitespace

hashtag
Character Ranges

  • [A-Za-z] Any letter

  • [0-9] Any digit

  • [0-9A-Za-z] Any letter or digit

hashtag
Positions

  • ^ Beginning of line

  • $ End of line

  • ^$ Empty line

  • \< Start of word

  • \> End of word

hashtag
Most Useful grep Commands

hashtag
1. Find a Specific Keyword

Find lines containing "error" in application.log.

hashtag
2. Case-Insensitive Search

Match "warning", "Warning", "WARNING", etc.

hashtag
3. Recursive Search

Search inside all files under /var/log/ directory.

hashtag
4. Show Line Numbers

Display matching lines with line numbers.

hashtag
5. Show Lines Before/After/Context

  • Show 5 lines after match:

  • Show 5 lines before match:

  • Show 5 lines before and after match:

Very useful to understand surrounding context of an error.

hashtag
6. Multiple Keywords (OR Search)

Match any of the words: fatal, panic, or critical.

hashtag
7. Invert Match

Show lines excluding "INFO". Helps to filter out noise.

hashtag
8. Count Occurrences

Display how many times "timeout" appears.

hashtag
9. Search Whole Words

Match "start" exactly β€” not "restart" or "started".

hashtag
10. Live Log Monitoring

Monitor a log in real-time and only show new lines containing "error".

hashtag
Save Results to a File

Redirect grep results into a file for later review.

hashtag
Piping with grep

When analyzing logs, you often deal with large outputs or want to chain commands together. That's where piping (|) becomes extremely powerful with grep.

Piping allows you to take the output of one command and pass it directly as input to grep, without needing intermediate files.

hashtag
Basic Syntax

| sends the output of the left-hand command to the input of the right-hand command.

hashtag
Common Piping Examples

hashtag
1. Filter dmesg Logs for USB Events

Search for "usb" events in kernel logs.

hashtag
2. Find Running Processes

List all running processes and filter those related to "python".

hashtag
3. Combine with tail for Real-Time Monitoring

Monitor a growing log file and only show lines containing "error".

hashtag
4. Chain Multiple Pipes

You can chain pipes for even more advanced filtering:

Find "timeout" entries but exclude lines mentioning "retry".

hashtag
5. Use with ls to Search for Files

List only nginx-related files inside /var/log.

hashtag
Quick Tip: Grep Output Colors

You can enable colored output when using grep with pipes:

Highlight matching text for better visibility.

hashtag
Resources for Practicing

LogoGrep in Bash on ExercismExercismchevron-right
LogoSolve Programming Questions | HackerRankHackerRankchevron-right

hashtag
grep Cheatsheet

Next: You can level up further by learning awk and sed for advanced log analysis!

PreviousCommandsNextsed

Last updated