LogAnalysis.org has been around awhile. Although Marcus (yes, that Marcus Ranum) and tBird won't openly admit it, their main purpose in life is to produce more people on the planet capable of reading their own log files. A good SA or NSO should be able to read/filter raw logs. Think I'm kidding?
In any case, check out their online library. It's a good URL to have for reference.