I'd like to see:
- A native 64 bit version.
- Conditional branching in the rules
- per server tracking for the timeout filters
- a 'not' condition(most likely useful with the conditional branching)
- the ability to import MIBs OR a better submisson process
- additional methods to send alarms(low disk space, msg count etc) - run a script, send a trap or syslog to another server.
- native integrations with 3rd party tools like OpsGenie and Pagerduty
- an API or some way to remotely pull stats into something like Graphite.
More capacity is always welcome, a web console would be nice but not a priority for me.
I don't want Kiwi to be a SEIM tool like Splunk or Arcsight. It's a log receiver and archiving tool and should stay in that realm, the focus and relative simplicity makes it easy to manage.