diff --git a/parsers/s01-parse/custom-pihole-logs.yaml b/parsers/s01-parse/custom-pihole-logs.yaml
new file mode 100644
index 00000000000..2be9ab965bc
--- /dev/null
+++ b/parsers/s01-parse/custom-pihole-logs.yaml
@@ -0,0 +1,13 @@
+name: custom/pihole-logs
+description: Parser for Pi-hole logs on ARM/Armbian (dnsmasq/syslog format)
+filter: "evt.Line.Labels.type == 'pihole'"
+onsuccess: next_stage
+
+pattern_syntax:
+  SYSLOGDATE: '[A-Z][a-z]{2} +[0-9]{1,2} [0-9]{2}:[0-9]{2}:[0-9]{2}'
+
+nodes:
+  - grok:
+      pattern: "%{SYSLOGDATE:timestamp} %{WORD:process}\\[%{NUMBER:pid}\\]: %{GREEDYDATA:message}"
+      apply_on: message
+