LongTail Log Analysis

Assorted Statistics

Analysis does not include today's numbers. Numbers rounded to two decimal places

Created on Mon Mar 18 11:18:38 EDT 2019

Normalized data is data that consists of only full days of attacks, AND to servers that are NOT protected by firewalls or other kinds of intrusion protection systems.

Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev. Median Max Min
All Hosts Combined
ALL Hosts So Far Today1562N/AN/AN/AN/AN/A
ALL Hosts This Month 16 78,639 4,914.94 1,519.59 4,790 8,780 2,915
ALL Hosts Last Month 25 111,293 4,451.72 1,639.80 4,065 8,704 1,338
ALL Hosts This Year 72 353,031 4,903.21 1,837.89 4,834.5 10,389 1,306
ALL Hosts Since Logging Started 1,493 112,493,415 75,347.23 76,965.84 58,732 518,642 0
ALL Hosts Normalized Since Logging Started 7,018 66,146,276 9,425.23 18,323.36 808 235,429 0
 
Hosts protected by BlackRidge Technologies
blackridge Educational Site, Protected By a BlackRidge Technology Eclipse Gateway
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
blackridge So Far Today10N/AN/AN/AN/AN/A
blackridge This Month 15 0 0.00 0.00 0 0 0
blackridge Last Month 25 0 0.00 0.00 0 0 0
blackridge This Year 70 0 0.00 0.00 0 0 0
blackridge Since Logging Started 1,245 150,274 120.70 3,170.70 0 108,999 0
blackridge Normalized Since Logging Started 0.00 0.00
 
Hosts protected by an Intrusion Protection System
erhp Educational Site, Protected By a Juniper SRX 3600
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
erhp So Far Today10N/AN/AN/AN/AN/A
erhp This Month 15 0 0.00 0.00 0 0 0
erhp Last Month 24 0 0.00 0.00 0 0 0
erhp This Year 68 0 0.00 0.00 0 0 0
erhp Since Logging Started 1,405 303,459 215.99 1,630.62 0 31,241 0
erhp Normalized Since Logging Started 0.00 0.00
erhp2 Educational Site, Protected By a Juniper SRX 3600
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
erhp2 So Far Today10N/AN/AN/AN/AN/A
erhp2 This Month 15 0 0.00 0.00 0 0 0
erhp2 Last Month 26 0 0.00 0.00 0 0 0
erhp2 This Year 68 0 0.00 0.00 0 0 0
erhp2 Since Logging Started 1,351 26,970 19.96 167.54 0 5,357 0
erhp2 Normalized Since Logging Started 0.00 0.00
 
Educational Sites
syrtest Educational Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
syrtest So Far Today10N/AN/AN/AN/AN/A
syrtest This Month 16 0 0.00 0.00 0 0 0
syrtest Last Month 25 0 0.00 0.00 0 0 0
syrtest This Year 67 0 0.00 0.00 0 0 0
syrtest Since Logging Started 1,368 11,897,488 8,696.99 14,085.81 1,592 121,449 0
syrtest Normalized Since Logging Started 1,367 11,897,483 8,703.35 14,089.00 1,608 121,449 0
edub Second Educational Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
edub So Far Today10N/AN/AN/AN/AN/A
edub This Month 23 0 0.00 0.00 0 0 0
edub Last Month 31 80,170 2,586.13 5,514.63 0 22,038 0
edub This Year 236 1,254,067 5,313.84 8,432.76 3,326.5 102,009 0
edub Since Logging Started 524 4,738,036 9,042.05 14,056.96 3,922.5 102,009 0
edub Normalized Since Logging Started 521 4,737,755 9,093.58 14,080.91 3,957 102,009 0
edu_c Third Educational Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
edu_c So Far Today10N/AN/AN/AN/AN/A
edu_c This Month 17 0 0.00 0.00 0 0 0
edu_c Last Month 24 0 0.00 0.00 0 0 0
edu_c This Year 69 0 0.00 0.00 0 0 0
edu_c Since Logging Started 1,298 23,272,208 17,929.28 30,162.29 2,979 235,429 0
edu_c Normalized Since Logging Started 1,295 23,233,262 17,940.74 30,187.68 2,915 235,429 0
 
Residential Sites
shepherd Residential Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
shepherd So Far Today17N/AN/AN/AN/AN/A
shepherd This Month 13 22,830 1,756.15 984.69 1,240 3,683 801
shepherd Last Month 26 44,224 1,700.92 1,108.10 1,310 4,597 561
shepherd This Year 70 115,656 1,652.23 1,034.60 1,209.5 4,597 305
shepherd Since Logging Started 1,386 12,281,321 8,860.98 13,591.51 2,607 116,607 0
shepherd Normalized Since Logging Started 1,385 12,277,420 8,864.56 13,595.77 2,607 116,607 0
 
Cloud Provider Sites
AWS AWS Amazon Web Services cloud site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
AWS So Far Today10N/AN/AN/AN/AN/A
AWS This Month 16 0 0.00 0.00 0 0 0
AWS Last Month 27 0 0.00 0.00 0 0 0
AWS This Year 69 0 0.00 0.00 0 0 0
AWS Since Logging Started 1,054 10,326,463 9,797.40 16,977.87 0 119,665 0
AWS Normalized Since Logging Started 1,054 10,326,463 9,797.40 16,977.87 0 119,665 0
cloud_v Host Cloud_v, offline on Feb 23rd, 2015.
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
cloud_v So Far Today10N/AN/AN/AN/AN/A
cloud_v This Month 0.00 0.00
cloud_v Last Month 6 106475 17745.83 12110.57 25841.5 34185 0
cloud_v This Year 6 106475 17745.83 12110.57 25841.5 34185 0
cloud_v Since Logging Started 6 106475 17745.83 12110.57 25841.5 34185 0
cloud_v Normalized Since Logging Started 4 101308 25327.00 6651.26 25841.5 34185 15440
cloud_c Host Cloud_c, offline on Feb 23rd, 2015.
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
cloud_c So Far Today10N/AN/AN/AN/AN/A
cloud_c This Month 0.00 0.00
cloud_c Last Month 2 145 72.50 49.50 72.5 122 23
cloud_c This Year 2 145 72.50 49.50 72.5 122 23
cloud_c Since Logging Started 2 145 72.50 49.50 72.5 122 23
cloud_c Normalized Since Logging Started 0.00 0.00

Total SSH attempts for all hosts may be LARGER than the sum of SSH attempts of each host. This is because each host's attacks are counted before totalling all the SSH attacks, and if attacks are ongoing, then more attacks will have come in between counting for a host and counting all the SSH attacks.


LongTail Copyright 2015 by Eric Wedaa, under GPLV2