LongTail Log Analysis

Assorted Statistics

Analysis does not include today's numbers. Numbers rounded to two decimal places

Created on Mon Jul 23 06:14:16 EDT 2018

Normalized data is data that consists of only full days of attacks, AND to servers that are NOT protected by firewalls or other kinds of intrusion protection systems.

Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev. Median Max Min
All Hosts Combined
ALL Hosts So Far Today166N/AN/AN/AN/AN/A
ALL Hosts This Month 21 48,351 2,302.43 1,201.24 2,169 5,871 609
ALL Hosts Last Month 30 75,260 2,508.67 1,132.97 2,130.5 5,429 1,125
ALL Hosts This Year 202 782,583 3,874.17 1,787.14 3,478 8,184 609
ALL Hosts Since Logging Started 1,258 111,545,073 88,668.58 76,826.24 79,436.5 518,642 0
ALL Hosts Normalized Since Logging Started 5,745 65,902,098 11,471.21 19,671.81 2,798 235,429 0
 
Hosts protected by BlackRidge Technologies
blackridge Educational Site, Protected By a BlackRidge Technology Eclipse Gateway
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
blackridge So Far Today10N/AN/AN/AN/AN/A
blackridge This Month 17 0 0.00 0.00 0 0 0
blackridge Last Month 21 0 0.00 0.00 0 0 0
blackridge This Year 154 0 0.00 0.00 0 0 0
blackridge Since Logging Started 1,052 150,274 142.85 3,448.85 0 108,999 0
blackridge Normalized Since Logging Started 0.00 0.00
 
Hosts protected by an Intrusion Protection System
erhp Educational Site, Protected By a Juniper SRX 3600
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
erhp So Far Today10N/AN/AN/AN/AN/A
erhp This Month 19 0 0.00 0.00 0 0 0
erhp Last Month 30 0 0.00 0.00 0 0 0
erhp This Year 191 0 0.00 0.00 0 0 0
erhp Since Logging Started 1,183 303,459 256.52 1,774.12 3 31,241 0
erhp Normalized Since Logging Started 0.00 0.00
erhp2 Educational Site, Protected By a Juniper SRX 3600
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
erhp2 So Far Today10N/AN/AN/AN/AN/A
erhp2 This Month 19 0 0.00 0.00 0 0 0
erhp2 Last Month 26 0 0.00 0.00 0 0 0
erhp2 This Year 179 0 0.00 0.00 0 0 0
erhp2 Since Logging Started 1,138 26,970 23.70 182.31 0 5,357 0
erhp2 Normalized Since Logging Started 0.00 0.00
 
Educational Sites
syrtest Educational Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
syrtest So Far Today10N/AN/AN/AN/AN/A
syrtest This Month 20 0 0.00 0.00 0 0 0
syrtest Last Month 28 0 0.00 0.00 0 0 0
syrtest This Year 189 0 0.00 0.00 0 0 0
syrtest Since Logging Started 1,147 11,897,488 10,372.70 14,807.34 5,312 121,449 0
syrtest Normalized Since Logging Started 1,146 11,897,483 10,381.75 14,810.63 5,321.5 121,449 0
edub Second Educational Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
edub So Far Today10N/AN/AN/AN/AN/A
edub This Month 23 0 0.00 0.00 0 0 0
edub Last Month 31 80,170 2,586.13 5,514.63 0 22,038 0
edub This Year 236 1,254,067 5,313.84 8,432.76 3,326.5 102,009 0
edub Since Logging Started 524 4,738,036 9,042.05 14,056.96 3,922.5 102,009 0
edub Normalized Since Logging Started 521 4,737,755 9,093.58 14,080.91 3,957 102,009 0
edu_c Third Educational Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
edu_c So Far Today10N/AN/AN/AN/AN/A
edu_c This Month 19 0 0.00 0.00 0 0 0
edu_c Last Month 24 0 0.00 0.00 0 0 0
edu_c This Year 166 0 0.00 0.00 0 0 0
edu_c Since Logging Started 1,088 23,272,208 21,389.90 31,801.57 9,068 235,429 0
edu_c Normalized Since Logging Started 1,085 23,233,262 21,413.14 31,832.70 9,103 235,429 0
 
Residential Sites
shepherd Residential Site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
shepherd So Far Today10N/AN/AN/AN/AN/A
shepherd This Month 17 19,077 1,122.18 868.37 970 3,359 9
shepherd Last Month 22 34,152 1,552.36 1,014.63 1,213.5 3,855 234
shepherd This Year 159 194,277 1,221.87 989.80 1,168 4,645 0
shepherd Since Logging Started 1,178 12,038,199 10,219.18 14,312.48 4,270.5 116,607 0
shepherd Normalized Since Logging Started 1,177 12,034,298 10,224.55 14,317.37 4,271 116,607 0
 
Cloud Provider Sites
AWS AWS Amazon Web Services cloud site
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
AWS So Far Today10N/AN/AN/AN/AN/A
AWS This Month 17 0 0.00 0.00 0 0 0
AWS Last Month 27 0 0.00 0.00 0 0 0
AWS This Year 183 0 0.00 0.00 0 0 0
AWS Since Logging Started 834 10,326,463 12,381.85 18,228.67 2,949 119,665 0
AWS Normalized Since Logging Started 834 10,326,463 12,381.85 18,228.67 2,949 119,665 0
cloud_v Host Cloud_v, offline on Feb 23rd, 2015.
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
cloud_v So Far Today10N/AN/AN/AN/AN/A
cloud_v This Month 0.00 0.00
cloud_v Last Month 6 106475 17745.83 12110.57 25841.5 34185 0
cloud_v This Year 6 106475 17745.83 12110.57 25841.5 34185 0
cloud_v Since Logging Started 6 106475 17745.83 12110.57 25841.5 34185 0
cloud_v Normalized Since Logging Started 4 101308 25327.00 6651.26 25841.5 34185 15440
cloud_c Host Cloud_c, offline on Feb 23rd, 2015.
Time
Frame
Number
of Days
Total
SSH attempts
Average
Per Day
Std. Dev.MedianMaxMin
cloud_c So Far Today10N/AN/AN/AN/AN/A
cloud_c This Month 0.00 0.00
cloud_c Last Month 2 145 72.50 49.50 72.5 122 23
cloud_c This Year 2 145 72.50 49.50 72.5 122 23
cloud_c Since Logging Started 2 145 72.50 49.50 72.5 122 23
cloud_c Normalized Since Logging Started 0.00 0.00

Total SSH attempts for all hosts may be LARGER than the sum of SSH attempts of each host. This is because each host's attacks are counted before totalling all the SSH attacks, and if attacks are ongoing, then more attacks will have come in between counting for a host and counting all the SSH attacks.


LongTail Copyright 2015 by Eric Wedaa, under GPLV2