dexterbt1/livecode-log-analysis-01.md

Created March 18, 2026 06:21

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Select an option

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/dexterbt1/28873169af4545599a220aa9fba8bb1b.js"></script>
Save dexterbt1/28873169af4545599a220aa9fba8bb1b to your computer and use it in GitHub Desktop.

Download ZIP

Raw

livecode-log-analysis-01.md

Source log data from: https://github.com/logpai/loghub/blob/master/OpenSSH/OpenSSH_2k.log

Using a programming language you are strong at, code a single program that reads the file to obtain the results for the ff. ..

for those who triggered POSSIBLE BREAK-IN ATTEMPT
- who are the offending IPs (and reversed mapped domains)?
- how many attempts for each IP?
for those who triggered and matched log lines: "failed password for $user from $ip"
- count of failed attempts per user-attacked and source IP?
- most attacked user name and attempts count?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment