Click here to see the SAS code.
Click here to see the example.

---------------------------------------------------------------

This is a graphical analysis of the Operating System Security Event Logs.

The first graph is the Logon Failures, and the bar segments are colored
by the IP address of the machine with the failed login (which, in this 
data happens to all the the same machine), followed by the tabular detail data.

Scroll about 1/2 way down the page, and there is a 2nd graph - of the 
Anonymous Logons.  These anonymous logons happen to all be into the same
machine.

Failed logons and anonymous logons are both "Events of Interest" 
that could indicate hacker activity, in my opinion.

Back to Samples Index