Presentation is loading. Please wait.

Presentation is loading. Please wait.

Keeping up with Web Logs. AWStats  Supports HTTP as well as FTP and Mail logs  IIS and Apache  Complete list at end of presentation  Runs on Windows.

Published byVivien Delilah Ward Modified over 9 years ago

Similar presentations

Presentation on theme: "Keeping up with Web Logs. AWStats  Supports HTTP as well as FTP and Mail logs  IIS and Apache  Complete list at end of presentation  Runs on Windows."— Presentation transcript:

1 Keeping up with Web Logs

2 AWStats  Supports HTTP as well as FTP and Mail logs  IIS and Apache  Complete list at end of presentation  Runs on Windows and Linux  System Requirements  PERL 5.0 or greater

3 Useful Features  Summary of # visitors, # visits, pages, hits, bandwidth  Monthly, Daily, and Hourly traffic graphs  Visitors listed by frequency  Counts: file type, downloads, and URL-pages  Status code counts  Link to view 404 Not-Found log entries  Useful Plug-ins  Hostinfo  Raw Log Search

4 Screenshot

5 Daily Trend

6 Top Visitors

7 Downloads

8 URLs Visited

9 HTTP Status Codes

10 404 Report

11 Hostinfo Plugin  Used to get Whois information about visitor  Will display information in a new browser window  Useful to determine origin of unresolvable Ips  Ex: 121.254.193.202 had over 1,500 hits to our site  Click on ? Link in the Hosts (Top 10) table

12 Hostinfo Plugin - Whois

13 Raw Log Search Plugin  Puts search form at top of report page  Will search and display contents of the “current” log  Allows PERL regular expression searches  Useful to search for suspicious traffic

14 Search for visitors…

15 Error codes…

16 Suspicious patterns…

17 More suspicious patterns

18 Caveat Emptor! XSS attacks will be reflected in log! Don’t have other sites open using same browser Use dedicated system/vm for log review

19 Why I like it  It’s Free!  Active project = revisions and improvements  Multi-platform support  Easy to set up and get going  Provides at-a-glance view of web activity  Plugins available to provide additional functionality

20 Notes  Log formats supported  Apache common log format (see Note*), Apache combined log format (known as NCSA combined log format or XLF or ELF format), Any other personalized Apache log format, Any IIS log format (known as W3C format), Webstar native log format, Realmedia server, Windows Media Server, Darwin streaming server, ProFTPd server, vsFTPd server, Postfix, Sendmail, QMail, Mdaemon A lot of web/wap/proxy/streaming servers log format

21 Notes - continued  Search pattern for visitor  123.125.67.181.*08/Jan  Search for error codes  “ 400 “  Search for suspicious patterns  URL w/ at least 4 encoded chars  GET.*(%[0-9a-fA-F]{2}){4}\S* HTTP  Embedded hex  GET \S*(\\[xX][0-9a-fA-F]{2})  Reverse directory traversal  GET \S*(\.\.\/){2}  Injection attacks  GET \S*(select\(|SELECT\(|--|1=1|\/\*|\|)

22 References  AWStats Home  http://awstats.sourceforge.net http://awstats.sourceforge.net  http://awstats.sourceforge.net/docs/index.html http://awstats.sourceforge.net/docs/index.html  ASCII Table  http://www.asciitable.com/ http://www.asciitable.com/  Injection attack patterns  http://ferruh.mavituna.com/sql-injection- cheatsheet-oku/ http://ferruh.mavituna.com/sql-injection- cheatsheet-oku/

Download ppt "Keeping up with Web Logs. AWStats  Supports HTTP as well as FTP and Mail logs  IIS and Apache  Complete list at end of presentation  Runs on Windows."

Similar presentations

The Web Wizards Guide to HTML Chapter Eight Publishing on the Web.

The Web Wizards Guide to HTML Chapter Eight Publishing on the Web.
Incident Handling & Log Analysis in a Web Driven World Manindra Kishore.

Incident Handling & Log Analysis in a Web Driven World Manindra Kishore.
Internet Applications INTERNET APPLICATIONS. Internet Applications Domain Name Service Proxy Service Mail Service Web Service.

Internet Applications INTERNET APPLICATIONS. Internet Applications Domain Name Service Proxy Service Mail Service Web Service.
WEB DESIGN TABLES, PAGE LAYOUT AND FORMS. Page Layout Page Layout is an important part of web design Why do you think your page layout is important?

WEB DESIGN TABLES, PAGE LAYOUT AND FORMS. Page Layout Page Layout is an important part of web design Why do you think your page layout is important?
Advanced Web Metrics with Google Analytics By: Carley Brown.

Advanced Web Metrics with Google Analytics By: Carley Brown.
INSTALLING LINUX.  Identify the proper Hardware  Methods for installing Linux  Determine a purpose for the Linux Machine  Linux File Systems  Linux.

INSTALLING LINUX.  Identify the proper Hardware  Methods for installing Linux  Determine a purpose for the Linux Machine  Linux File Systems  Linux.
SIUG Annual Meeting 2010 UNC Charlotte January 28, 2010 SIUG Annual Meeting 2010 Web Logs: Finally! Now What Do We Do With Them? Dan Pfohl, UNC Wilmington.

SIUG Annual Meeting 2010 UNC Charlotte January 28, 2010 SIUG Annual Meeting 2010 Web Logs: Finally! Now What Do We Do With Them? Dan Pfohl, UNC Wilmington.
Urchin & Website Usability. Usability Study Usability study is a repetitive process that involves testing a site and then using the test results to change.

Urchin & Website Usability. Usability Study Usability study is a repetitive process that involves testing a site and then using the test results to change.
The process of increasing the amount of visitors to a website by ranking high in the search results of a search engine.

The process of increasing the amount of visitors to a website by ranking high in the search results of a search engine.
Creating WordPress Websites. Creating a site on your computer Local server Local WordPress installation Setting Up Dreamweaver.

Creating WordPress Websites. Creating a site on your computer Local server Local WordPress installation Setting Up Dreamweaver.
World Wide Web1 Applications World Wide Web. 2 Introduction What is hypertext model? Use of hypertext in World Wide Web (WWW) – HTML. WWW client-server.

World Wide Web1 Applications World Wide Web. 2 Introduction What is hypertext model? Use of hypertext in World Wide Web (WWW) – HTML. WWW client-server.
Website Development with PHP and MySQL Introduction.

Website Development with PHP and MySQL Introduction.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
Internet Information Server (IIS)

Internet Information Server (IIS)
Eleven Design Mistakes Making your web page easier for your students to use Making your web page easier for your students to use FSI 2000 - Applications.

Eleven Design Mistakes Making your web page easier for your students to use Making your web page easier for your students to use FSI Applications.
Presented by Mina Haratiannezhadi 1.  publishing, editing and modifying content  maintenance  central interface  manage workflows 2.

Presented by Mina Haratiannezhadi 1.  publishing, editing and modifying content  maintenance  central interface  manage workflows 2.
LEARN THE QUICK AND EASY WAY! VISUAL QUICKSTART GUIDE HTML and CSS 8th Edition Chapter 21: Publishing Your Pages on the Web.

LEARN THE QUICK AND EASY WAY! VISUAL QUICKSTART GUIDE HTML and CSS 8th Edition Chapter 21: Publishing Your Pages on the Web.
1 Archive-It Training University of Maryland July 12, 2007.

1 Archive-It Training University of Maryland July 12, 2007.
Evaluating Web Server Log Analysis Tools David Strom SD’98 2/13/98.

Evaluating Web Server Log Analysis Tools David Strom SD’98 2/13/98.
Linux Operations and Administration

Linux Operations and Administration

Similar presentations

Ads by Google