Latest version: 1.0.4

Splunk for WinSSHD

A simple 'attackers' dashboard shows the potential of the app, even with very simple searches. Each chart is interactive and clicking the bar will take you to the detail view for that clientip.   Next »
You'll spend a lot of your time in the generic list view. Here we are showing a broad investigation of login activity by clientip.   Next »
Whenever you click on a table row or a chart element representing a clientip, you are taken to the detail view for that clientip where you can see properties and generate interesting graphs about that clientip.   Next »

App Details

Latest version: 1.0.4
Last updated: Jan 19, 2012
First released: March 21, 2011
CIM compliance: N/A

This free app provides a powerful general reporting interface for the log data generated by WinSSHD.   Users can generate list reports and detail views and drill down into those charts and tables to see more reports and more details.   If you’ve ever had to sift through WinSSHD logs by hand to find troublesome IPs or to troubleshoot access problems then you will love this app.