EventLog Analyzer

-

IT Compliance & Event Log Management Software for SIEM

Application Log Management - MS

IIS Server Log Analyzer

EventLog Analyzer includes value added application log reports. It analyzes the Microsoft Internet Information Services (IIS) server application logs and generates reports. As an IIS log analyzer, it supports the MS IIS server application logs like, IIS W3C Web Server logs and IIS W3C FTP Server logs.

Microsoft Internet Information Services is a flexible, secure and easy to manage Web server. Using this you can host anything, from media streaming to web application hosting, on the web. MS IIS consists of a set of program to build and administer web sites, a search engine and support for writing web based applications that access databases. The W3C Extended Log File Format is explained in the MS TechCenter. You will also find the format explained with example and the status codes. You can have more information about MS IIS from the Wikipedia and official website.

EventLog Analyzer supports IIS server logs for the Web and FTP servers.

IIS W3C Web Server Logs Analysis Reports

EventLog Analyzer provides exhaustive reports for MS IIS Web server.

  • Hosts Report
  • Users Report
  • File Type Report
  • Page URLs Report
  • Browser Usage Report
  • OS Usage Report
  • HTTP Error Status Code Report
  • Malicious URL Report

The description of the reports are given below:

Reports
Description
Hosts Report
The hosts which have accessed the MS IIS Web server. The report contains the following details about the hosts: IP address of the client, Hits, Page views, Bytes sent by the host and Events of the host
Users Report
Users who have accessed the MS IIS Web server. The report contains the following details about the users: User name, Hits, Page views, Bytes sent by the user and Events of the user
File Type Report

The different file types accessed through the MS IIS Web server and the bandwidth consumed. The report contains the following details about the type of files: File type accessed, Hits, Percentage, Bytes sent by the file type and Events of the file type

Page URLs Report

The URLs accessed through the MS IIS Web server and the bandwidth consumed. The report contains the following details about the URLs accessed: URI Stem, Hits, Page views, Bytes sent by the URL access and Events for the URL accessed

Browser Usage Report

The list of browsers used to access the MS IIS Web server. The report contains the following details about the browser usage: Browser, Hits, Percentage and Events for the browser

OS Usage Report

The list of operating systems used to access the the MS IIS Web server. The report contains the following details about the OS usage: OS, Hits, Percentage and Events for the OS

HTTP Error Status Code Report The list of error status codes occurred during the access of the MS IIS Web server. The report contains the following details about the HTTP error status codes: HTTP Status error codes and Events for the status code
Malicious URL Report The list of malicious URLs accessed through the MS IIS Web server. The report contains the following details about the malicious URL access: Client IP address, User name and Events for the malicious URL access
Cross Site Scripting Attempts The list of cross site scripting (XSS) attacks attempted through the MS IIS Web server. The report contains the following details about the XSS attacks: Client IP address, User name and Events for the XSS attempts
SQL Injection Attempts The list of SQL injection attacks attempted through the MS IIS Web server. The report contains the following details about the SQL injection attacks: Client IP address, User name and Events for the SQL injection attempts

IIS W3C FTP Server Logs Analysis Reports

EventLog Analyzer provides exhaustive reports for MS IIS FTP server.

  • Hosts Report
  • Users Report
  • File Type Report
  • Server Services Report
  • Server IPs Report
  • Source Port Report

The description of the reports are given below:

Reports
Description
Hosts Report
The hosts which have accessed the MS IIS FTP server. The report contains the following details about the hosts: IP address of the host, Bytes sent by the host, Bytes received by the host and Events of the host
Users Report
Users who have accessed the MS IIS FTP server. The report contains the following details about the users: User name, Bytes sent by the user, Bytes received by the user and Events of the user
File Type Report

The different file types accessed through the MS IIS FTP server and the bandwidth consumed. The report contains the following details about the type of files: File type transfered, Number file transfer for the particular file type, Bytes sent by the file type, Bytes received by the file type and Events of the file type

Server Services Report

The files accessed by the server services through the MS IIS FTP server and the bandwidth consumed. The report contains the following details about the file transfer by server services: Service of the server, Number file transfer for the particular server service, Bytes sent by the server service, Bytes received by the server service and Events of the server service

Server IPs Report

The IP addresses of servers accessed the the MS IIS FTP server and the bandwidth consumed. The report contains the following details about the servers (IP address): IP address of the server, Number file transfer for the particular server, Bytes sent by the server, Bytes received by the server and Events of the server

Source Port Report

The source port of servers accessed the the MS IIS FTP server and the bandwidth consumed. The report contains the following details about the servers (source port): Source port of the server, Number file transfer in the particular server port, Bytes sent in the server port, Bytes received in the server port and Events for the server port