SSHSummary is a python based script for Linux designed to parse your SSH server log files and build a database record of any suspected intrusion attempts. It also contains a very basic e-mail based reporting facility summarizing the number of occurrences of suspect activity since the last run.
The software is a very basic script and was developed internally to build reporting information on a number of recent intrusion attempts on our servers. It is available here for free under the GNU General Public License in the hope that other people may find it useful either in it’s entirety or as a base for other work.
Click below to download the latest version, and please read the included README file for further information on setting up the software.