2006 OSSEC download numbers

As a late christmas gift to all curious OSSEC users out there, here is some information about the number of downloads in 2006 (note that I only included major released versions).

I am very pleased to see that we went from 596 downloads on version 0.5 to almost 5,000 on 0.9-3 (great work to all contributors and to the dev team)…

For Unix:
Version 0.5 – 596
Version 0.6-0 – 991
Version 0.7-0 – 1,655
Version 0.8-0 – 3,758
Version 0.9-0 – 3,691
Version 0.9-1 – 3,727
Version 0.9-3 – 4,829
For Windows:
Version 0.8-0 (win32) – 2,902
Version 0.9-0 (win32) – 4,937
Version 0.9-3 (win32) – 3,847


It is also interesting to note that less than 10% of our users check their downloads using our pgp key and only 15% check the md5/sha1 sum of the packages.

Actually, the average of downloads of the pgp keys is only 6% and only 13% for the checksum. I would expect these numbers to be much higher..

How I got these values? Just a simple combination of cat/grep/cut/sort/uniq made the deal:

$ cat $LOGS | cut -d ” -f 2 | cut -d ” ” -f 2 | grep -E “.tar.gz$|.exe$” | grep -v checksum | grep -o -E “([^/]+)$” | cut -d ? -f 1 | sort | uniq -c

Basically, I cated my log file, extracted the arguments from it (cut and grep), sorted (sort) and generated the total count using uniq… There is probably other ways to do that, but this is what I came up with. If you want a simple way to see the total number for all the files in your logs, the following should work:

$ cat access_log | cut -d ” -f 2 | cut -d ” ” -f 2 | cut -d ? -f 1 | sort | uniq -c

*This will only work on Apache access logs.





Posted in   ossec   stats     by Daniel Cid (dcid)

Coding for fun and profit. Often fun and little profit.