CNS Analytics

Errors + Security

HTTP error analysis and security threat signals from 93 months of CloudFront logs (2018-08 to 2026-04). The combined error rate is 30.4% of all 15,805,079 requests.

Error Rate30.4%4,801,735 errors / 15,805,079 requests

Total 404s2,718,34917.2% of all requests

Total 500s1,787,14611.3% of all requests

Dead Link Hits11,73320 unique dead link targets

Security Signals604,0367 attack categories detected

HTTP Status Code Distribution

Breakdown of all response status codes across CloudFront logs

15,805,079 requests

Error Categories

Errors grouped into actionable buckets. Scanner probes dominate 404s; server errors cluster on legacy scripts and homepage.

11 categories

Error Rate Over Time

Monthly total requests vs errors with error rate percentage. Rate spiked above 40% during 2021 traffic surges and the Apr 2025 500-error peak.

93 months

Monthly Error Drilldown

Click a month to see the top recurring error paths — useful for identifying persistent issues

93 months

All-time — top error paths(636,902 errors)

hover to explore · click to pin

403

/210,519

Access Denied

404

/favicon.ico80,070

Broken Link

500

/favicon.ico47,040

Server Error

500

/index.php38,169

Scanner Probe

404

/apple-touch-icon-precomposed.png36,084

Broken Link

404

/apple-touch-icon.png35,107

Broken Link

500

/cgi-bin/index.php28,690

Scanner Probe

500

/scripts/index.php28,097

Scanner Probe

421

/25,537

Other

404

/index.php20,046

Broken Link

408

19,984

Other

404

/apple-touch-icon-120x120-precomposed.png17,716

Broken Link

404

/apple-touch-icon-120x120.png17,171

Broken Link

500

/+CSCOT+/oem-customization16,378

Server Error

500

/+CSCOT+/translation-table16,294

Server Error

Fix Priorities

1Dead Links

11,733 hits

Visitors hitting redirect pages for 20 URLs that no longer exist (mostly scimaps.org links).

Fix: Update or remove broken external links

2Missing PDFs/Docs

187,931 404s

Requests for PDF publications, reports, and documents that have been moved or deleted.

Fix: Add 301 redirects for moved documents

3Homepage 500s

3,188 errors

Server errors on the homepage ('/') affecting real visitors. These are distinct from scanner-triggered 500s.

Fix: Investigate backend / caching issues

Note: 1,068,836 errors (22%) are from automated scanners probing for WordPress, PHP scripts, and admin panels. These are noise and do not require content fixes -- WAF rules or rate limiting can suppress them.

Monthly Error Trend

Stacked area of 404, 500, and 403 errors over time. 500 errors surged starting late 2023.

93 months

Top 404 Paths

Most-requested paths returning 404 Not Found. Many are attack probes (wp-login.php, .env).

20 paths

Top 500 Error Paths

Paths triggering the most server errors. Many are attack probes hitting non-existent scripts.

20 paths

Dead Link Analysis

External URLs that visitors attempted to reach via CNS redirect pages. These link targets are no longer valid.

20 dead targets

Security Threat Signals

Attack patterns detected in CloudFront request paths and query strings

604,036 total

500 Error Surge

500 errors became the dominant error type starting Nov 2023, likely from backend infrastructure changes. Monthly 500s peaked at 118K in Apr 2025.

Attack Surface

Top 404 paths are dominated by attack probes (wp-login.php, .env, xmlrpc.php). Legitimate 404s include legacy PDFs and workshop pages that have moved.

Top Threats

Path traversal and admin panel probes account for the majority of security signals, followed by WordPress brute-force attempts and XSS/SQL injection probes.