The Audit Analysis utility (ANALYZE/AUDIT) processes event
    messages in security audit log files to produce reports of
    security-related events on the system.

    Format

      ANALYZE/AUDIT  [file-spec[,...]]

    file-spec[,...]

    Specifies one or more security audit log files as input to
    ANALYZE/AUDIT. If you specify more than one file name, separate
    the names with commas.

    If you omit the file-spec parameter, the utility searches for the
    default audit log file SECURITY.AUDIT$JOURNAL.

    The default audit log file is created in the SYS$COMMON:[SYSMGR]
    directory. To use the file, specify SYS$MANAGER on the
    ANALYZE/AUDIT command line. If you do not specify a directory,
    the utility searches for the file in the current directory.

    You can include wildcard characters, such as the asterisk (*)  or
    percent sign (%),  in the file specification.

    The audit log file can be located in any directory. To display
    the current location, use the DCL command SHOW AUDIT/ALL.