Exploratory security analytics for anomaly detection