A Thirty-Day Dataset of Malicious HTTP Requests Blocked by OWASP ModSecurity on a Production Web Server

Lucz, Geza

doi:10.5281/zenodo.17178461

Published September 22, 2025 | Version v1

Dataset Open

A Thirty-Day Dataset of Malicious HTTP Requests Blocked by OWASP ModSecurity on a Production Web Server

Lucz, Geza (Data collector)¹

1. Budapest University of Technology and Economics

An anonymized set of web traffic data that was flagged and subsequently blocked by OWASP ModSecurity is provided. The dataset captures real-world malicious requests detected by the OWASP Core Rule Set (CRS), preserving structural details while protecting sensitive information through systematic anonymization.

Files

owasp.zip

Files (29.5 MB)

Name	Size	Download all
owasp.zip md5:95b7a8237abc163d8ca31e49f7318efd	29.5 MB	Preview Download

Additional details

Created: 2025-07-27

Views

Downloads

Show more details

	All versions	This version
Views	60	60
Downloads	9	9
Data volume	265.7 MB	265.7 MB

More info on how stats are collected....

DOI

Resource type

Dataset

Publisher

Zenodo

License: Creative Commons Attribution 4.0 International

The Creative Commons Attribution license allows re-distribution and re-use of a licensed work on the condition that the creator is appropriately credited. Read more

Technical metadata

Created: September 22, 2025
Modified: September 22, 2025

A Thirty-Day Dataset of Malicious HTTP Requests Blocked by OWASP ModSecurity on a Production Web Server

Creators

Description

Files

owasp.zip

Files (29.5 MB)

Additional details

Dates