Share
## https://sploitus.com/exploit?id=A637B90E-C2BA-5ACC-9FBA-C96D39F3319B
# AetherGuard Security Test Dataset

[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
[![Dataset Size](https://img.shields.io/badge/-4%2C500%20-blue)]()
[![Types of Attacks](https://img.shields.io/badge/-31-green)]()
[![CVE Coverage](https://img.shields.io/badge/CVE-10%2B-red)]()

A comprehensive security test dataset for evaluating AI-driven server defense systems. This dataset includes **4,500 selected attack samples**, covering **31 types of attacks**, including **10+ CVE vulnerabilities** in 0day-level payloads. > ๐Ÿ“– [English](README_EN.md) | Simplified Chinese

---

## ๐Ÿ“Š Overview of the Dataset

| Dataset | Attack Samples | Normal Samples | Total | Description |
|---|---------|---------|------|------|
| **full_test_dataset** | 1,100 | 200 | 1,300 | Basic attack types |
| **complete_dataset** | 550 | 500 | 1,050 | Extended attack types |
| **advanced_dataset** | 650 | 500 | 1,150 | Advanced attack types |
| **zeroday_dataset** | 1,000 | 0 | 1,000 | 0day-level attacks |
| **Total** | **3,300** | **1,200** | **4,500** | |

---

## ๐ŸŽฏ Types of Attacks (31 types)

### Basic Types (7 types)

| # | Type of Attack | Number of Samples |
|---|---------|--------|
| 1 | SQL Injection | 200 |
| 2 | XSS Cross-Site Scripting | 200 |
| 3 | Command Injection | 200 |
| 4 | Path Traversal | 150 |
| 5 | Brute-force Attacks | 150 |
| 6 | DDoS Attacks | 100 |
| 7 | Port Scanning | 100 |

### Extended Types (6 types)

| # | Type of Attack | Number of Samples |
|---|---------|--------|
| 8 | XXE Entity Injection | 100 |
| 9 | SSRF Server Request Forgery | 100 |
| 10 | Deserialization Attacks | 100 |
| 11 | Malicious File Uploads | 100 |
| 12 | JWT Attacks | 100 |
| 13 | LDAP Injection | 50 |

### Advanced Types (8 types)

| # | Type of Attack | Number of Samples |
|---|---------|--------|
| 15 | HTTP smuggling | 100 |
| 16 | Template Injection (SSTI) | 100 |
| 17 | OAuth Bypass | 100 |
| 18 | API Abuse | 100 |
| 19 | WebSocket Attacks | 50 |
| 20 | Cache Poisoning | 50 |
| 21 | Encoding Bypass | 100 |
| 22 | Protocol Pollution | 50 |

### 0day-Level (10 CVEs)

| CVE | Type of Vulnerability | Number of Samples |
|---|---------|--------|
| CVE-2021-44228 | Log4j JNDI Injection | 100 |
| CVE-2022-22965 | Spring4Shell | 100 |
| CVE-2022-42889 | Text4Shell | 100 |
| - | Prototype Pollution | 100 |
| - | Advanced HTTP Smuggling Variants | 100 |
| - | Type Confusion/Magic Hash | 100 |
| - | ReDoS Regular DoS | 100 |
| - | Unicode Homophone Attacks | 100 |
| - | GraphQL Injection | 100 |
| - | Advanced NoSQL Injection Variants | 100 |

---

## ๐Ÿ“ Directory Structure

```
aetherguard-security-dataset/
โ”œโ”€โ”€ full_test_dataset/ # Basic attacks (1,300 items)
โ”‚ โ”œโ”€โ”€ 01_sql_injection.json
โ”‚ โ”œโ”€โ”€ 02_xss.json
โ”‚ โ”œโ”€โ”€ 03_command_injection.json
โ”‚ โ”œโ”€โ”€ 04_path_traversal.json
โ”‚ โ”œโ”€โ”€ 05_brute_force.json
```

โ”‚ โ”œโ”€โ”€ 06_ddos.json
โ”‚ โ”œโ”€โ”€ 07_port_scan.json
โ”‚ โ””โ”€โ”€ 08_normal_traffic.json
โ”‚
โ”œโ”€โ”€ complete_dataset/ # Extended attacks (1,050 items)
โ”‚ โ”œโ”€โ”€ 08_xxe.json
โ”‚ โ”œโ”€โ”€ 09_ssrf.json
โ”‚ โ”œโ”€โ”€ 10_deserialization.json
โ”‚ โ”œโ”€โ”€ 11_file Upload.json
โ”‚ โ”œโ”€โ”€ 12_jwt.json
โ”‚ โ”œโ”€โ”€ 13_ldap.json
โ”‚ โ””โ”€โ”€ 14_normal_extended.json
โ”‚
โ”œโ”€โ”€ advanced_dataset/ # Advanced attacks (1,150 items)
โ”‚ โ”œโ”€โ”€ 15_http_smuggling.json
โ”‚ โ”œโ”€โ”€ 16_ssti.json
โ”‚ โ”œโ”€โ”€ 17_oauth_bypass.json
โ”‚ โ”œโ”€โ”€ 18_api_abuse.json
โ”‚ โ”œโ”€โ”€ 19_websocket.json
โ”‚ โ”œโ”€โ”€ 20_cache_poison.json
โ”‚ โ”œโ”€โ”€ 21_encoding_bypass.json
โ”‚ โ”œโ”€โ”€ 22_protocol_pollution.json
โ”‚ โ””โ”€โ”€ 23_normal_extended.json
โ”‚
โ”œโ”€โ”€ zeroday_dataset/ # 0day attacks (1,000 items)
โ”‚ โ”œโ”€โ”€ 24_log4j.json # CVE-2021-44228
โ”‚ โ”œโ”€โ”€ 25_spring4shell.json # CVE-2022-22965
โ”‚ โ”œโ”€โ”€ 26_text4shell.json # CVE-2022-42889
โ”‚ โ”œโ”€โ”€ 27_prototype_pollution.json
โ”‚ โ”œโ”€โ”€ 28_smuggling_advanced.json
โ”‚ โ”œโ”€โ”€ 29_type_confusion.json
โ”‚ โ”œโ”€โ”€ 30_redos.json
โ”‚ โ”œโ”€โ”€ 31_unicode_homoglyph.json
โ”‚ โ”œโ”€โ”€ 32_graphql_injection.json
โ”‚ โ””โ”€โ”€ 33_nosql_advanced.json
โ”‚
โ”œโ”€โ”€ EXPERIMENT_PLAN.md # Experiment plans
โ”œโ”€โ”€ FINAL_SUMMARY_V4.md # Final summary
โ”œโ”€โ”€ LICENSE # MIT license
โ””โ”€โ”€ README.md # Readme file
โ”‚

### TE.TE Dual Encoding 
### HTTP/2 Downgrade Attacks 
### Space/Case/Semicolon Bypass 

### Unicode Homophone Attacks 
- Cyrillic letters 
- Greek letters 
- Full-width characters 
- Zero-width characters 
- Direction control characters 

---

## ๐Ÿงช Experiment Plan 
See [EXPERIMENT_PLAN.md](EXPERIMENT_PLAN.md) for details. It includes: 
| Experiment | Description |
|----------|--------------|
| Experiment 1 | Attack detection rate comparison |
| Experiment 2 | False positive rate testing |
| Experiment 3 | System performance comparison |
| Experiment 4 | Attack response time comparison |
| Experiment 5 | Ablation experiments |
| Experiment 6 | Long-term stability testing (7 days) |
| Experiment 7 | Deployment in real environments |

### Comparison Systems 
- iptables v1.8.7 
- Fail2ban v0.11.2 
- ModSecurity v3.0.8 
- Suricata v6.0.10 
- **AetherGuard** (This dataset corresponds to this system) 

---

## ๐Ÿ“Š Expected Detection Rates 
| Attack Level | Expected Detection Rate |
|-------------|-----------------------|
| Basic attacks | > 95% |
| Advanced attacks | > 90% |
| 0-day attacks | > 85% |

---

## ๐Ÿ”’ OWASP Top 10 Coverage 
| OWASP Category | Attack Type | Number of Samples |
|----------------|-------------|------------------|
| A01 Access Control Failure | OAuth bypass, API abuse | 200 |
| A02 Encryption Failure | JWT attacks | 100 |
| A03 Injection | SQL, XSS, commands, LDAP | 650 |
| A05 Configuration Errors | XXE, SSRF | 200 |
| A06 Vulnerable Components | Deserialization | 100 |
| A07 Authentication Failure | Brute-force attacks, JWT | 250 |
| A08 Integrity Failure | File uploads | 100 |
| A10 SSRF | SSRF attacks | 100 |

---

## ๐Ÿš€ Quick Start 
### Download the Dataset 
```bash
# Clone the repository
git clone https://github.com/lizuyi-6/aetherguard-security-dataset.git
# Or download directly
wget https://github.com/lizuyi-6/aetherguard-security-dataset/archive/refs/heads/main.zip
```

### Example Usage 
```python
import json

# Load SQL injection samples
with open('full_test_dataset/01_sql_injection.json', 'r') as f:
 sql_samples = json.load(f)

# Iterate through samples
for sample in sql_samples:
 print(f"ID: {sample['id']}")
 print(f"Payload: {sample['payload']}")
 print(f"Severity: {sample['severity']}")
 print("---")
```

---

## ๐Ÿ“– References 
If you used this dataset in your research, please cite it as follows: 
```bibtex
@dataset{aetherguard_dataset_2026,
 title={AetherGuard Security Testing Dataset},
 author={Li Zuyi},
 year={2026},
 publisher={GitHub},
 url={https://github.com/lizuyi-6/aetherguard-security-dataset}
}
```

---

## ๐Ÿ“„ License 
This dataset is released under MIT license. See [LICENSE](LICENSE) for details. ---

## โš ๏ธ Disclaimer 
This dataset is intended for **educational and research purposes** only. Please use these samples on systems that you own or have explicit permission from. The author assumes no responsibility for any misuse of this data. ---

## ๐Ÿค Contributions 
Feel free to contribute! You can submit: 
- New attack samples 
- Additional attack types 
- Improved documentation 
- Bug fixes 

---

## ๐Ÿ“ง Contact Information 
- **Author**: Li Zuyi 
- **GitHub**: [@lizuyi-6](https://github.com/lizuyi-6) 
- **Main Project**: [AetherGuard](https://github.com/lizuyi-6/Networksafe)

---

**Dataset Size**: 4,500 samples | **Types of Attacks**: 31 | **CVE Coverage**: 10+

[source-iocs-preserved ipv4=192.168.1.100]