A ton of automated attacks happen in the logs as well - constant barrage of bots looking for crypto wallets and doing POST requests to index, registration urls, wordpress registration and admin paths, any vulnerable middle layer standard urls as well.