Hello @Gadepalli Aditya ,
I checked with the Azure WAF PG team and they mentioned that you’ll still have to go rule by rule, which you can do with our logs currently. If you have some handcrafted requests that you want to pass through WAF and not be blocked and modify the requests if they are blocked so they would pass, you might as well have WAF in detection mode and look at logs for what the decision would be from WAF and modify your requests accordingly.
Coming to the part of applying the OWASP 3.2 rules to your local machine, I am not sure what you are referring to when you say local machine but you could take a look into the below articles which explains how to download/install OWASP ModSecurity Core Rule Set but this requires you to have a web server with ModSecurity:
https://coreruleset.org/installation/
https://owasp.org/www-project-modsecurity-core-rule-set/
Kindly let us know if the above helps or you need further assistance on this issue.
----------------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.