CAPTCHA vendor

Websites using AWS WAF CAPTCHA

7 of the 960 top sites we tested are protected by AWS WAF CAPTCHA (0.7%). Below is the full list. Detection is at the homepage, so deep pages are usually more protected — check the exact URL you plan to scrape.

Check a URL Back to the index

Top alternatives in the same category

Google reCAPTCHA40 sites GeeTest5 sites Arkose Labs (FunCaptcha)5 sites Cloudflare Turnstile4 sites Alibaba slider1 sites

Typical approach

What it takes to reach AWS WAF CAPTCHA sites.

JS-executing browser for the silent challenge; HTTP for plain WAF

Plain WAF/rate rules are T1-T2; the intelligent-threat Challenge needs JS to mint aws-waf-token.

A directional heuristic from the homepage response, not a live test. How we score it →

Difficulty across AWS WAF CAPTCHA sites

Hard7

The list

7 sites using AWS WAF CAPTCHA

Site	Category	Protected	Anti-bot / WAF
99designs.com	Jobs & recruiting	Protected	AWS WAF + 1 more
amazon.com	E-commerce	Protected	AWS WAF + 1 more
binance.com	Crypto	Protected	AWS WAF + 1 more
espn.com	Sports	Protected	AWS WAF + 1 more
imdb.com	Entertainment	Protected	AWS WAF + 1 more
morningstar.com	Finance & markets	Protected	AWS WAF + 1 more
swiggy.com	Food & delivery	Protected	AWS WAF + 1 more

From the Crawlora Anti-Bot Adoption Index, homepage-level snapshot of June 12, 2026.