Bypass AWS WAF CAPTCHA for Free ⚡
Hi everyone 👋 Hope you’re doing well!
I recently needed to fetch pages or API endpoints protected by an AWS WAF CAPTCHA. To get around it, you have to obtain a special cookie (aws-waf-token). I didn’t want to use full browser automation just for this, it’s too slow, fragile, and expensive at scale. Paid services offering similar solutions didn’t really fit my needs either.
So I built a small solution that solves the CAPTCHA by simulating only the parts of a browser that AWS WAF actually cares about. It uses very little memory (128 MB) and is much faster than running a real browser ⚡
I published it for free (I'll not be making any money from this since it's pay-per-usage) on Apify, simply to help the community. No affiliate links, no credit card required, no tricks, nothing. With Apify’s free credits ($5/month), you can use it for up to tens of thousands of pages/API endpoints.
What it does?
- Input: you provide one or more protected URLs or API endpoints
- Output: it generates a valid AWS WAF token and can optionally fetch the protected HTML/JSON.
You can use it either as a proxy to directly retrieve the page content, or just to get the cookie and reuse it in your own scripts. Everything is explained in more detail in the documentation.
Give it a try and let me know what you think 🙏
Top comments (0)