AWS WAF Captcha Solver API
AWS WAF Captcha protects EC2, CloudFront and API Gateway origins with an image challenge plus a silent JS proof of work that issues the aws-waf-token cookie. CaptchaSonic returns a valid token via the AwsWafClassification taskType — sub-second for image grids — that can be cached for the 5-minute session window across subsequent requests.
# CaptchaSonic — AWS WAF (Python)
import requests
requests.post('https://api.captchasonic.com/createTask', json={
'clientKey': 'YOUR_API_KEY',
'task': {
'type': 'AwsWafClassification',
'websiteURL': 'https://target.example.com/',
'images': ['base64_1...', 'base64_2...'],
'question': 'Select the galaxy spiral'
}
})
# Poll /getTaskResult; typed_solution.grid.objects holds the chosen cell indices.Why use Sonic for aws-waf-token + challenge bypass?
Built for speed, reliability, and easy integration.
aws-waf-token cookie
AwsWafClassification returns the aws-waf-token value ready to set on the next request — no manual JS execution required.
Sub-second solve
Image-grid AWS WAF challenges resolve in under one second via in-process classification — no headless browser warm-up.
Proxyless friendly
AWS WAF validates the token, not the IP — most origins accept proxyless solves; pin a US-region proxy only for geo-fenced endpoints.
Token caching
AWS WAF tokens stay valid for ~5 minutes per origin — cache the response and reuse it across subsequent requests instead of re-solving each call.
Built for Developers
Choose your language and start solving CAPTCHAs in seconds
import { CaptchaSonic } from 'captchasonic'
const client = new CaptchaSonic({
apiKey: 'your_api_key'
})
// Solve reCAPTCHA
const result = await client.solve({
type: 'recaptcha_v2',
sitekey: 'site_key_here',
pageurl: 'https://example.com'
})
console.log(result.solution)How we compare on this captcha
Feature-by-feature against the four most-mentioned alternatives, compiled from each provider’s public pricing pages. Competitor figures may change — verify current rates with each provider.
| Feature | CaptchaSonic | 2Captcha | CapSolver | Anti-Captcha | CapMonster Cloud |
|---|---|---|---|---|---|
| AI / ML solver (no human relay) | |||||
| AWS WAF / DataDome | |||||
| Success rate (trailing 30d) | 99.9% | ~95% | ~98% | ~95% | ~97% |
| Proxy + proxyless modes | |||||
| Free trial credits | |||||
| SDK languages (Py, Node, Go, C#, Java, PHP) | 6 | 6 | 4 | 5 | 4 |
| Selenium / Puppeteer / Playwright examples | |||||
| Browser extension | |||||
| Webhook callbacks | |||||
| 99.9% uptime SLA |
Yes / No / Partial reflect publicly documented support. Pricing and solve-time figures snapshot the published rate at the time this page was last updated.
Frequently asked questions
AWS WAF Captcha is the bot-mitigation layer Amazon ships with AWS WAF — it protects EC2, CloudFront and API Gateway origins by serving an image-grid challenge plus a silent JS proof-of-work that issues the aws-waf-token cookie. It is widely deployed on e-commerce, ticketing and API endpoints hosted on AWS.
CaptchaSonic handles both the visible image-grid challenge and the silent token issuance flow that AWS WAF uses on high-risk paths. The AwsWafClassification taskType returns the aws-waf-token cookie value ready to set on subsequent requests — no headless browser warm-up required.
AWS WAF tokens are typically valid for around 5 minutes per origin. Cache the returned token in your client and reuse it across multiple requests within that window instead of re-solving on every call — this drops solve spend by 10–50x on busy scrapers.
Image-grid AWS WAF challenges resolve in under one second via the AwsWafClassification in-process classifier. Token-issuance flows that require executing the WAF JS finish in 2–4 seconds. Start with the free trial in the dashboard to benchmark against your traffic.
Related captcha guides
- GeeTest v3 / v4
Slide, icon, space and gobang puzzles solved.
- MTCaptcha Solver
Token bypass for invisible and visible MTCaptcha.
- reCAPTCHA Solver
AI bypass for reCAPTCHA v2, v3 and Enterprise.
- hCaptcha Solver
Token solver for hCaptcha and hCaptcha Enterprise.
- Cloudflare Turnstile
Bypass Cloudflare Turnstile in under 7 seconds.
- TikTok CAPTCHA
Slide and rotate solver for TikTok captcha variants.
Plug into your AI agent
Bypass AWS WAF captcha challenges from Claude, Cursor, or any MCP client.
View AI Agents docsInstall the SDK
from captchasonic import CaptchaSonic client = CaptchaSonic(api_key="YOUR_API_KEY") result = client.solve_aws_waf(image_b64="...") print(result.typed_solution.grid.objects)
import { CaptchaSonic } from 'captchasonic'
const client = new CaptchaSonic({ apiKey: 'YOUR_API_KEY' })
const result = await client.solveAwsWaf({ imageB64: '...' })
console.log(result.typed_solution.grid.objects)Use the browser extension
One-click install — works on every supported captcha.
Say goodbye to
Frustrating CAPTCHAs
Experience lightning-fast AI-powered CAPTCHA solving with the CaptchaSonic browser extension. Save time, scale faster.
Are You Human?
No more frustrating challenges—just smooth, accurate, and reliable CAPTCHA solving. Let CaptchaSonic handle the rest!
