Back to blog
Tutorial

How to Scrape Amazon Product Data in 2025 (Without Getting Blocked)

Amazon has one of the most aggressive bot-detection systems on the internet. Learn what actually works in 2025 — TLS fingerprinting, proxy rotation, JS-rendered prices — and how to get clean product data reliably.

G
GYD Team·EngineeringApril 12, 202510 min read

Amazon has something like 350 million products. Whether you're a startup building a price tracker, an agency doing market research, or training the next big LLM, Amazon is the holy grail. It's also an absolute nightmare to scrape.

Their anti-bot team isn't messing around anymore. You can forget about throwing a quick requests.get() at a product URL like it's 2018. They will trap you in CAPTCHA hell before you even download a single weirdly-named CSS file. Today, their defense stack checks your network footprint, your browser's deepest secrets, and even how quickly you "breathe" between page loads.

I'm going to walk you through what genuinely works right now in 2025. No theory, just the practical stuff we use to get clean data without burning through a small fortune in residential proxies.

Why Amazon Hates Your Scraper

To beat the system, you have to know what the system is checking. Amazon's bot detection works in layers:

1. The TLS Handshake Sniff

Before you even ask for the HTML, your HTTP client and Amazon's servers do a quick secret handshake (TLS). Python's requests and Node's https modules have terrible handshakes. They scream "I AM A SCRIPT." Amazon compares your TLS fingerprint against a list of real browsers. If you don't look exactly like, say, Chrome 124, you're getting a 503 error before you even hit the application layer.

2. The JavaScript Minefield

Let's say you fake the handshake. Great. Now they serve you a page full of nasty JavaScript that probes your environment. It looks for navigator.webdriver, times how long stuff takes to render, and checks if your browser actually acts like a browser. If you fire up vanilla Playwright or Puppeteer without serious obfuscation, you'll fail these checks instantly.

3. "Where are you calling from?" (IP Reputation)

If your IP belongs to AWS, Google Cloud, Hetzner, or DigitalOcean, just give up. Datacenter IPs are flagged automatically. Amazon knows the subnet. You might get exactly one request through if you're lucky, and then the door slams shut.

4. Behavioral Red Flags

Even if you have the perfect disguise and a pristine residential IP, Amazon counts how many times you knock. If you blast 30 requests a minute at the same product category without ever hitting a search page first, you'll get what we call a "soft block." You get the HTML, but prices mysteriously disappear or say "Sign in to see price." Sound familiar?

The Scraper Graveyard: What Fails

Look, I've tried them all. Here's what you shouldn't waste your time on:

  • Vanilla axios or requests: Bounced at the door. Pure TLS failure. Setting custom headers won't save you.
  • Basic Headless Browsers: Puppeteer and Playwright actively snitch on themselves. The JS challenge catches them immediately.
  • Bargain-bin Proxies: Those $5/month datacenter proxy lists? Amazon flagged them in 2021. You'll get blocked on request #1.
  • Speed-running: Trying to scrape 100 pages a second from the same IP will get you banned faster than you can say 'Rate Limit'.

The 2025 Playbook: What Actually Works

Chrome TLS Fingerprinting (The Lightweight Way)

If you don't need to execute JS (and often, you don't), the smartest move is curl-cffi. It's a lifesaver. It wraps libcurl but bakes in Chrome's exact TLS fingerprint. It perfectly mimics the JA3/JA4 signatures. Amazon thinks it's just someone scrolling in Chrome.

import curl_cffi.requests as requests

# Impersonate a specific, recent Chrome version
session = requests.Session(impersonate="chrome124")

headers = {
    "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8",
    "accept-language": "en-US,en;q=0.9",
    "accept-encoding": "gzip, deflate, br",
    "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36",
    # These Sec-CH headers are non-negotiable now
    "sec-ch-ua": '"Chromium";v="124", "Google Chrome";v="124"',
    "sec-ch-ua-platform": '"macOS"',
    "sec-fetch-dest": "document",
    "sec-fetch-mode": "navigate",
    "sec-fetch-site": "none",
}

r = session.get(
    "https://www.amazon.com/dp/B0CHX3QBCH",
    headers=headers,
    timeout=30
)
print(f"Status: {r.status_code}, Length: {len(r.text)}")

This gets you past the bouncer. If the product isn't heavily gated, you've got your HTML.

Patchright / Camoufox (When You Need the JS)

Sometimes you really need to run JavaScript because the price or the "Frequently Bought Together" widget loads asynchronously. Forget standard Playwright. Use Patchright (a fork that rips out the webdriver flags) or Camoufox for Firefox.

The trick here isn't just the browser, it's how you drive it:

  • Strip the --enable-blink-features=AutomationControlled flag out.
  • Make sure navigator.language and screen resolution make sense. Nobody browses Amazon on an 800x600 screen in 2025.
  • Add human-like jitter. Wait a random couple of seconds. Start at a search results page and click through to the product.

You Need Good Proxies. Period.

You absolutely need residential proxies. And you need "sticky sessions." This means you hold the same IP for 5–10 minutes for a whole browsing flow. If your IP changes between the search page and the product page, Amazon's session anomaly system will nuke your connection.

Don't be cheap here. A handful of high-quality residential IPs will run circles around a massive pool of burned, shared IPs.

Tearing the Data Out

Alright, you forced your way in. Here's how to grab the actual data without losing your mind over their spaghetti DOM.

The Title

from bs4 import BeautifulSoup

soup = BeautifulSoup(html, "html.parser")
title = soup.find(id="productTitle")
if title:
    print(title.get_text(strip=True))

The Price (This is a Headache)

Amazon loves to A/B test their price rendering. Right now, there are three common flavors:

  1. The Split: They put the dollars and cents in totally different span tags (.a-price-whole and .a-price-fraction).
  2. The Hidden Gem: There's often a hidden span called .a-offscreen that screen readers use. It has the full, clean price string!
  3. The JS Trap: The price isn't in the HTML. It gets fetched later. (Time to fire up Pathright).
# Pro tip: Always try the offscreen span first!
price_el = soup.find("span", class_="a-offscreen")
if price_el:
    price = price_el.get_text(strip=True)  # bingo: "$49.99"
else:
    # If that fails, stitch it together like Frankenstein
    whole = soup.find("span", class_="a-price-whole")
    fraction = soup.find("span", class_="a-price-fraction")
    if whole and fraction:
        price = f"${whole.get_text(strip=True).replace('.', '')}.${fraction.get_text(strip=True)}"

The Holy Grail: JSON-LD

Stop writing messy CSS selectors if you don't have to. Check if Amazon dumped a structured JSON object in the page for Google. It's usually hiding in a script tag.

import json

scripts = soup.find_all("script", type="application/ld+json")
for script in scripts:
    try:
        data = json.loads(script.string)
        if data.get("@type") == "Product":
            print(f"Boom! Name: ${data.get('name')}")
            print(f"Price: ${data.get('offers', {}).get('price')}")
            # It's cleaner and won't break when a designer changes a CSS class
    except:
        pass

The Annoying Edge Cases

Regional Shenanigans: Amazon geolocates your proxy. If your proxy resolves to Tokyo, but you want USD prices, you're going to have a bad time. You must manually force ?language=en_US in the URL and pass Accept-Language: en-US in headers.

Login Walls: Trying to scrape high-end tech or digital goods? They might hit you with a "Sign in to see price." Doing this without cookies is nearly impossible, but scraping logged-in is super risky (they will ban your account). Stick to stuff you can view logged-out whenever possible.

Selector Drift: Amazon changes class names all the time. Your scraper will break. It's a law of physics. Rely on the JSON-LD payload or highly specific ID tags wherever possible.

The "I Have Better Things To Do" Approach

Look, maintaining a fleet of headless browsers, juggling a dozen residential proxy subscriptions, and constantly updating TLS signatures is a massive pain. If you're running a business and just want the data so you can do your actual job, use our Fetch API.

We handle the proxies. We handle the TLS fingerprints. We deal with the CAPTCHAs and the JS rendering.

curl -X POST https://api.gyd.ai/v1/fetch   -H "Authorization: Bearer YOUR_API_KEY"   -H "Content-Type: application/json"   -d '{
    "url": "https://www.amazon.com/dp/B0CHX3QBCH",
    "extract": {
      "title": "product title",
      "price": "current price",
      "rating": "star rating out of 5",
      "review_count": "number of reviews",
      "asin": "product ASIN code"
    }
  }'

You throw us a URL, we hand you a clean JSON object. Period. No drama.

Let's Be Real

Scraping Amazon isn't dark magic; it's just an arms race. It requires meticulous attention to network details, bulletproof proxies, and a bit of patience. If you're just pulling a few hundred items a week, you can hack together a Python script using the tricks above and be totally fine.

But if you need to pull 100,000 prices every morning at 6 AM without waking up to PagerDuty alerts, save your sanity and offload it to an API.

Start extracting data in minutes

GYD handles TLS fingerprinting, proxy rotation, and JS rendering. Pass a URL, get clean structured data.

Get started freeAPI docs

More from the blog

Guide

Web Crawling vs Web Scraping: What's the Difference?

7 min read · April 9, 2025