Marketplaces layer rate limiting, TLS and browser fingerprinting, and login walls around listing and seller data, and many of the largest players are regional, so traffic from the wrong country stands out immediately. Collection here usually calls for geo-matched mobile or residential IPs, session persistence, and respect for each platform's terms and applicable data-protection law. We index 12 online marketplaces sites; the most common protection is Cloudflare (Bot/Challenge), and 6 are rated hard. Reviewed July 2026.
| # | Site | Protection observed | Difficulty |
|---|---|---|---|
| 1 | Allegro allegro.pl | DataDome | Hard target |
| 2 | Cdiscount cdiscount.com | Cloudflare (Bot/Challenge) | Hard target |
| 3 | Depop depop.com | Cloudflare (Bot/Challenge) | Hard target |
| 4 | Etsy etsy.com | DataDome | Hard target |
| 5 | Mercari mercari.com | Cloudflare (Bot/Challenge) | Hard target |
| 6 | Otto otto.de | Kasada | Hard target |
| 7 | AliExpress aliexpress.com | Akamai (CDN/WAF) | Moderate |
| 8 | Amazon amazon.com | AWS WAF | Moderate |
| 9 | eBay ebay.com | Akamai (CDN/WAF) | Moderate |
| 10 | Grailed grailed.com | Cloudflare (CDN/WAF) | Moderate |
| 11 | Rakuten rakuten.co.jp | Akamai (CDN/WAF) | Moderate |
| 12 | Temu temu.com | Cloudflare (CDN/WAF) | Moderate |
Across 12 online marketplaces sites in the registry, the most common protection is Cloudflare (Bot/Challenge), followed by Akamai (CDN/WAF). Each site's observed stack is listed below and on its own page.
6 of 12 are rated Hard - large-scale public-data collection there tends to need real mobile carrier IPs and careful session handling. The rest are Light or Moderate. Difficulty reflects the network layer, not a bypass method.
Each entry is derived from public HTTP response signatures observed on the site's landing response, reviewed July 2026. A technology is listed only when a canonical signal was present.
Hand a hard target to Data Works for clean, QA-checked data, or run it yourself on real 4G/5G carrier IPs from $4/GB.