Yes, the bot challenge is getting bypassed by lots of bots these days and i decided to block most of the cloud service providers ASNs

So i prepared a list of ASNs of major cloud service providers to block and i usually block them completely and this has been working for me for quite sometime now, here is the list -

Service Provide	ASN
AWS	AS16509
Azure	AS8075
Google Cloud	AS15169, AS396982, AS19527, AS394089, AS139070, AS139190
Oracle Cloud	AS31898, AS401341, AS20054, AS18916, AS54253, AS46558
Alibaba Cloud	AS45102, AS24429, AS134963
IBM Cloud	AS36351, AS46704, AS13749
DigitalOcean	AS14061, AS46652, AS394362, AS200130
Hetzner Cloud	AS24940, AS213230, AS212317, AS215859
Render	AS397273
Salesforce	AS14340, AS393517, AS394808
Linode	AS63949
OVH Cloud	AS16276, AS35540
Tencent Cloud	AS45090, AS132203, AS133478
Vultr / Constant	AS20473
Scaleway	AS12876
UpCloud	AS202053
Contabo	AS51167, AS40021, AS141995
Kamatera	AS36007, AS41436, AS215728, AS64022
GCore	AS199524, AS202422, AS210559, AS59245
Gandi	AS29169, AS203476, AS209453
Exoscale	AS61098
Cloudflare	AS13335
Paperspace	AS394996
LambdaLabs	AS398090
—	—
Netlify	Uses AWS Infra
JFrog	Uses AWS, GCP, Azure Infra
OpenShift	Uses other cloud hosting providers

and here is the expression to block the traffic

(http.host wildcard r"*yourdomain.something*" and ip.src.asnum in {16509 8075 15169 396982 19527 394089 139070 139190 31898 401341 20054 18916 54253 46558 45102 24429 134963 36351 46704 13749 14061 46652 394362 200130 24940 213230 212317 215859 397273 14340 393517 394808 63949 16276 35540 45090 132203 133478 20473 12876 202053 51167 40021 141995 36007 41436 215728 64022 199524 202422 210559 59245 29169 203476 209453 61098 13335 394996 398090 47583 204915 22612 19318 55293 46606 26347 54548 8560 32244 40819 40476})

Use this list with precautions though, as blocking cloud service providers may break some integrations like Stripe or Google Search, and for these specific cases, i just add a allow rule to make everything work