I am assuming you are not in the bot mitigation business.
An encrypted cookie from a company such as cloudflare encapsulates a multi dimensional datum such that, generating one in a legitimate browser, and letting a botnet using it will get detected and blocked.
That some aspects may be used to push bots away is a minor effect.