๐ฆ CamoFox MCP
The anti-detection browser MCP server for AI agents. Navigate, interact, and automate the web without getting blocked.
New to CamoFox? Skip the docs โ paste this prompt into your AI agent and itโll verify your setup end-to-end.
How it works (TL;DR)
Your AI Agent โโ(MCP)โโ> camofox-mcp โโ(REST)โโ> camofox-browser โโ> Camoufox (anti-detection Firefox)
CamoFox has 2 components โ you need both running:
camofox-browseris the headless browser server (anti-detection)camofox-mcpis the MCP bridge your AI agent connects to
Why CamoFox MCP?
AI agents using Playwright get blocked constantly. CAPTCHAs, fingerprint detection, IP bans โ the web fights back against automation.
CamoFox MCP wraps the CamoFox Browser Server as an MCP server, giving your AI agent:
- ๐ก๏ธ Anti-detection fingerprinting โ Each tab gets a unique, human-like browser fingerprint
- โก Fast, token-efficient snapshots โ Accessibility tree snapshots use 90% fewer tokens than screenshots
- ๐ Built-in search โ Search Google, YouTube, Amazon + 11 more engines without getting blocked
- ๐ช Session persistence โ Import cookies, maintain login state across interactions
- ๐ฏ CSS selector fallback โ Target elements even when accessibility refs aren't available
CamoFox MCP vs Playwright MCP
| Feature | CamoFox MCP | Playwright MCP |
|---|---|---|
| Anti-detection fingerprinting | โ | โ |
| Passes bot detection tests | โ | โ |
| Search engine macros (14 engines) | โ | โ |
| Accessibility snapshots | โ | โ |
| Cookie import/export | โ | Limited |
| Headless support | โ | โ |
| Setup complexity | Medium | Easy |
| Token efficiency | High | High |
CamoFox MCP vs Other Camoufox MCPs
| Feature | CamoFox MCP | whit3rabbit/camoufox-mcp | baixianger/camoufox-mcp |
|---|---|---|---|
| Tools | 35 | 1 | 33 |
| Architecture | REST API client | Direct browser | Direct browser |
| Session persistence | โ | โ (destroyed per request) | โ |
| Token efficiency | High (snapshots) | Low (raw HTML) | High (snapshots) |
| Search macros | โ (14 engines) | โ | โ |
| CSS selector fallback | โ | โ | โ |
| Active maintenance | โ | โ (stale 8mo) | โ |
| Press key support | โ | โ | โ |
Prerequisites
- Pick one:
- Docker (recommended) โ easiest โzero-to-heroโ setup
- Node.js 18+ (download) โ needed for the
npxsetup
- CamoFox Browser Server must be running (it is not a downloadable desktop binary โ use Docker,
npx, or build from source) - An MCP-compatible client: VS Code (Copilot), Cursor, Claude Desktop, or any MCP client
Quick Start
Pick ONE option below.
Option A: Docker (Recommended โ Easiest)
1) Start CamoFox Browser
docker run -d -p 9377:9377 --name camofox-browser ghcr.io/redf0x1/camofox-browser:latest
2) Verify itโs running
curl http://localhost:9377/health
3) Add MCP config to your editor (see configs below)
4) Paste the verification prompt into your AI agent (see below)
Option B: npx (Quick โ Needs Node.js 18+)
1) Start CamoFox Browser (keep this terminal open)
npx camofox-browser@latest
2) In another terminal, verify:
curl http://localhost:9377/health
3) Add MCP config to your editor (see configs below)
4) Paste the verification prompt into your AI agent
Option C: From Source (Developers)
1) Clone and start CamoFox Browser
git clone https://github.com/redf0x1/camofox-browser.git
cd camofox-browser && npm install && npm run build && npm start
2) Clone and build CamoFox MCP
git clone https://github.com/redf0x1/camofox-mcp.git
cd camofox-mcp && npm install && npm run build
3) Add MCP config (see configs below โ use node path instead of npx)
4) Paste the verification prompt
MCP Client Configuration
VS Code (Copilot)
- File:
.vscode/mcp.json(in your workspace root) - Create the file if it doesn't exist
{
"servers": {
"camofox": {
"type": "stdio",
"command": "npx",
"args": ["-y", "camofox-mcp@latest"],
"env": {
"CAMOFOX_URL": "http://localhost:9377"
}
}
}
}
Claude Desktop
- macOS:
~/Library/Application Support/Claude/claude_desktop_config.json - Windows:
%APPDATA%\Claude\claude_desktop_config.json - Linux:
~/.config/Claude/claude_desktop_config.json
{
"mcpServers": {
"camofox": {
"command": "npx",
"args": ["-y", "camofox-mcp@latest"],
"env": {
"CAMOFOX_URL": "http://localhost:9377"
}
}
}
}
Note: Claude Desktop uses "mcpServers" not "servers".
Cursor
- File:
~/.cursor/mcp.json
{
"mcpServers": {
"camofox": {
"command": "npx",
"args": ["-y", "camofox-mcp@latest"],
"env": {
"CAMOFOX_URL": "http://localhost:9377"
}
}
}
}
From Source (use node instead of npx)
{
"servers": {
"camofox": {
"type": "stdio",
"command": "node",
"args": ["/absolute/path/to/camofox-mcp/dist/index.js"],
"env": {
"CAMOFOX_URL": "http://localhost:9377"
}
}
}
}
Note: This example is for VS Code. For Claude Desktop or Cursor, use "mcpServers" instead of "servers".
3. Verify Setup
After configuring your MCP client, restart your editor. Then paste this prompt into your AI agent:
Verify my CamoFox MCP setup. Run these checks and report results:
1) Call `server_status` โ is the browser server connected?
2) If connected: `create_tab` with url `https://example.com`
3) `navigate_and_snapshot` on that tab (wait for text: "Example Domain")
4) `list_profiles` to confirm profile storage is accessible
5) `close_tab` for the test tab
If any step fails, diagnose the issue and suggest a fix.
Report: โ
pass or โ fail for each step, plus overall status.
Prerequisites: You must configure your MCP client first (Step 2 above). The AI agent can do everything else.
Manual verification (optional):
curl http://localhost:9377/health
# Expected: {"ok":true,"browserConnected":true}
Docker
Quick Start with Docker
# Standalone (connect to an existing CamoFox browser server running on the host)
docker run -i --rm -e CAMOFOX_URL=http://host.docker.internal:9377 ghcr.io/redf0x1/camofox-mcp:latest
# Browser only (recommended): starts the CamoFox browser server in the background
docker compose up -d
# MCP (stdio): start the browser with compose, then launch the MCP container on-demand
# Option A: plain docker (attach stdin; uses the compose network)
docker run -i --rm --network=camofox-mcp_default -e CAMOFOX_URL=http://camofox-browser:9377 ghcr.io/redf0x1/camofox-mcp:latest
# Option B: compose run (no TTY; attaches stdin/stdout for JSON-RPC)
docker compose run --rm -T camofox-mcp
Note: docker compose up -d detaches and does not provide stdin, so it can only be used to run the browser service.
Your MCP client should launch the MCP container separately (using docker run -i ... or docker compose run -T ...).
VS Code MCP Configuration (Docker)
{
"servers": {
"camofox": {
"type": "stdio",
"command": "docker",
"args": ["run", "-i", "--rm", "-e", "CAMOFOX_URL=http://host.docker.internal:9377", "ghcr.io/redf0x1/camofox-mcp:latest"]
}
}
}
Claude Desktop Configuration (Docker)
{
"mcpServers": {
"camofox": {
"command": "docker",
"args": ["run", "-i", "--rm", "-e", "CAMOFOX_URL=http://host.docker.internal:9377", "ghcr.io/redf0x1/camofox-mcp:latest"],
"type": "stdio"
}
}
}
IMPORTANT: Do NOT use -t flag โ TTY corrupts the JSON-RPC stdio stream.
Tools (35)
Tab Management
| Tool | Description |
|---|---|
create_tab | Create a new tab with anti-detection fingerprinting |
close_tab | Close a tab and release resources |
list_tabs | List all open tabs with URLs and titles |
Presets
| Tool | Description |
|---|---|
list_presets | List all available geo presets supported by the connected CamoFox browser server |
Geo Presets
create_tab supports optional regional configuration via a named preset, plus per-field overrides:
presetโ preset name (e.g.,japan,vietnam,uk)localeโ BCP-47 locale (e.g.,ja-JP)timezoneIdโ IANA timezone (e.g.,Asia/Tokyo)geolocationโ{ latitude, longitude }viewportโ{ width, height }
Resolution order: preset defaults โ individual field overrides โ server defaults.
Built-in presets (when supported by your camofox-browser server):
| Preset | Locale | Timezone | Location |
|---|---|---|---|
us-east | en-US | America/New_York | New York |
us-west | en-US | America/Los_Angeles | Los Angeles |
japan | ja-JP | Asia/Tokyo | Tokyo |
uk | en-GB | Europe/London | London |
germany | de-DE | Europe/Berlin | Berlin |
vietnam | vi-VN | Asia/Ho_Chi_Minh | Ho Chi Minh City |
singapore | en-SG | Asia/Singapore | Singapore |
australia | en-AU | Australia/Sydney | Sydney |
Example:
{
"userId": "agent1",
"url": "https://example.com",
"preset": "japan",
"viewport": { "width": 1920, "height": 1080 }
}
Tip: call list_presets to discover what presets the connected server supports (including any custom preset file configured server-side).
Navigation
| Tool | Description |
|---|---|
navigate | Navigate to a URL, waits for page load |
go_back | Browser back button |
go_forward | Browser forward button |
refresh | Reload current page |
Interaction
| Tool | Description |
|---|---|
click | Click element by ref (from snapshot) or CSS selector |
type_text | Type text into input fields by ref or CSS selector |
camofox_press_key | Press keyboard keys (Enter, Tab, Escape, etc.) |
scroll | Scroll page up or down by pixel amount |
camofox_scroll_element | Scroll inside a container element (modal, sidebar, scrollable div) |
camofox_hover | Hover over an element to trigger tooltips, dropdowns, or hover states |
camofox_wait_for | Wait for page readiness after navigation or dynamic updates |
camofox_evaluate_js | Execute JavaScript in page context (may require API key) |
Batch / Composite
| Tool | Description |
|---|---|
fill_form | Fill multiple form fields in one call, with optional submit click |
type_and_submit | Type into a field and press a key (default: Enter) |
navigate_and_snapshot | Navigate to a URL, wait for readiness, and return a snapshot |
scroll_and_snapshot | Scroll then capture a fresh snapshot |
camofox_scroll_element_and_snapshot | Scroll inside a container element, then take a snapshot |
batch_click | Click multiple elements sequentially with per-click results |
Observation
| Tool | Description |
|---|---|
snapshot | Get accessibility tree โ PRIMARY way to read pages. Token-efficient |
screenshot | Take visual screenshot as base64 PNG |
get_links | Get all hyperlinks with URLs and text |
camofox_wait_for_text | Wait for specific text to appear on the page |
Search
| Tool | Description |
|---|---|
web_search | Search via 14 engines: Google, YouTube, Amazon, Bing, DuckDuckGo, Reddit, GitHub, StackOverflow, Wikipedia, Twitter, LinkedIn, Facebook, Instagram, TikTok |
Session
| Tool | Description |
|---|---|
import_cookies | Import cookies for authenticated sessions |
get_stats | Get session statistics and performance metrics |
camofox_close_session | Close all browser tabs for a user session |
Session Profiles
| Tool | Description |
|---|---|
save_profile | Save cookies from an active tab to a named on-disk profile |
load_profile | Load a saved profile's cookies into an active tab (restores login sessions) |
list_profiles | List saved profiles with metadata (cookie count, save date, description) |
delete_profile | Delete a saved profile from disk |
Health
| Tool | Description |
|---|---|
server_status | Check CamoFox server health and connection |
Session Profiles
Session Profiles let you persist authenticated browser state across MCP restarts by saving/loading cookies to/from disk.
Tools
save_profileโ export cookies from an active tab and save them under a profile nameload_profileโ load a saved profile into an active tab (imports cookies)list_profilesโ list all saved profiles and metadatadelete_profileโ delete a saved profile permanently
Configuration
CAMOFOX_PROFILES_DIRโ directory used to store profiles (default:~/.camofox-mcp/profiles/)CAMOFOX_AUTO_SAVEโ enable auto-save/auto-load of an "auto profile" (default:true). Set tofalseto disable.
Auto-save / auto-load
By default, CamoFox MCP will persist sessions automatically:
- On
close_tabandcamofox_close_session, cookies are exported and saved to_auto_{userId}(best-effort; 5-second timeout). - On
create_tab, if_auto_{userId}exists, it is loaded automatically (best-effort; 5-second timeout).
Note: auto-load imports cookies, which may require CAMOFOX_API_KEY if the CamoFox browser server enforces authentication. For local setups, auto-load works without a key.
Example flow
create_tab- Navigate + login interactively
save_profile(from the logged-in tab)- Restart your MCP client/server
create_tabload_profilenavigateโ you should already be authenticated
Docker persistence
Mount a volume so profiles survive container restarts:
docker run -i --rm \
-e CAMOFOX_URL=http://host.docker.internal:9377 \
-v "$HOME/.camofox-mcp/profiles:/root/.camofox-mcp/profiles" \
ghcr.io/redf0x1/camofox-mcp:latest
API Key Setup
The API key is optional. All 35 tools work without a key when the CamoFox browser server doesn't enforce authentication (the default for local setups).
If your CamoFox browser server has authentication enabled, these tools need a matching key:
import_cookiescamofox_evaluate_jsload_profile(imports cookies)- Auto-save / auto-load session profiles (imports cookies on
create_tab)
Without a matching key, these tools return a clear "API key required" error with setup instructions.
How it works
The key is a shared secret between both servers and must match exactly:
AI Agent -> (MCP tool call) -> CamoFox MCP (sends CAMOFOX_API_KEY) -> (HTTP) -> CamoFox Browser Server (validates key)
Set the key on both servers
1) Start CamoFox Browser Server with a key (exact flags may vary by camofox-browser version):
export CAMOFOX_API_KEY="your_shared_secret"
./camofox-browser
Or (if supported by your camofox-browser build):
./camofox-browser --api-key "your_shared_secret"
2) Configure your MCP client to pass the same key:
{
"servers": {
"camofox": {
"type": "stdio",
"command": "npx",
"args": ["-y", "camofox-mcp@latest"],
"env": {
"CAMOFOX_URL": "http://localhost:9377",
"CAMOFOX_API_KEY": "your_shared_secret"
}
}
}
}
Note: This example is for VS Code. For Claude Desktop or Cursor, use "mcpServers" instead of "servers".
What happens without an API key?
All tools work when the CamoFox browser server doesn't require authentication (default for local/Docker setups).
If the browser server does enforce auth and no key is set, cookie import, profile load, and JS evaluation return a clear error: "CamoFox server requires authentication. Set CAMOFOX_API_KEY environment variable."
โ ๏ธ Key mismatch between MCP and browser server โ affected tools return "Forbidden". Ensure the same key is set on both servers.
Configuration
Environment Variables
| Variable | Default | Description |
|---|---|---|
CAMOFOX_URL | http://localhost:9377 | CamoFox server URL |
CAMOFOX_TIMEOUT | 30000 | Request timeout in ms |
CAMOFOX_API_KEY | โ | Shared secret for authenticated operations. Only needed if the CamoFox browser server enforces auth |
CAMOFOX_PROFILES_DIR | ~/.camofox-mcp/profiles | Directory to store persistent session profiles |
CAMOFOX_AUTO_SAVE | true | Auto-save on close + auto-load on create via _auto_{userId} |
CAMOFOX_DEFAULT_USER_ID | default | Default userId for new tabs when none specified |
CAMOFOX_TAB_TTL_MS | 1800000 | Tab TTL in milliseconds (30min). Set to 0 to disable auto-eviction |
CAMOFOX_MAX_TABS | 100 | Maximum tracked tabs |
CAMOFOX_VISITED_URLS_LIMIT | 50 | Max URLs to keep in tab history |
CAMOFOX_SWEEP_INTERVAL_MS | 60000 | Sweep interval in milliseconds (1min) |
Architecture
AI Agent (Claude, GPT, etc.)
โ
โ MCP Protocol (stdio)
โผ
โโโโโโโโโโโโโโโโโโโ
โ CamoFox MCP โ โ This package
โ (TypeScript) โ
โโโโโโโโโโฌโโโโโโโโโ
โ
โ REST API (HTTP)
โผ
โโโโโโโโโโโโโโโโโโโ
โ CamoFox Server โ โ Anti-detection browser
โ (Port 9377) โ
โโโโโโโโโโฌโโโโโโโโโ
โ
โ Browser Engine
โผ
โโโโโโโโโโโโโโโโโโโ
โ Camoufox โ โ Firefox-based, fingerprint spoofing
โ (Firefox) โ
โโโโโโโโโโโโโโโโโโโ
How It Works
- Your AI agent sends MCP tool calls (e.g.,
create_tab,navigate,snapshot) - CamoFox MCP translates these into REST API calls to the CamoFox server
- CamoFox server manages a Camoufox browser with anti-detection features
- Each tab gets a unique fingerprint โ different user agent, screen size, WebGL, fonts, etc.
- Websites see what appears to be a normal human browser, not automation
Anti-Detection Features
CamoFox (via Camoufox) provides:
- โ Unique browser fingerprint per tab
- โ Human-like user agent rotation
- โ WebGL fingerprint spoofing
- โ Canvas fingerprint protection
- โ Screen resolution randomization
- โ Font enumeration protection
- โ Navigator properties masking
- โ Timezone/locale consistency
Related Projects
| Project | Description |
|---|---|
| CamoFox Browser Server | Anti-detection browser server (required) |
| Camoufox | Firefox fork with C++ fingerprint spoofing |
Troubleshooting
Quick troubleshoot (paste into your AI agent):
Something isn't working with my CamoFox setup. Please diagnose:
1) Call `server_status` โ check browser server connection
2) If connected, try `create_tab` and navigate to any URL
3) If that works, try `import_cookies` with a simple test cookie
4) Report what's working and what's failing
5) Suggest specific fixes for any issues found
- Connection refused (curl fails /
server_statusfails) -> CamoFox Browser Server is not running orCAMOFOX_URLis wrong. Verify with:curl http://localhost:9377/health - "Forbidden" on
import_cookies/ profile load /camofox_evaluate_js-> API key mismatch. Ensure the sameCAMOFOX_API_KEYis set on both servers. - "API key required" -> The CamoFox browser server requires authentication. Set
CAMOFOX_API_KEYon both servers (see API Key Setup). - Session profiles not auto-restoring -> Auto-load imports cookies, which requires
CAMOFOX_API_KEYif the browser server enforces auth. Also confirmCAMOFOX_AUTO_SAVEis not set tofalse. - Not sure if setup is working? -> Run the health check above, then ask your agent to call
server_status, then try the Quick Start smoke test.
Contributing
Contributions are welcome! Please open an issue or submit a PR.
Security
URL Navigation (SSRF Awareness)
CamoFox MCP forwards URLs to the CamoFox Browser Server for navigation. This is core functionality โ the browser visits whatever URL you provide.
In trusted environments (local development, single-user): No special precautions needed.
In shared/cloud environments: Be aware that the browser can access any URL reachable from its host, including internal network services. Consider:
- Running the browser server in an isolated network (Docker network, VPC)
- Using firewall rules to restrict outbound access from the browser container
- Not exposing the MCP server to untrusted clients
API Key
When CAMOFOX_API_KEY is set, all sensitive operations (cookie import/export, JavaScript evaluation) require authentication. Always set an API key in production environments.
Profile Storage
Session profiles are stored locally at ~/.camofox-mcp/profiles/ with restricted file permissions (0o600). Profiles contain cookies which may include authentication tokens โ treat them as sensitive data.
License
Acknowledgments
- CamoFox Browser Server โ The anti-detection browser server this MCP wraps
- Camoufox โ Firefox fork with C++ fingerprint spoofing
- Model Context Protocol โ The protocol standard by Anthropic
Recommend Servers
View AllA Serper MCP Server
Playwright MCP server