Is Camoufox Reverse Mcp safe to use?

Camoufox Reverse Mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install Camoufox Reverse Mcp?

Camoufox Reverse Mcp supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with Camoufox Reverse Mcp?

Camoufox Reverse Mcp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio and http transport.

Is Camoufox Reverse Mcp actively maintained?

Camoufox Reverse Mcp is actively maintained — last commit was 12 days ago. It has 64 GitHub stars.

Camoufox Reverse Mcp

基于反指纹camoufox浏览器的MCP Server，专为JavaScript逆向工程设计

ActiveNot tested

Other

★ 64GitHub

38DNo CVEsactive

Quick Install

{
  "mcpServers": {
    "camoufox-reverse": {
      "args": [
        "-m",
        "camoufox_reverse_mcp"
      ],
      "command": "python"
    }
  }
}

Setup guide

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/camoufox-reverse-mcp)](https://mcppedia.org/s/camoufox-reverse-mcp)

Should you use this server?

一个 MCP（Model Context Protocol）服务器，让 AI 编码助手（Claude Code、Cursor、Cline 等）能够通过 Camoufox 反指纹浏览器对目标网站进行：接口参数分析、JS 文件静态分析、动态断点调试、函数 Hook 追踪、网络流量拦截、JSVMP 字节码分析、Cookie/存储管理等逆向操作。

✓

Is it safe?

No package registry to scan.

No authentication — any process on your machine can connect.

License not specified.

✓

Is it maintained?

Last commit 12 days ago. 64 stars.

Will it work with my client?

Transport: stdio, http. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

README

camoufox-reverse-mcp

中文 | English

基于反指纹浏览器的 MCP Server，专为 JavaScript 逆向工程设计。

一个 MCP（Model Context Protocol）服务器，让 AI 编码助手（Claude Code、Cursor、Cline 等）能够通过 Camoufox 反指纹浏览器对目标网站进行：接口参数分析、JS 文件静态分析、动态断点调试、函数 Hook 追踪、网络流量拦截、JSVMP 字节码分析、Cookie/存储管理等逆向操作。

为什么选择 Camoufox？

特性	chrome-devtools-mcp	camoufox-reverse-mcp
浏览器内核	Chrome (Puppeteer)	Firefox (Camoufox)
反检测方案	无	C++ 引擎级指纹伪造
调试能力	有限（无断点）	Playwright + JS Hook
JSVMP 分析	无	解释器插桩 + 属性追踪 + 字符串提取
Hook 持久化	不支持	context 级持久化，导航后自动重注入

核心优势：

Camoufox 在 C++ 层面 修改指纹信息，非 JS 层 patch，从根源不可检测
Juggler 协议沙箱隔离使 Playwright 完全不可被页面 JS 检测到
BrowserForge 按 真实世界流量统计分布 生成指纹，不是随机拼凑
能在瑞数、极验、Cloudflare 等强反爬站点上正常工作
Hook 使用 Object.defineProperty 防覆盖保护，页面脚本无法恢复原始方法

快速开始

方式一：AI 对话框直接安装（推荐）

在你的 AI 编码工具（Cursor / Claude Code / Codex 等）的对话框中输入：

请帮我配置camoufox-reverse-mcp并在后续触发相关操作的时候查阅该mcp：https://github.com/WhiteNightShadow/camoufox-reverse-mcp

AI 会自动完成克隆、安装依赖、配置 MCP Server 的全部流程。

方式二：手动安装

1. 克隆项目

git clone https://github.com/WhiteNightShadow/camoufox-reverse-mcp.git
cd camoufox-reverse-mcp

2. 安装依赖

pip install -e .

或使用 uv：

uv pip install -e .

3. 配置到你的 AI 工具

根据你使用的工具，将 MCP Server 配置添加到对应的配置文件中（见下方「客户端配置」章节）。

使用方法

作为 MCP Server 启动

python -m camoufox_reverse_mcp

带参数启动：

python -m camoufox_reverse_mcp \
  --proxy http://127.0.0.1:7890 \
  --geoip \
  --humanize \
  --os windows

命令行参数

参数	说明	默认值
`--proxy`	代理服务器地址	无
`--headless`	无头模式	false
`--os`	操作系统伪装（windows/macos/linux）	windows
`--geoip`	根据代理 IP 自动推断地理位置	false
`--humanize`	人类化鼠标移动	false
`--block-images`	屏蔽图片加载	false
`--block-webrtc`	屏蔽 WebRTC	false

客户端配置

Cursor（.cursor/mcp.json）

{
  "mcpServers": {
    "camoufox-reverse": {
      "command": "python",
      "args": ["-m", "camoufox_reverse_mcp"]
    }
  }
}

Claude Code

{
  "mcpServers": {
    "camoufox-reverse": {
      "command": "python",
      "args": ["-m", "camoufox_reverse_mcp", "--headless"]
    }
  }
}

Claude Code（带代理）

{
  "mcpServers": {
    "camoufox-reverse": {
      "command": "python",
      "args": [
        "-m", "camoufox_reverse_mcp",
        "--proxy", "http://127.0.0.1:7890",
        "--geoip",
        "--humanize"
      ]
    }
  }
}

可用工具一览（57 个）

导航 & 页面

工具	说明
`launch_browser`	启动 Camoufox 反指纹浏览器（已启动时返回完整会话状态）
`close_browser`	关闭浏览器，释放资源
`navigate`	导航到指定 URL
`reload` / `go_back`	刷新页面 / 浏览器后退
`take_screenshot`	截图（支持全页面、指定元素）
`take_snapshot`	获取页面无障碍树（兼容新版 Playwright）
`click` / `type_text`	点击元素 / 输入文本
`wait_for`	等待元素出现或 URL 匹配
`get_page_info`	获取当前页面 URL、标题、视口尺寸
`get_page_content`	[新] 一键导出渲染后 HTML + title + meta + 可见文本
`get_session_info`	[新] 查看当前会话状态：浏览器/上下文/页面/抓包/Hook

JS 脚本分析（逆向核心）

工具	说明
`list_scripts`	列出页面所有已加载的 JS 脚本
`get_script_source`	获取指定 JS 文件的完整源码
`search_code`	在所有已加载脚本中搜索关键词（返回匹配数量和脚本列表，不再截断）
`search_code_in_script`	[新] 在指定脚本中搜索关键词（更精准，避免全量扫描）
`save_script`	将 JS 文件保存到本地
`get_page_html`	获取完整页面 HTML 或指定元素

断点调试（逆向核心）

工具	说明
`evaluate_js`	在页面上下文执行任意 JS 表达式
`evaluate_js_handle`	执行 JS 并检查复杂对象属性
`add_init_script`	注入在页面 JS 之前执行的脚本（支持 persistent 持久化）
`freeze_prototype`	[新] 冻结原型方法，防止页面脚本覆盖 Hook
`set_breakpoint_via_hook`	通过 Hook 设置伪断点（支持 persistent 持久化）
`get_breakpoint_data`	获取伪断点捕获的数据
`get_console_logs`	获取页面 console 输出

Hook & 追踪（逆向核心）

| 工具 | 说明 | |------

... View full README on GitHub

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Score Breakdown

MCPpedia Score

Click each category to see evidence

38D

Last scored 9h ago

How we score →

Security

3/30

No known vulnerabilities.

○

Known CVEs — No package registry to scan

○

Tool safety — No tools to analyze

○

Tool poisoning — No tools to analyze

○

Injection vectors — No tools to analyze

✓

Tool stability — Tool definitions stable

○

Dependency health — No package to analyze

✗

License — No license specified

○

Authentication — No authentication required

○

Repository — active repo

CVEs checked daily via OSV.dev. Score algorithm is open source.

Reviews

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Camoufox Reverse Mcp safe to use?: Camoufox Reverse Mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Camoufox Reverse Mcp?: Camoufox Reverse Mcp supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Camoufox Reverse Mcp?: Camoufox Reverse Mcp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio and http transport.
Is Camoufox Reverse Mcp actively maintained?: Camoufox Reverse Mcp is actively maintained — last commit was 12 days ago. It has 64 GitHub stars.

Similar servers

View all →

Memory MCP Server

Official

No CVEs98A

Persistent memory using a knowledge graph

5 toolsstdio83.8k93.5k/wk1d ago

Hash-verified file editing MCP server with token efficiency hook. 11 tools for AI coding agents.

No CVEs95A

Hash-verified file editing MCP server with token efficiency hook. 11 tools for AI coding agents.

5 toolsremote398685.9k/wk11h ago

Context Mode

No CVEs95A

Privacy-first. MCP is the protocol for tool access. We're the virtualization layer for context.

6 toolsremote7.3k10.0k/wk22h ago

Browser Tools Mcp

No CVEs94A

Monitor browser logs directly from Cursor and other MCP compatible IDEs.

7 toolsremote7.2k2.9k/wk28d ago

MCP Security Weekly

Get CVE alerts and security updates for Camoufox Reverse Mcp and similar servers.

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?