Stealth Browser MCP

An MCP server giving AI agents real, undetectable browser automation — built on nodriver and Chrome DevTools Protocol to navigate sites protected by Cloudflare and other anti-bot systems for automation and testing workflows.

1.4Kstars
220forks
MIT License
Python

Stealth Browser MCP exposes browser automation to MCP-compatible AI agents through real Chrome instances driven by nodriver and the Chrome DevTools Protocol, rather than a standard automation library like Playwright or Selenium that many anti-bot systems can fingerprint and block. This lets agent-driven automation and testing workflows navigate sites that would otherwise reject typical headless-browser traffic.

Built on FastMCP for the server layer, it exposes a toolbox of browser actions to any MCP client, with network interception capabilities alongside standard navigation and interaction tools. The README includes a direct comparison against Playwright MCP, positioning stealth/anti-detection as its specific differentiator rather than general browser automation coverage.

MIT licensed, the project is intended for legitimate automation, testing, and agent-driven browsing use cases — using it to circumvent access controls on systems you don’t have authorization to access would violate those systems’ terms of service and potentially applicable law, the same as any browser automation tool capable of anti-bot evasion.

What You Get

  • An MCP server exposing real browser automation to any MCP-compatible AI agent
  • Anti-detection browser control via nodriver and Chrome DevTools Protocol instead of a standard, fingerprintable automation library
  • Network interception tools alongside standard navigation and interaction actions
  • A documented comparison against Playwright MCP explaining the stealth-specific trade-offs

Common Use Cases

  • Running AI agent-driven browser automation against sites that block typical headless-browser traffic
  • Automated testing of web applications that need to be exercised through a real, non-fingerprinted browser
  • Building agent workflows that browse and extract data from sites with anti-bot protections, within the bounds of those sites’ terms of service
  • Network traffic interception for debugging or analysis during agent-driven browser sessions

Under The Hood

Architecture Stealth Browser MCP layers FastMCP (an MCP server framework) over nodriver, which itself drives real Chrome instances via the Chrome DevTools Protocol rather than through automation-specific browser APIs that anti-bot systems commonly fingerprint. The modular toolbox design exposes discrete browser actions (navigation, interaction, network interception) as separate MCP tools, letting an agent compose them rather than calling one monolithic “browse” function.

Tech Stack Python, built on nodriver for Chrome DevTools Protocol-based browser control, FastMCP for the MCP server layer, and Chrome as the underlying browser engine.

Code Quality The project documents its own trade-offs directly against Playwright MCP rather than only promoting itself, and maintains a public roadmap and contribution guide; overall GitHub health metrics show moderate rather than exceptional engagement relative to its star count, suggesting room for growth in sustained maintenance activity.

What Makes It Unique Most MCP browser-automation servers wrap Playwright or Selenium, which many anti-bot systems can detect via known automation fingerprints; Stealth Browser MCP’s use of nodriver and raw Chrome DevTools Protocol specifically targets that detection gap, at the cost of being a narrower, more specialized tool than general-purpose browser automation MCP servers.

Self-Hosting

Licensing Model MIT licensed — fully open source with no license key.

Self-Hosting Restrictions Not applicable; it’s a local MCP server running your own Chrome instance.

License Key Required No.

Usage Note This tool’s anti-detection capabilities are intended for legitimate automation and testing on systems you’re authorized to access. Using it to bypass access controls on systems without authorization may violate those systems’ terms of service and applicable law.

Join founders buildingwith open source

Opinionated takes, migration guides, cost-saving tips, and insights from the open source ecosystem.

Subscribe on Substack

No spam. Unsubscribe anytime.

Join 750+ subscribers
No spam. Unsubscribe anytime.

Search