Stealth Chromium "CloakBrowser" Released to Overcome Bot Detection
An open-source browser, "CloakBrowser," modifies Chromium's C++ source code to bypass all bot detection systems, usable as a drop-in replacement for Playwright and Puppeteer.
A New Approach to Fingerprint Modification at the C++ Source Level
An open-source browser that takes a unique approach to bypassing bot detection has been released on GitHub. Developed by CloakHQ, “CloakBrowser” is a stealth Chromium browser that directly modifies the C++ source code of Chromium to alter its fingerprint.
Unlike similar tools that rely on JavaScript injection or patching configuration files, CloakBrowser applies 49 source-level patches. These patches fundamentally alter key metrics referenced by bot detection systems, such as Canvas, WebGL, audio, fonts, GPU, screen, WebRTC, network timing, and more.
Passes All Major Detection Systems
According to the developers, CloakBrowser has been tested against over 30 detection platforms, including Cloudflare Turnstile, reCAPTCHA v3, FingerprintJS, and BrowserScan, passing all tests successfully. Notably, it achieved a score of 0.9 on reCAPTCHA v3, which is equivalent to a human-like assessment.
Additionally, by simply setting the humanize=True flag, the browser can replicate human-like mouse movements, keyboard timing, and scrolling patterns, effectively bypassing motion-based detection mechanisms.
Usable as a Drop-In Replacement for Playwright/Puppeteer
One of the key advantages for developers is that CloakBrowser can be integrated into existing Playwright or Puppeteer codebases with minimal changes. For Python, transitioning involves changing just one import statement.
# Before
from playwright.sync_api import sync_playwright
# After
from cloakbrowser import launch Similarly, in JavaScript (Node.js) environments, CloakBrowser can be combined with Playwright or Puppeteer-core. Once installed via a package manager, the stealth Chromium binary (approximately 200MB) is automatically downloaded during the first execution.
Browser Profile Manager Also Released
Alongside CloakBrowser, a self-hosted browser profile manager has been released. Positioned as an open-source alternative to tools like Multilogin, GoLogin, and AdsPower, it enables users to create and manage browser profiles with unique fingerprints and proxies.
The profile manager is provided as a Docker container and allows browser access via noVNC.
Future Outlook
CloakBrowser is offered under the MIT license, allowing anyone to use it without subscription fees or usage restrictions. It includes an automatic update feature to ensure users always have access to the latest stealth build.
The ongoing cat-and-mouse game between bot detection technologies and evasion techniques is expected to continue, and CloakBrowser’s approach of modifying C++ source code could open new horizons in this field.
Frequently Asked Questions
- Is CloakBrowser an illegal tool?
- CloakBrowser itself is open-source software released under the MIT license. However, depending on its usage, it may violate the terms of service of certain websites. Users should carefully review each site's policies and ensure proper use.
- Is it difficult to migrate an existing Playwright project to CloakBrowser?
- Migration is relatively simple. For Python projects, you only need to modify one import statement, and the rest of the code will work as is. Similarly, in JavaScript, switching the import source for the launch function is sufficient for integration.
Comments