· 9 min read

CloakBrowser Review 2026 — Open-Source Stealth Chromium

web-scraping
8.5 / 10

CloakBrowser Review 2026

🛡️ AI Tool · Updated 2026
🏠 Homepage 📦 GitHub 📖 Docs

TL;DR

TL;DR
  • CloakBrowser is the best open-source stealth browser for web scraping and automation — a drop-in Playwright/Puppeteer replacement with a custom Chromium binary patched at the C++ source level (58 patches).
  • Achieves a reCAPTCHA v3 score of 0.9, passes Cloudflare Turnstile, FingerprintJS, and 30+ detection services. Free, MIT-licensed, 7,247 tests, auto-updating binary. Self-hosted profile manager available (Multilogin alternative).
  • ~200MB binary download, no built-in CAPTCHA solving (prevents them but can't solve edge cases), Chromium-only (no Firefox), young project (Feb 2026).

What Is CloakBrowser?

CloakBrowser is an open-source, stealth Chromium binary purpose-built for undetected browser automation. Developed by CloakHQ, it launched in February 2026 and has already amassed 20,000+ GitHub stars. Instead of relying on JavaScript injections or configuration-level hacks (which every existing stealth tool uses), CloakBrowser applies 58 fingerprint patches directly to the Chromium C++ source code and compiles them into a custom binary.

The result is a browser that detection services treat as a real user — because at the binary level, it is one. The project wraps this binary in a thin Python/JavaScript library that mirrors the standard Playwright and Puppeteer APIs. You can swap a single import line and your existing automation code works with full stealth protection.

Beyond the browser library, CloakHQ also maintains a self-hosted browser profile manager — an open-source alternative to Multilogin, GoLogin, and AdsPower that runs via Docker with noVNC.

📊 Quick Specs

Developer
CloakHQ
Launched
February 2026
Patch Level
C++ source (58 patches)
reCAPTCHA v3 Score
0.9
Browser Engine
Chromium 146
API Compatibility
Playwright + Puppeteer (drop-in)
Humanize Mode
Built-in (Bézier curves, per-character typing)
License
MIT (free + open source)
GitHub Stars
20,000+
Tests
7,247
Docker
Yes (official image)

Core Features

Source-Level C++ Fingerprint Patching

This is CloakBrowser's defining innovation. Every other stealth tool patches the browser's runtime fingerprint after launch — injecting JavaScript overrides, swapping ChromeDriver configs, or patching flags at startup. These surface-level patches are detectable because the underlying binary still exposes automation signals. CloakBrowser patches 58 fingerprint surfaces at compile time: canvas rendering, WebGL parameters, audio context, font enumeration, GPU reporting, screen properties, WebRTC IP handling, network timing, and CDP input behavior. The binary ships with zero detectable automation surfaces — the patches are baked into the executable.

Humanize Mode

The humanize=True flag transforms automated interactions into human-like behavior: Bézier curve mouse movements (not linear), per-character typing with realistic timing distributions, and natural scroll patterns. This is critical because many modern bot detectors (including FingerprintJS and BrowserScan) analyze behavioral signals — not just static fingerprints.

Proxy and GeoIP Integration

CloakBrowser supports HTTP, SOCKS5, and dictionary-format proxy configuration. The geoip=True flag auto-detects timezone, locale, and language from the proxy's exit IP — preventing timezone fingerprint mismatches that often expose automated browsers. WebRTC IP spoofing is handled via --fingerprint-webrtc-ip=auto, which resolves the proxy's exit IP and spoofs ICE candidates accordingly.

Persistent Profiles

launch_persistent_context() creates browser profiles that preserve cookies, localStorage, and session data across restarts — essential for logged-in sessions like social media scraping, e-commerce monitoring, or SaaS dashboard automation. For lightweight session management, launch_context(storage_state="state.json") saves and restores sessions from JSON files.

Extension and Framework Support

CloakBrowser loads Chrome extensions via extension_paths in all launch functions and integrates directly with browser-use, Crawl4AI, Scrapling, Stagehand, LangChain, and Selenium — making it a drop-in stealth layer for existing automation pipelines rather than a replacement for the entire stack.

💰 Pricing — Free (MIT)

BEST OPEN-SOURCE STEALTH
CloakBrowser
$0/software
  • ✅ MIT license — fully free
  • ✅ 58 C++ source-level patches
  • ✅ Playwright + Puppeteer APIs
  • ✅ Self-hosted profile manager included

Closest commercial alternatives (Multilogin, GoLogin) cost $30-100/mo. Proxy services are BYO.

🔬 Detailed Analysis

Detection Benchmark Results

Detection ServiceScore / ResultNotes
reCAPTCHA v30.9Stock Playwright: 0.1 — playwright-stealth: 0.3-0.5
Cloudflare TurnstilePASSStock Playwright: FAIL
FingerprintJSPASSAll alternatives: DETECTED
BrowserScanNORMALplaywright-stealth: Suspicious
deviceandbrowserinfo.com0 true flagsStock: 6 true flags
bot.incolumitas.com1 failStock: 13 fails

vs. Alternatives

vs playwright-stealth: playwright-stealth injects JavaScript patches at page load to hide automation signals. It works for basic blocking but fails on modern detection — reCAPTCHA v3 hovers around 0.3-0.5 and the project is stale. CloakBrowser's C++ patches are strictly superior and actively maintained.

vs undetected-chromedriver: Patches Chrome startup flags and config. Achieves moderate stealth (0.3-0.7) but breaks with every Chrome update. Unmaintained. CloakBrowser compiles patches into the binary with auto-updating.

vs Camoufox: Similar source-patching approach for Firefox. Comparable scores (0.7-0.9) but custom API — no Playwright/Puppeteer drop-in. CloakBrowser wins on API compatibility and active maintenance.

✅ Pros

  • Unmatched stealth — 58 C++ source-level patches yield reCAPTCHA v3 score of 0.9 and pass 30/30 detection services. No other free tool comes close.
  • Drop-in replacement — Change one import line and existing Playwright/Puppeteer code runs with full stealth protection.
  • Humanize mode — Built-in Bézier mouse curves, per-character typing catches what fingerprint-based stealth alone misses.
  • Active maintenance — Chromium 146 with auto-updating binary. Compare to playwright-stealth and undetected-chromedriver which are stale.
  • Self-hosted profile manager — Free Multilogin/GoLogin alternative as separate Docker image with noVNC.
  • Framework integrations — Works with browser-use, Crawl4AI, LangChain, Selenium — any tool that launches a browser.

❌ Cons

  • Binary size — ~200MB on first download. Not ideal for ephemeral containers without caching.
  • No CAPTCHA solving — Prevents CAPTCHAs from appearing but can't solve them. Need a solver service for edge cases.
  • No built-in proxy rotation — Bring your own proxies. GeoIP features auto-detect from proxy but no rotating pool included.
  • Firefox limitation — Currently Chromium-only. Camoufox offers a Firefox-based alternative.
  • Young project — Launched February 2026. Long-term maintenance commitment unproven.

🎯 Who Should Use CloakBrowser

Best for: Web scrapers targeting sites protected by Cloudflare, DataDome, or FingerprintJS. AI agent builders using browser-use, LangChain, or Crawl4AI who need stealth. QA engineers testing against anti-bot protection. Price monitors and aggregators needing persistent logged-in sessions.

Not ideal for: Simple API scraping (just use requests/curl). Firefox-only requirements (Camoufox is better). Ephemeral CI/CD without caching for the 200MB binary.

📋 Score Breakdown

🦾 Capability 9/10
💰 Cost / Value 10/10
🔧 Developer Experience 9/10
🔌 Ecosystem 7/10
⚡ Reliability 8/10
Overall ToolBrain Score 8.5 / 10

Verdict

CloakBrowser is the best open-source stealth browser available today. Its C++ source-level patching approach is a genuine technical breakthrough in a space filled with brittle, surface-level fixes. The 0.9 reCAPTCHA score and 30/30 detection test pass rate are unmatched at any price point — let alone free.

If you scrape protected sites, build browser-based AI agents, or run automated QA against anti-bot services, CloakBrowser should be your default automation browser. The only reason to look elsewhere is if you specifically need Firefox (Camoufox) or require built-in CAPTCHA solving (add a solver service alongside CloakBrowser).

ToolBrain Verdict: Install / Deploy (essential for stealth web automation).

❓ FAQ

Is CloakBrowser free?

Yes. Completely free and open-source under the MIT license. No subscription tiers, usage limits, or premium features. The companion CloakBrowser Manager (browser profile manager) is also MIT-licensed.

How is CloakBrowser different from playwright-stealth?

playwright-stealth injects JavaScript patches at page load — these are detectable because the binary still exposes automation surfaces. CloakBrowser patches the Chromium source code itself before compilation. The binary ships with zero detectable automation signals.

Does CloakBrowser work with Selenium?

Yes. CloakBrowser includes a Selenium-compatible API. Use from cloakbrowser import launch to get a WebDriver-compatible instance. Integrates with Crawl4AI, LangChain, browser-use, and Stagehand.

Does CloakBrowser bypass CAPTCHAs?

It prevents CAPTCHAs from appearing by making your browser indistinguishable from a real user. It does not solve CAPTCHAs that do appear. For edge cases, you'll need a solver service alongside it.

Can I use CloakBrowser in Docker?

Yes. docker run --rm cloakhq/cloakbrowser cloaktest runs a test immediately. The Docker image includes the full stealth binary.

What browsers does CloakBrowser support?

Currently Chromium-only (Chromium 146). No Firefox or WebKit support announced. For Firefox-based stealth, consider Camoufox.

Does CloakBrowser support persistent profiles?

Yes. launch_persistent_context() creates profiles preserving cookies, localStorage, and session data. launch_context(storage_state="state.json") saves and restores from JSON.

📖 Related Reads

More ToolBrain Reviews:
🔗 OpenClaw Review — Open-source AI agent with web browsing
🔗 OpenCode Review — Open-source coding agent
🔗 DeepSeek-TUI Review — 8.0/10 — Terminal coding agent
🔗 AI Tools Comparison Database — 40+ AI tools compared
ReviewSummary

📚 Citations

  1. CloakBrowser GitHub Repository — Source code, issues, and documentation
  2. CloakBrowser Manager — Self-hosted browser profile manager
  3. CloakBrowser README — Installation guide, API reference, and feature documentation
  4. CreepJS / FingerprintJS — Browser fingerprinting test suite
  5. Incolumitas Bot Detector — Anti-bot detection test suite

📝 Change Log

  • May 28, 2026 — v4 template upgrade: Added TL;DR, Quick Specs (tb-quick-specs), Detection Benchmark table (tb-benchmarks with reCAPTCHA highlight row), Pricing card, 5-dimension Score Breakdown with emoji, Related Reads, Citations, and Change Log. Wrapped Pros/Cons in tb-pros-cons, Verdict in tb-verdict. Converted FAQ to collapsible format.
  • Original — Initial published review with feature deep-dive, benchmark comparison, and alternative analysis.
← Back to all posts

Related Posts

 · 7 min

Guide: LoRA Fine-Tuning LLMs — A Practical Guide for 2026
 · 13 min

Windsurf Review 2026: AI-Powered IDE with Cascade Agents
 · 4 min

Ghost CMS Review (2026): The Focused Future of Publishing