iframer

A swiss knife for your agent to browse.

Runs locally. No Docker required.

$npx iframer-toolkit install

What it does

  • Your AI gets a real Chromium browser — headless, headful on your desktop, or invisible headful via self-hosted Docker
  • Log into real accounts — passwords stay encrypted, the AI never sees them
  • CAPTCHAs and cookie banners handled automatically with vision (needs Anthropic API key)
  • 2FA with TOTP — just store the secret, iframer generates the code
  • Sessions persist across conversations — login once, stay logged in
  • Reverse-engineer any site's API — captures endpoints, auth, cookies, and saves ready-to-use .js or .ts files
  • One command to install. Works with Claude Code, Codex, any MCP-compatible agent.

How it works

npx iframer-toolkit install
Downloads Chromium + registers MCP tools
Agent: "store creds for site X"
Secure prompt — you type, AI never sees
Agent: "log into site X"
Browser fills the form with your encrypted credentials
Agent: "get my messages"
Browses, extracts data, returns results with screenshots
Agent: "reverse-engineer the API"
Captures endpoints, auth, saves .js/.ts client files
Session saved
Cookies encrypted in SQLite. Next time, already logged in.

What's inside

Browser
Patchright (patched Playwright + Chromium) with stealth fingerprinting
Sessions
AES-256 encrypted cookies + localStorage in SQLite
Credentials
Encrypted server-side, write-only API — no endpoint returns passwords
Captcha
Vision-based solver using Claude (reCAPTCHA + hCaptcha)
Live view
headful on your desktop, or invisible via Docker with noVNC at localhost:6080
API capture
Reverse-engineer any site — records endpoints, auth, bodies, exports .js/.ts
MCP
7 tools: status, browse, execute, session, credentials, knowledge, reverse-engineer
DocsGitHub

Open source · MIT license · 2026