openclaw/Phantom Browser
aces1up/ad-forge/SKILL.md
Undetectable browser automation for AI agents. 31/31 stealth tests passed. WindMouse physics, per-profile fingerprinting, residential IP routing. Runs headless on a $6/mo VPS.
$ install --global
skillsauthnpx skillsauth add openclaw/skills Phantom BrowserInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 20, 2026, 5:00 AM88.3s1 file scanned
SKILL.md
Phantom Browser
Undetectable browser automation built for AI agents. Not Playwright. Not a manual anti-detect tool.
Your agents log into platforms, interact with sites, and browse the web without getting flagged, throttled, or banned.
What It Does
Most AI browser automation uses CDP (Chrome DevTools Protocol) to remote-control Chrome. Every major platform detects it. Facebook, LinkedIn, Instagram, X, Google. The second they see CDP automation, you are flagged, throttled, or banned.
Phantom Browser does not work that way.
Tool Layer (Not Remote Control)
The AI agent describes what it wants to do. "Click this button." "Type in this field." "Scroll down." A tool layer translates that into actions that look exactly like a real person using a real computer. The agent never sends raw browser commands.
Human-Like Input Physics
- Mouse: WindMouse algorithm with random curves, not straight-line jumps
- Typing: Natural delays between keystrokes, each character different timing
- Scrolling: Acceleration and deceleration matching human behavior
- Clicking: Cursor travels naturally before clicking, not instant teleport
Per-Profile Fingerprinting
Each browser session runs with a unique identity. Screen resolution, installed fonts, timezone, language, WebGL signature (reports a real consumer GPU like GTX 1650, not SwiftShader), canvas fingerprint, user agent, plugin list.
To the platform, each profile looks like a completely separate person on a completely separate computer.
Residential IP Routing
All traffic routes through residential proxy IPs (real home internet connections). The platform sees a normal ISP from a real location, not a datacenter IP.
Headless on VPS
Runs on a cheap VPS ($6/month). No desktop app. No screen. No GUI. Agents browse 24/7. Uses Xvfb so Chrome extensions work without a physical display.
System-Level Access Control
Only agents explicitly approved for browser access can open one. Not a prompt instruction. System-level lockout. Unapproved agents genuinely cannot access the browser.
Proof
- 31/31 stealth tests passed (bot.sannysoft.com)
- Real GPU fingerprint (NVIDIA GeForce GTX 1650, not SwiftShader)
- Residential IP masking (Breezeline Ohio ISP, not datacenter)
- 762 lines custom stealth code
- $6/mo VPS cost to run
Status: Early Access
Phantom Browser is in limited early access. Run setup.sh to register your interest and be first in line when we open spots.
bash setup.sh
Quick Start (After Access)
bash setup.sh
source .venv/bin/activate
python3 phantom_browser.py --status
vs. Everything Else
| Tool | AI-Native | Stealth | Headless | |------|-----------|---------|----------| | Playwright / Puppeteer | No | 0/31 | Yes | | Selenium | No | Detected | Yes | | AdsPower / Multilogin | Manual | Partial | No | | Phantom Browser | Yes | 31/31 | Yes |
Requirements
- VPS (Ubuntu, 2GB+ RAM, $6+/month)
- OpenClaw installed
- Residential proxy service (Decodo, Bright Data, IPRoyal, Oxylabs)
Links
- Product page: https://clawagents.dev/phantom-browser/
- Demo video: 67s proof-of-concept showing all stealth tests
Related Skills
openclaw/mcdonalds-skill
tools
VerifiedTrustedCommunity
Use when the user wants to connect to, test, or use the McDonalds service at mcp.mcd.cn, including checking authentication, probing MCP endpoints, listing tools, or calling McDonalds MCP tools through a reusable local CLI.
3,962SKILL.mdUpdated Apr 10, 2026
openclaw/scrapebadger
development
VerifiedTrustedCommunity
Web scraping platform — Twitter/X data, Vinted marketplace, and general web scraping API
3,962SKILL.mdUpdated Apr 10, 2026
openclaw/slowmist-security-cc
development
VerifiedTrustedCommunity
SlowMist AI Agent Security Review — comprehensive security framework for skills, repositories, URLs, on-chain addresses, and products (Claude Code version)
3,962SKILL.mdUpdated Apr 10, 2026
openclaw/humanizer-cn
data-ai
VerifiedTrustedCommunity
去除中文文本中的 AI 写作痕迹,使其读起来自然。基于维基百科 AI 写作特征指南,检测 24 种 AI 模式。触发词:humanizer-cn、去除 AI 痕迹、去除 AI 写作痕迹、中文文本人性化。
3,962SKILL.mdUpdated Apr 10, 2026