Skip to content

Getting Started

Ghostvault is a source-available MCP server that lets an AI agent — Claude Desktop, Cursor, ZCode, Cline, or any MCP-compatible client — manage browser sessions on any website through a real, anti-detect browser. Sign in once per account and reuse the session forever. Every account gets a locked fingerprint so it always looks like the same device to anti-bot systems, even across restarts.

The elevator pitch

Ghostvault gives your AI agent a real, anti-detect browser per account — with sessions that persist between restarts and fingerprints that don't drift. Local-first, zero telemetry, 42 MCP tools.

What you can do with it

  • Sign in to accounts on any website and reuse the session across restarts — no re-authentication every time.
  • Switch between accounts from a single agent conversation.
  • Read Gmail, open Drive, or interact with any login-gated site — including sites that use SSO login (Sign in with Google, GitHub, or any provider: Notion, Canva, ChatGPT, ...).
  • Scrape public pages anonymously with throwaway sessions (gv_open_ephemeral) — no account, no profile, no login.
  • See the page — tools return PNG screenshots so the agent can reason about layout, captchas, and visual structure.

Who it's for

Ghostvault is built for people who want their AI agent to do real work across any websites: power users automating their own inbox, developers testing auth flows, researchers scraping login-walled data. It is local-first — sessions, cookies, and fingerprints live under ~/.ghostvault on your machine and nothing is ever sent anywhere except the browser traffic itself.

Use it responsibly

Ghostvault is a tool for managing your own accounts. Don't use it to access accounts you don't own, violate terms of service, or do anything illegal. You are responsible for how you use it.

How it works

Your AI agent (Claude Desktop / Cursor / ZCode / Cline)
        │  MCP protocol (stdio or HTTP)
┌─────────────────────────────────────────────────┐
│ Ghostvault MCP Server                           │
│                                                 │
│  42 tools (gv_*):                               │
│   gv_create_account, gv_sign_in,          │
│   gv_create_provider, gv_check_session,  │
│   gv_detect_login_options, gv_record_login,│
│   gv_open_url, gv_click_element,         │
│   gv_api_call, gv_eval_js, ...           │
│                                                 │
│  Per-account persistent Camoufox profiles:      │
│   profile_A/  ── + locked fingerprint A         │
│   profile_B/  ── + locked fingerprint B         │
└─────────────────────────────────────────────────┘
        │  traffic exits via your home IP (local-first)
   any website  +  any SSO-enabled site

The agent decides what to do; Ghostvault provides the hands. Because the agent loop lives client-side, you can use whichever LLM you like.

Choose your path

Ghostvault supports two main workflows. Pick the one that matches your task — you can mix them freely.

I want to manage accounts

You have one or more accounts (Work, Personal, a test account) — on Google, GitHub, or any other provider — and you want your agent to read Gmail, open Drive, or drive any login-gated site (including sites that use Sign in with any provider).

Path: install → connect your agent → sign in to your first account.

  1. Installation — run the one-command installer.
  2. Connect your agent — wire Ghostvault into Claude Desktop / Cursor / ZCode / Cline.
  3. First sign-in — create an account slot, sign in, read Gmail.
  4. Configuration basics — tune the settings that matter (data dir, headless, default OS).

I just want to scrape a public page

You don't need an account at all — you want a throwaway anti-detect browser to read a public page, grab text/screenshots/links, and close. gv_open_ephemeral is built for exactly this.

Path: install → connect → open an ephemeral session.

  1. Installation — run the one-command installer.
  2. Connect your agent — wire Ghostvault into your client.
  3. Read Anonymous scraping for the ephemeral-session flow.

You can do both

Ephemeral sessions and managed accounts coexist. Scrape a public page anonymously, then switch to a managed account for authenticated work — all in one conversation.

Where to go next

New to Ghostvault? The Getting Started pages below walk you from zero to a working setup, in order:

Page What you'll do
Installation Run the one-command installer and verify it works.
Connect your agent Wire Ghostvault into Claude Desktop, Cursor, ZCode, or Cline.
First sign-in Create an account, sign in (e.g. provider='google'), read your inbox.
Configuration basics Understand the basic GHOSTVAULT_* settings.

Already set up? Jump to the Tool reference, or browse the Guides for deeper topics like anonymous scraping, human-like interaction, encryption at rest, and private/public profiles.