Wraith Browser
Cli reference

Commands

Complete reference for all wraith-browser CLI commands and flags

Global Flags

These flags apply to every subcommand.

FlagShortDescriptionDefault
--verbose-vEnable verbose logging (wraith=trace)off
--engine <ENGINE>Browser engine: auto, sevro, nativeauto
--proxy <URL>HTTP or SOCKS5 proxy(none)
--flaresolverr <URL>FlareSolverr endpoint for challenge pages(none)
--fallback-proxy <URL>Fallback proxy for restricted sites(none)
--version-VPrint version and exit
--help-hPrint help and exit

serve

Start the MCP server. This is the primary command for integrating with AI clients like Claude Desktop and Claude Code.

wraith-browser serve [OPTIONS]
OptionShortDescriptionDefault
--transport <MODE>-tTransport mode: stdio or ssestdio
--host <HOST>Bind address for SSE transport127.0.0.1
--port <PORT>-pPort for SSE transport3100

Examples:

# Default: stdio transport for Claude Desktop / Claude Code
wraith-browser serve

# HTTP/SSE on all interfaces, port 4000
wraith-browser serve --transport sse --host 0.0.0.0 --port 4000

# With proxy and verbose logging
wraith-browser serve -v --proxy socks5://127.0.0.1:1080

Navigate to a URL and print the result to stdout. Useful for quick one-off page fetches and scripting.

wraith-browser navigate <URL> [OPTIONS]
OptionShortDescriptionDefault
--format <FORMAT>-fOutput format: snapshot, markdown, jsonsnapshot

Examples:

# DOM snapshot with @ref IDs (same view the AI agent sees)
wraith-browser navigate https://example.com

# Extracted markdown
wraith-browser navigate https://example.com --format markdown

# Full JSON snapshot
wraith-browser navigate https://example.com --format json

task

Run an autonomous browsing task powered by an LLM. The agent loop navigates, clicks, fills forms, and extracts information to complete the described task.

wraith-browser task <DESCRIPTION> [OPTIONS]
OptionShortDescriptionDefault
--url <URL>-uStarting URL(none)
--max-steps <N>Maximum agent steps before stopping50

Requires either ANTHROPIC_API_KEY (or CLAUDE_API_KEY) for the Claude backend, or WRAITH_LLM=ollama for local models. See Configuration for all agent-related variables.

Examples:

# Search and summarize
wraith-browser task "Find the latest Rust release date"

# Start from a specific page
wraith-browser task "Extract the pricing table" --url https://example.com/pricing

# Limit to 10 steps
wraith-browser task "Log in and check notifications" --url https://app.example.com --max-steps 10

Search the web using SearXNG metasearch and optional API-backed providers.

wraith-browser search <QUERY> [OPTIONS]
OptionShortDescriptionDefault
--max-results <N>-mMaximum number of results10

Examples:

wraith-browser search "Rust async runtime comparison" --max-results 5

extract

Navigate to a URL and extract readable content as markdown, with a configurable token budget.

wraith-browser extract <URL> [OPTIONS]
OptionDescriptionDefault
--max-tokens <N>Maximum token budget for extracted content4000

Examples:

wraith-browser extract https://blog.rust-lang.org/2024/02/08/Rust-1.76.0.html
wraith-browser extract https://en.wikipedia.org/wiki/Rust_(programming_language) --max-tokens 8000

vault

Manage the encrypted credential vault at ~/.wraith/vault.db. The vault uses AES-256-GCM encryption and requires a passphrase to unlock.

wraith-browser vault <SUBCOMMAND>

vault unlock

Unlock the vault (or create it on first use). Prompts for a passphrase.

wraith-browser vault unlock

vault lock

Lock the vault and zeroize the master key from memory.

wraith-browser vault lock

vault store

Store a new credential in the vault.

wraith-browser vault store --domain <DOMAIN> --identity <IDENTITY> [OPTIONS]
OptionShortDescriptionDefault
--domain <DOMAIN>-dDomain (e.g., github.com)(required)
--identity <IDENTITY>-iUsername or account identifier(required)
--kind <KIND>-kCredential type: password, api_key, oauth_token, totp_seed, session_cookie, ssh_key, genericpassword
--label <LABEL>-lFriendly label(none)
--auto-useAllow auto-use without human approvaloff

vault list

List all stored credentials. Secrets remain encrypted.

wraith-browser vault list

vault delete

Delete a credential by ID.

wraith-browser vault delete <ID>

vault totp

Generate a TOTP code for a domain.

wraith-browser vault totp <DOMAIN>

vault audit

Show recent audit log entries.

wraith-browser vault audit [--limit <N>]

Default limit is 20 entries.

vault approve

Approve a domain for credential use.

wraith-browser vault approve --credential-id <ID> --domain <DOMAIN>

vault rotate

Rotate a credential's secret value. Prompts for the new secret.

wraith-browser vault rotate <ID>

fingerprint

Manage browser fingerprint profiles used for browser compatibility.

wraith-browser fingerprint <SUBCOMMAND>

fingerprint import

Import a fingerprint from a JSON file (exported from browser DevTools).

wraith-browser fingerprint import <FILE>

The profile is saved to ~/.wraith/fingerprints/.

fingerprint list

List all stored fingerprint profiles.

wraith-browser fingerprint list

Time-Travel Debugging

Inspect, branch, replay, and diff the agent's decision timeline

Transport Modes

How Wraith Browser communicates with MCP clients — stdio and HTTP/SSE

On this page

Global Flagsservenavigatetasksearchextractvaultvault unlockvault lockvault storevault listvault deletevault totpvault auditvault approvevault rotatefingerprintfingerprint importfingerprint list