Camofox Cloaked Browser

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed guide for using a local Camofox anti-detection browser server, with sensitive browser features documented rather than hidden.

Install only if you actually need cloaked browser automation. Keep the server on localhost unless you configure CAMOFOX_ACCESS_KEY, avoid importing cookies unless necessary, do not set CAMOFOX_URL globally in Hermes, and set CAMOFOX_CRASH_REPORT_ENABLED=false for privacy-sensitive browsing.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The README notes that crash/hang telemetry can be disabled via `CAMOFOX_CRASH_REPORT_ENABLED=false`, but it does not clearly state whether telemetry is enabled by default or what data may be transmitted. In a cloaked-browser skill intended for anti-detection workflows, undocumented outbound telemetry can expose sensitive browsing context, infrastructure details, or operational metadata to upstream services.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal