Browser MCP for AI agents

Your agents share a browser.
Ours don't have to.

15 parallel sessions. Full isolation. One server.

View on GitHub
terminal
$ npx leapfrog-mcp

  @..@    Leapfrog v0.6.1
 (----)   36 tools | 15 max sessions | self-improving
( >__< )  watching.
0
parallel sessions
0
tools
0
tests
0
x fewer tokens (median)
0
cloud deps

WHAT IT IS

An MCP server that gives your AI agents real browsers — multiple of them, in parallel, each with its own cookies, identity, and state.

The only MCP that lets you run 15 sessions side-by-side without them stepping on each other's auth or tabs. Open source, runs locally, no cloud account required.

What Lies Beneath

36 tools · 9 groups

Sessions & Pool
15 isolated sessions. Zero bleed.
Profiles & Auth
Stay logged in. For real.
Navigation & Perception
Pages as compact snapshots.
Network Intelligence
See what the page is really doing.
Self-Improvement
Learns from every visit.
Interaction
One tool. Every action.
Tiling & Reflow
Windows organize themselves.
Recording & Replay
Record once. Replay anytime.
Capture · Pagination · Human
Screenshots, scrolling, and the @..@ tap-in.
Lilypad as a circuit board — organic learning, silicon memory

THE FLYWHEEL

It remembers what works.

Every time your agent visits a site, Leapfrog quietly takes notes. Which stealth settings worked. How to dismiss cookie popups. Which page elements matter and which are just noise. Next visit, it already knows.

~/.leapfrog/domains/github.com.json
{
  "visitCount": 47,
  "stealthLevel": 2,
  "learnedSelectors": 12,
  "avgTokens": 487 // was 1550,
  "consentSelector": ".accept-all",
  "discoveredApis": 4
}

Real file. One per domain. Readable, deletable, portable.

What it actually learns

Site memory

A JSON file per website — wait times, working selectors, consent buttons, discovered APIs. Everything it needs to skip the learning curve next visit.

Stealth that adapts

Four stealth approaches compete. When one gets blocked, the others get a chance. Each site gets the lightest touch that works.

Cleaner snapshots

Recognizes page regions that never change — headers, footers, sidebars — and stops sending them. 30–40% fewer tokens.

Cookie popups, handled

Knows 10 consent frameworks out of the box. Learns new dismiss buttons when it finds them.

CAPTCHAs

Clicks through simple ones automatically. Pauses for help on hard ones — or routes to a solver you configure.

API discovery

Watches network traffic and classifies every endpoint — data, auth, tracking, ads. Exports as OpenAPI.

It's not a black box. Stored locally at ~/.leapfrog/domains/. Deletable per domain. Inspectable in your editor. No telemetry, no cloud sync, no account. cat it. rm it. It's just files.

UNDER THE HOOD

One server. Fifteen outposts.

One Chromium instance. Up to 15 isolated BrowserContexts. Each session gets its own cookies, storage, fingerprint, and proxy. No state bleeds.

Surface calm, infrastructure beneath — the Leapfrog architecture

EACH SESSION = ISOLATED POND · OWN COOKIES · OWN FINGERPRINT · OWN PROXY

HOW IT STACKS UP

Multi-session by default. Open-source by license.

agent-browser wins on raw token count. browser-use has 81K stars. Stagehand has the best natural language interface. Leapfrog ships the combination nobody else does — and runs entirely on your laptop.

LeapfrogPlaywright MCPagent-browserStagehand
Parallel sessions15 (isolated)11Cloud (paid)
Session isolationFullCloud
Tokens / page~1,400~14,000~300~2,000+
Network interceptYes
Real browser profilesYes
Self-improvingPer-domain
Crash recoveryAutoCloud
Local-firstYesYesYes
PriceFree (MIT)FreeFreePaid tiers