← Back to JS Reverse MCP

Install JS Reverse MCP

Pick your client, copy the command, done.

browser-automation
Manual setup required. We don't have a verified install command for this server. Follow the maintainer README and use the raw config below as a starting point.
1

Prepare the server locally

Run this once before adding it to Claude Code.

git clone https://github.com/NoOne-hub/JSReverser-MCP
cd JSReverser-MCP

Then follow the repository README for any remaining dependency or build steps.

2

Add it to Claude Code

Paste the maintainer's config below, then edit any placeholder values.

~/.claude.json
{
  "mcp_servers": {
    "js-reverse": {
      "command": "node",
      "args": [
        "/ABSOLUTE/PATH/JSReverser-MCP/build/src/index.js"
      ],
      "env": {
        "DEFAULT_LLM_PROVIDER": "anthropic",
        "ANTHROPIC_API_KEY": "your_key",
        "ANTHROPIC_MODEL": "claude-3-5-sonnet-20241022"
      }
    }
  }
}

See the JSReverser-MCP README for full setup instructions.

Environment Variables

Set these before running JS Reverse MCP.

VariableDescriptionRequired
DEFAULT_LLM_PROVIDERThe LLM provider to use (openai, anthropic, or gemini).No
ANTHROPIC_API_KEYAPI key for Anthropic services.No
OPENAI_API_KEYAPI key for OpenAI services.No
GEMINI_API_KEYAPI key for Gemini services.No

Available Tools (6)

Once configured, JS Reverse MCP gives your AI agent access to:

list_scriptsList all scripts currently loaded in the browser.
get_script_sourceRetrieve the source code of a specific script.
script_id
create_hookDefine a reusable hook for runtime sampling.
hook_definition
inject_hookInject a defined hook into the current page.
hook_id
understand_codeUse AI to analyze code structure, business logic, and security risks.
code_snippet
deobfuscate_codeClean and restore obfuscated JavaScript code.
code

Try It Out

After setup, try these prompts with your AI agent:

List all scripts loaded on the current page and find the one containing the 'h5st' signature.
Inject a hook into the login function to capture the arguments and return values.
Analyze the obfuscated code in the target script and explain the business logic.
Set a breakpoint on the network request initiator for the API call and pause execution.
Export the current browser session state to a JSON file for local reproduction.
Prerequisites & system requirements
  • An MCP-compatible client (Claude Code, Cursor, Windsurf, Claude Desktop, or Codex)
  • Node.js 18+ with npm/npx installed

Keep this setup from going cold

Save the docs, env vars, and workflow around JS Reverse MCP in Conare so Claude Code, Codex, and Cursor remember it next time.

Remember this setup
← JS Reverse MCP overview Browse browser-automation servers →