diff --git a/docs-site/overrides/home.html b/docs-site/overrides/home.html new file mode 100644 index 0000000..bcbb144 --- /dev/null +++ b/docs-site/overrides/home.html @@ -0,0 +1,248 @@ +{% extends "main.html" %} + +{% block tabs %} + {{ super() }} + + + + +
+
+
+ +

Kingfisher

+

Open Source Secret Scanner with Live Validation

+

+ Detect, validate, and revoke leaked credentials across your codebase, + Git history, cloud storage, and developer platforms. + Built in Rust by MongoDB. +

+
+ + Get Started + + + View on GitHub + +
+
+
+
+ + +
+
+
+ 734+ + Detection Rules +
+
+ 39 + Access Map Providers +
+
+ 15+ + Scan Targets +
+
+ 20+ + Revocation Providers +
+
+
+ + +
+
+

Why Kingfisher?

+ +
+
+

Scan Everything

+

+ Files, Git repos, GitHub, GitLab, Azure Repos, Bitbucket, Gitea, + Hugging Face, Docker images, AWS S3, Google Cloud Storage, Jira, + Confluence, Slack, and Microsoft Teams. +

+
+ +
+

Live Validation

+

+ Automatically validate discovered credentials against provider APIs. + Eliminate false positives by confirming which secrets are actually live + and active. +

+
+ +
+

Blast Radius Mapping

+

+ Go beyond detection. Map leaked keys to their effective cloud identities + and exposed resources with --access-map. + See exactly what an attacker could access. +

+
+ +
+

Direct Revocation

+

+ Revoke compromised credentials directly from the CLI for 20+ providers + including GitHub, GitLab, Slack, AWS, GCP, Heroku, and Cloudflare. +

+
+ +
+

Built for Accuracy

+

+ Tree-sitter language-aware parsing across 13+ languages reduces false positives + at the detection layer. Combined with entropy filtering, checksum verification, + and live validation, Kingfisher delivers high-signal results you can act on. +

+
+ +
+

Built for AI

+

+ Detects and validates tokens for 35+ AI/ML providers including OpenAI, + Anthropic, Google Gemini, Mistral, Cohere, and more. Purpose-built TOON + output format for token-efficient LLM and agent workflows. +

+
+ +
+

Built for Speed

+

+ Rust-powered with Intel Hyperscan SIMD-accelerated regex. Multithreaded + scanning handles massive codebases while making minimal network requests + through intelligent validation. +

+
+
+
+
+ + +
+
+

Performance

+

+ Kingfisher scans the Linux kernel in 205 seconds and the GitLab monorepo + with just 17 HTTP validation requests. Intelligent validation means fewer + API calls and faster results at scale. +

+ Kingfisher Runtime Comparison across major open source repositories +

+ See full benchmark methodology and results +

+
+
+ + +
+
+

Scan Targets

+
+
+ Files + Files / Dirs +
+
+ Git + Local Git +
+
+ GitHub + GitHub +
+
+ GitLab + GitLab +
+
+ Azure Repos + Azure Repos +
+
+ Bitbucket + Bitbucket +
+
+ Gitea + Gitea +
+
+ Hugging Face + Hugging Face +
+
+ Docker + Docker +
+
+ Jira + Jira +
+
+ Confluence + Confluence +
+
+ Slack + Slack +
+
+ Microsoft Teams + Teams +
+
+ AWS S3 + AWS S3 +
+
+ Google Cloud Storage + Cloud Storage +
+
+
+
+ + +
+
+

Install in Seconds

+
+
+

Homebrew

+ 
brew install kingfisher
+
+
+

PyPI

+ 
uv tool install kingfisher-bin
+
+
+

Docker

+ 
docker run --rm -v "$PWD":/src ghcr.io/mongodb/kingfisher:latest scan /src
+
+
+

Script

+ 
curl -sSL https://raw.githubusercontent.com/mongodb/kingfisher/main/scripts/install-kingfisher.sh | bash
+
+
+
+ + Full Installation Guide + +
+
+
+ +{% endblock %} + +{% block content %}{% endblock %} +{% block footer %} + {{ super() }} +{% endblock %} diff --git a/docs-site/overrides/main.html b/docs-site/overrides/main.html new file mode 100644 index 0000000..1983022 --- /dev/null +++ b/docs-site/overrides/main.html @@ -0,0 +1,29 @@ +{% extends "base.html" %} + +{% block extrahead %} + + +{% endblock %}