Kingfisher Access Map Viewer

📄

Load one or more reports

Drop files anywhere in this card, or click to choose them from disk.

Choose Reports JSON and JSONL only

Deduplicate findings (remove same-tool fingerprint repeats)

Formats

Kingfisher JSON/JSONL, Gitleaks OSS JSON, and TruffleHog OSS JSON/JSONL.

Merge More

Choose multiple files at once, or drag in more report files after loading to merge them into the same view.

Deduplication

Kingfisher reports are already deduplicated. For imported Gitleaks and TruffleHog reports, the viewer attempts deduplication (by default) by finding fingerprint: native fingerprints when present, otherwise a synthetic fingerprint built from the tool, detector, and secret identity, with path/line/snippet fallback when needed.

Privacy

Everything stays in your browser. Files are not uploaded anywhere.

Attribution

Reads JSON output from the open-source TruffleHog and Gitleaks CLIs. Kingfisher is not affiliated with or endorsed by Truffle Security Co. or the Gitleaks project. TruffleHog and Gitleaks are trademarks of their respective owners.

Report overview

Findings

Active

Identities

For Researchers

For Defenders

Total Findings

High Confidence

Active Credentials

Identities Mapped

Detector distribution by source

Top detector families for each loaded tool, grouped into a chart per source.

Most frequent findings

Use this to spot the noisiest rule families and imported detectors quickly.

Active only

Findings

Detailed list of detected secrets

Rows

Rule	Source	Location	Validation	Confidence	Line

Rule ID

Fingerprint

Entropy

Validation Status

Report Source

Git Commit

Committer Email

File Path

Git URL

Match Snippet

Enriched by Kingfisher

Kingfisher Validation

Matched on · Kingfisher rule

Live Validation Response

Load Report

Duplicates Removed by Tool

Finding Status Distribution

Detector Families

Access Map

Findings

Finding Details

Blast Radius