kunji

  ██   ██ ██    ██ ███    ██      ██ ██
  ██  ██  ██    ██ ████   ██      ██ ██
  █████   ██    ██ ██ ██  ██      ██ ██
  ██  ██  ██    ██ ██  ██ ██ ██   ██ ██
  ██   ██  ██████  ██   ████  █████  ██

Kunji is a high-performance, concurrent CLI tool designed to rapidly validate API keys across 260+ services. Whether you're auditing infrastructure, testing integrations, or cleaning up configuration dumps, Kunji provides a safe, fast, and automated way to verify credentials.

🚀 Terminal Experience

Kunji features a modern, interactive UI built with pterm, providing real-time feedback during bulk operations.

  ██   ██ ██    ██ ███    ██      ██ ██
  ██  ██  ██    ██ ████   ██      ██ ██
  █████   ██    ██ ██ ██  ██      ██ ██
  ██  ██  ██    ██ ██  ██ ██ ██   ██ ██
  ██   ██  ██████  ██   ████  █████  ██

Validating API Keys [256/260] ███████████████████████████████████░ 98%
  » shopify         ✓ Valid    myshop:shpat_****abc123
  » openai          ✓ Valid    sk-proj-****xyz789
  » stripe          ✗ Invalid  sk_live_****123456
  » deepseek        ✓ Valid    sk-****def456

✨ Key Features

• 🔍 Smart Auto-Detection — Instantly identifies 260+ services via a high-speed prefix trie and sensitive regex fallback.
• ⚡ Concurrent Engine — Multi-threaded worker pool handles thousands of keys in seconds with configurable throughput.
• 📊 Metadata Extraction — Automatically retrieves account balance, email, usage limits, and organization names.
• 🛡️ Hardened Security — Built-in SSRF protection, restrictive file permissions, and automatic secret scrubbing in logs.
• 🔄 Smart Resume & Retry — Skip already-validated keys and handle intermittent network failures or rate limits with jittered backoff.
• 📤 Clean Export — Generate structured reports in .txt, .csv, .json, or memory-efficient .jsonl.
• 🕹️ Interactive Paste Mode — Paste blocks of text and let Kunji auto-extract and validate the keys.
• 🕵️ Dry Run Mode — Detect providers without sending a single network request.

📦 Installation

Go Install (Recommended)

go install github.com/Grey-Magic/kunji@latest

Prebuilt Binaries

Download the latest release for your platform:

# Example for Linux/macOS
curl -sL https://github.com/Grey-Magic/kunji/releases/latest/download/kunji_1.0.5.zip -o kunji.zip
unzip kunji.zip && chmod +x kunji
sudo mv kunji /usr/local/bin/

🛠️ Usage

For a comprehensive guide including service-specific examples, see USAGE.md.

Basic Commands

# Validate a single key (auto-detects provider)
kunji validate -k "sk-proj-..."

# Bulk validation from a file with 20 workers
kunji validate -f keys.txt -o results.csv -t 20

# Resume an interrupted run, only keeping valid keys
kunji validate -f keys.txt --resume --only-valid -o results.jsonl

# Quick interactive paste mode
kunji interactive

# Check your proxies
kunji check-proxies --proxy proxies.txt

Advanced Options

🔒 Security First

Kunji is designed with data privacy and security as a core mandate:

1. User-Only Permissions: All result files are created with 0600 permissions (-rw-------), ensuring only you can read your validated keys.
2. Secret Scrubbing: Kunji automatically detects and masks API keys in error messages ([MASKED_KEY]) before they are saved to disk.
3. No Data Exfiltration: Validation happens directly between your machine and the provider API.

🏛️ Supported Providers (260+)

Kunji supports an extensive array of services across multiple domains:

🤝 Contributing

Adding a new provider is simple and requires zero Go code. Simply add a YAML entry to pkg/validators/providers/:

- name: new_service
  key_prefixes: ["ns-"]
  key_patterns: ["^ns-[a-zA-Z0-9]{32}$"]
  validation:
    method: GET
    url: "https://api.newservice.com/v1/user"
    auth: "bearer"

📄 License

This project is licensed under the MIT License - see the LICENSE file for details.