Projects & Research

Tools, Research & Open Source

Security research, open source tooling, and experimental projects. Built to explore, understand, and solve real problems.

πŸ”¬

OID-See

BloodHound for OAuth in Entra ID β€” maps third-party app consent, scopes, assignments, and trust signals into a graph to surface impersonation risk and OAuth sprawl.

GitHub
πŸ”¬

ISDF β€” Intune Stateful Device Fingerprinting

Cloud-stamped device metadata for Conditional Access β€” moves device trust out of the endpoint and into Azure, using TPM-rooted hardware identifiers validated by a Logic App with Managed Identity.

GitHub
πŸ”¬

KuShu β€” Attack & Defence Research

KuShuSec is a collection of cloud security attack and defence research, tools, and mind maps β€” including the KuShu-Atama attack/defence mind map repository and SPADE research.

GitHub
πŸ”¬

Az-Skywalker

A collection of Azure security research tools exposing control plane isolation flaws, cross-plane data exposure, and silent data harvesting in Microsoft Azure iPaaS services.

GitHub
πŸ”¬

The Audrey Project

A curated RSS/OPML feed collection for tech and security professionals β€” helping you stay current without drowning in noise.

GitHub