KuShuSec (Cloud Guardian in Japanese) is an umbrella for cloud security research, attack simulation tooling, and defence frameworks. The primary public artefact is KuShu-Atama — a growing library of attack and defence mind maps for cloud services.
KuShu-Atama
A repository of structured attack and defence mind maps for Entra ID, Azure, hybrid identity, and cloud-native services. Each map traces an attack path from initial access to impact, with corresponding detection and mitigation guidance.
Featured maps include:
- Entra ID hybrid attack paths
- Conditional Access bypass techniques
- Identity-based lateral movement
SPADE Research
SPADE (Side-channel Platform Abuse and Data Exfiltration) describes how adversaries can abuse trusted SaaS-hosted runtimes — like Google Colab — to exfiltrate data while evading CASB, EDR, and proxy controls.
The SPADE research is documented in KuShu-Atama alongside the broader attack/defence mind maps.