Copy.Fail: When the Kernel Trusts Too Much Sometimes you hit a vulnerability that isn’t just “bad”. It’s clean. Not elegant. Not pretty. But clean in the way it slices straight through assumptions we’ve quietly depended on for years. CVE-2026-31431 is one of those. The shape of the …

Hero image generated by ChatGPT This is a personal blog. All opinions are my own and not those of my employer. From Clawdbot to GAINet: When Agent Experiments Outrun Accountability This post didn’t start as a philosophical musing about AI. It started with a very practical, very familiar security …

Hero image generated by ChatGPT This is a personal blog and all content herein is my own opinion and not that of my employer. The Unseen Variable: Identity, Agentic AI and the Path of Least Resistance Every few years the industry rediscovers a truth that has always been hiding in plain sight. We …

Hero image generated by ChatGPT This is a personal blog and all content herein is my own opinion and not that of my employer. Introduction Over the past few years, enterprises have dramatically expanded their use of SaaS platforms, cloud-native runtimes, and browser-based IDEs. This has brought …

KuShuSec (Cloud Guardian in Japanese) is an umbrella for cloud security research, attack simulation tooling, and defence frameworks. The primary public artefact is KuShu-Atama — a growing library of attack and defence mind maps for cloud services. KuShu-Atama A repository of structured attack and …

Az-Skywalker is a security research project and toolset that exposes control plane isolation flaws in Microsoft Azure — particularly in Key Vault, Logic Apps, and other iPaaS services. Research included VaultRecon Demonstrates how Microsoft’s intended isolation between the Key Vault control …