Security-Research

ISDF — Intune Stateful Device Fingerprinting

ISDF — Intune Stateful …

ISDF (Intune Stateful Device Fingerprinting) is an open-source project that closes a specific blindspot in Conditional Access: the fact that device-reported attributes can be locally manipulated.

The problem it solves

Conditional Access is only as strong as the signals it consumes. If a device can …

KuShu — Attack & Defence Research

KuShu — Attack & Defence …

KuShuSec (Cloud Guardian in Japanese) is an umbrella for cloud security research, attack simulation tooling, and defence frameworks. The primary public artefact is KuShu-Atama — a growing library of attack and defence mind maps for cloud services.

KuShu-Atama

A repository of structured attack and …

Az-Skywalker

Az-Skywalker

Az-Skywalker is a security research project and toolset that exposes control plane isolation flaws in Microsoft Azure — particularly in Key Vault, Logic Apps, and other iPaaS services.

Research included

VaultRecon

Demonstrates how Microsoft’s intended isolation between the Key Vault control …

How I Dorked My Way Into Meeting With Canadian cybercrime

How I Dorked My Way Into …

Images in this post generated by Microsoft Copilot and ChatGPT

This is a personal blog and all content therein is my personal opinion and not that of my employer.

Introduction

In this post, I’m going to talk about some topics that may or may not be new to you, how they led to me finding …

1
2

Recent Posts

The Model Isn't the Risk. The Harness Is (Part 3): Defending Against Runtime Abuse

The Model Isn't the Risk. …

Hero image generated by ChatGPT

This is a personal blog and all content herein is my personal opinion and not that of my employer.

This is Part 3 of a 3-part series.

Part	Title
Part 1	The Leak, the Context, and the Framework …

April 2, 2026 Read

The Model Isn't the Risk. The Harness Is (Part 2): Mapping the Trust Boundaries and the Attack Tree

The Model Isn't the Risk. …

Hero image generated by ChatGPT

This is a personal blog and all content herein is my personal opinion and not that of my employer.

This is Part 2 of a 3-part series.

Part	Title
Part 1	The Leak, the Context, and the Framework …

April 2, 2026 Read

The Model Isn't the Risk. The Harness Is (Part 1): The Leak, the Context, and the Framework

The Model Isn't the Risk. …

Hero image generated by ChatGPT

This is a personal blog and all content herein is my personal opinion and not that of my employer.

The Procurement TL;DR

If you are buying or integrating an AI Agent platform today, ignore the “magic” demos. Ask these three questions:

How is my …

March 31, 2026 Read

OID-See v1.1.0: External Identity Posture, iOS Support, and New Auth Methods

OID-See v1.1.0: External …

This is a personal blog and all content herein is my own opinion and not that of my employer.

OID-See v1.1.0 is out

v1.0.1 tightened the scoring.

v1.1.0 expands what OID-See can actually see.

This is the biggest release since the initial drop: a new external identity posture surface, a fully …

March 31, 2026 Read

Self-Hosting Umami on Netlify + Azure: What I’d Do Differently (and Why Your Database Probably Isn’t the Problem)

Self-Hosting Umami on …

Self-Hosting Umami on Netlify + Azure

Prisma fights, pgcrypto drama, CSP facepalms, cold starts… and assumptions with teeth

TL;DR

I set out to self-host Umami analytics for this website using:

Netlify (Next.js runtime - I already host my site here so it made sense to me!)
Azure PostgreSQL Flexible …

March 25, 2026 Read

Synthetic Authority and Constrained Probabilism: What Overloaded Minds Teach Us About AI

Synthetic Authority and …

Hero image generated by ChatGPT

This is a personal blog. All opinions are my own and not those of my employer.

We Are Not Exploring New Territory

After publishing Capability ≠ Obligation, I had a conversation that lingered far longer than I expected.

It wasn’t with a policymaker, a …

February 15, 2026 Read

© 2026 All Rights Reserved