← Back to Blog
Threat IntelJune 15, 2026By Sanjay Sharma· 5 min read

How I discovered Shadow IT inside a gaming company using Google Workspace APIs

In this deep dive, we explore the techniques used to discover shadow IT applications within Google Workspace using OAuth audit trails and API analysis.

We cover the OAuth token audit workflow, how to enumerate third-party app grants at scale, and how to turn the findings into an actionable remediation plan.

How I discovered Shadow IT inside a gaming company using Google Workspace APIs | Cyber Security Society