Azucar is a multi-threaded plugin-based security assessment tool specifically designed for Azure Cloud environments. The tool operates as a read-only assessment platform that gathers detailed information about various Azure assets without making modifications to deployed resources. The tool runs on Windows OS and utilizes the .NET ADAL library for authentication and REST API communication with Azure services. It provides comprehensive coverage of Azure infrastructure components including Azure Active Directory, SQL databases (MySQL and PostgreSQL), storage accounts, virtual machines (both classic and V2), and security configurations. Key assessment capabilities include retrieving attributes from Azure Active Directory objects such as computers, users, groups, and contacts, identifying high-level accounts within Azure tenants, and analyzing security configurations across multiple Azure services. The tool examines role assignments through RBAC, security policies, missing security patches and baselines, network security groups, and classic endpoints. Additional features include analysis of Azure Security Alerts, KeyVault configurations, Web Application Firewall settings, and overall security status reporting. The multi-threaded architecture enables efficient scanning of large Azure environments, while the plugin-based design allows for extensible functionality and customized assessment modules.