Louis Dion-Marcil's Avatar

Louis Dion-Marcil

@ldionmarcil.bsky.social

vegan btw. appsec @ mandiant/google cloud. opinions my own etc

142 Followers  |  278 Following  |  6 Posts  |  Joined: 15.11.2024
Posts Following

Posts by Louis Dion-Marcil (@ldionmarcil.bsky.social)

it is crazy to me that we still cannot do this

10.11.2025 15:49 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

I'm happy to release a script gadgets wiki inspired by the work of @slekies, @kkotowicz, and @sirdarckcat in their Black Hat USA 2017 talk! ๐Ÿ”ฅ

The goal is to provide quick access to gadgets that help bypass HTML sanitizers and CSPs ๐Ÿ‘‡

gmsgadget.com

1/4

24.07.2025 15:31 โ€” ๐Ÿ‘ 23    ๐Ÿ” 13    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0
Preview
Trix Shots: Remote Code Execution on Aviatrix Controller | Google Cloud Blog Red team case study detailing the discovery of two critical vulnerabilities in the Aviatrix Controller software.

wrote some words about vulnerabilities i found in Aviatrix during a red team cloud.google.com/blog/topics/...

23.06.2025 15:04 โ€” ๐Ÿ‘ 4    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Preview
The Signal Clone the Trump Admin Uses Was Hacked TeleMessage, a company that makes a modified version of Signal that archives messages for government agencies, was hacked.

TeleMessage, the Israeli company that makes the modified Signal app used by Trump officials, was hacked. โ€œI would say the whole process took about 15-20 minutes,โ€ the hacker said micahflee.com/the-signal-c...

04.05.2025 22:03 โ€” ๐Ÿ‘ 271    ๐Ÿ” 109    ๐Ÿ’ฌ 8    ๐Ÿ“Œ 14
Video thumbnail

๐Ÿš€ Another plugin in the Caido Store!

Introducing "Data Grep" by @bebiksior.

Extract data from requests and responses. Great for building wordlists, finding secrets, or powering your recon.

Check it out: github.com/caido-commun...

24.04.2025 19:37 โ€” ๐Ÿ‘ 6    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

Got sniped into the challenge and ended up doing some cool XSS research :D

11 char XSS with mind-boggling race-conditions.

TL;DR the final payload is location=x (10 chars) and the longest is top.Z.x=x.d (11 char)

It's shorter than location=name !!

terjanq.me/solutions/jo...

14.12.2024 12:17 โ€” ๐Ÿ‘ 30    ๐Ÿ” 11    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 1
Preview
Bridging the Gap: Elevating Red Team Assessments with Application Security Testing | Google Cloud Blog Red team and targeted external assessments should incorporate application security expertise to better simulate modern adversaries.

I wrote a thing with my colleague Ilyass El Hadi (0xc0ffee_) & Charles Prevost, about how we've been leveraging offensive webapp testing during Red Teams. 4 use cases of external breaches using webapps inside, enjoy! #appsec

cloud.google.com/blog/topics/...

06.12.2024 20:12 โ€” ๐Ÿ‘ 18    ๐Ÿ” 7    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

Environments are something I've wanted for a while now.

30.11.2024 20:08 โ€” ๐Ÿ‘ 12    ๐Ÿ” 3    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

My latest blog post is live! nastystereo.com/security/cro...

Read how to send a cross-site POST without including a Content-Type header (without CORS). It even works with navigator.sendBeacon

27.11.2024 09:10 โ€” ๐Ÿ‘ 79    ๐Ÿ” 29    ๐Ÿ’ฌ 3    ๐Ÿ“Œ 4
Preview
Flatt Security XSS Challenge Execute alert(origin) on each challenge origins.

Been having a ton of fun solving these, only 2/3 done and i'm quite humbled so far
challenge-xss.quiz.flatt.training

21.11.2024 17:58 โ€” ๐Ÿ‘ 6    ๐Ÿ” 2    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
TIL: Some surprising code execution sources in bash

add that to the reasons to stop using bash in production pipelines yossarian.net/til/post/som... #security #cicd #appsec

21.11.2024 17:16 โ€” ๐Ÿ‘ 5    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

yeah wrote this yrs ago, would not use this as-is ๐Ÿ˜‚

15.11.2024 22:46 โ€” ๐Ÿ‘ 3    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Preview
sudo-backdoor/sudo at master ยท ldionmarcil/sudo-backdoor Wraps sudo; transparently steals user's credentials and exfiltrate over DNS. For those annoying times when you get a shell/file write on a sudoers account and need to leverage their credentials...

shocking how efficient this method is. patience > crazy exploits
github.com/ldionmarcil/...

15.11.2024 21:59 โ€” ๐Ÿ‘ 4    ๐Ÿ” 0    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0