Enzo Gorlami Posted May 19, 2019 Share Posted May 19, 2019 We found a bug in all windows 10 systems that will allow system access. How should we go about monetizing our find as a whitehat? Quote Link to comment Share on other sites More sharing options...
Rkiver Posted May 19, 2019 Share Posted May 19, 2019 You contact Microsoft. I mean you can google it and it gives you the answer: https://www.microsoft.com/en-us/msrc/bounty Quote Link to comment Share on other sites More sharing options...
Enzo Gorlami Posted May 19, 2019 Author Share Posted May 19, 2019 Thank you. But since I have never done it before and new to pen-testing. I was wondering if anyone had advice beyond what is generic on Microsoft's website. I have read of alot of people that presented it and didnt get the response that they wanted for something that is a serious flaw. Quote Link to comment Share on other sites More sharing options...
Bigbiz Posted May 20, 2019 Share Posted May 20, 2019 Im actuallly looking into this type of thing right now so here i go Make sure you document the steps of the "bug" Make sure you can reproduce said "bug" If you can explain what type of vunrablity it is. Quote Link to comment Share on other sites More sharing options...
Enzo Gorlami Posted May 20, 2019 Author Share Posted May 20, 2019 (edited) Thank you , I am in contact with Microsoft working on it now . Edited May 21, 2019 by Enzo Gorlami Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.