Quote:
Originally Posted by deepzero
Did she ever mention what process/workflow she uses to find those, or how she chooses the windows components to analyze?
|
Not that I am aware of.
(at that time) she just dumped the zerodays with some basic information.
- what bug it is
- how to exploit it
- PoC in 3 cases (2 are no longer on her github)
But she never talked about methodology except as said, some basic info about the exploit.
After she would dump the info she would then talk about depression and general IRL stuff. Then "general" twitter chatter started with people saying she could report to MS or other bug bounty program and wished her well about her health and other RL stuff.