AnC won the 2017 Blackhat Pwnie award in the category Pwnie for Most Innovative Research. Luckily, Victor was there to receive this award on behalf of the AnC team!
To quote the pwnie award site:
-
Exploit writers have been bending over backwards to try to defeat ASLR for the better part of a decade. Usually this requires finding some soon-to-be-patched memory disclosure bug. Of course this is a hard job and needs to be repeated for different browsers/plugins/versions/etc. Then these guys come along with a universal ASLR bypass based on timing of the caching of memory access. Of course this works using Javascript in most browsers by default and isn’t really something you can fix very easy. Seems too easy, I think I’ll keep looking for infoleaks like a real hacker.
Vusec is proud of the industrial and scientific recognition of this work.