If you use Inkscape to lay out your laser cutter designs you might want to look into this box maker extension. Inscape is [Elliot’s] drawing software of choice since it’s easy to use, and it’s open source. After having to lay out the tabs for a box he decided it was worth his effort to develop a tool to do this automatically. The extension works inside of Inkscape, letting you start your projects with a set of automatically generated box sides.
The input window for the extension leaves you plenty of options for the joint design. In addition to the size of the box (inside or outside measurements can be selected), you need to enter the thickness of the material, the kerf size (how wide the cut will be), and how much clearance you want between the teeth. The width of the teeth is also configurable.
Our feature of a laser cut replacement case is what prompted [Elliot] to tip us off about his extension. That project used a web-based parts generator to do the joint design.
Often, software hackers are the activists that push software giants towards updating vulnerable applications. In todays example, [Eric Butler] is pushing Facebook, Twitter, Flickr, and more all at the same time. By creating a user script-kiddie friendly extension for Firefox, he has allowed just about anyone to sniff unsecured connections on public Wi-Fi access points and log into these unprotected accounts.
Right now the extension is available for Windows and Mac, with a Linux port coming soon. Temporarily, the best way for a user to avoid getting taken advantage of would be to not use these social networking sites on a public connection, or to implement a secure proxy for these connections that would keep your data safe. Hopefully these websites will have a quick rebuttal that allows for security without workarounds. With all of the bad press they are recieving, they certainly have incentive to.
Are there any software or security buffs out there? We would love to see someone port this to an iPhone or Android app that could check and log open Wi-Fi points. We’ll leave the foot work to the experts out there, but do be sure to give us a heads up if anyone manages to make it happen, okay?
One of the best tools we saw at LayerOne was the Exploit-Me series presented by [Dan Sinclair]. Security Compass created these tools to help developers easily identify cross site scripting (XSS) and SQL injection vulnerabilities.
Continue reading “Exploit-Me Firefox XSS and SQL scanning addon”