[Bunnie], the hardware hacker who first hacked into the original Xbox while at MIT, is releasing his book on the subject for free. The book was originally released in 2003, and delves into both the technical and legal aspects of hacking into the console.
The book is being released along with an open letter from [Bunnie]. He discusses the issues he faced with MIT legal and copyright law when working on the project, and explains that the book is being released to honor [Aaron Swartz]. [Swartz] committed suicide in January following aggressive prosecution by the US government.
The book is a great read on practical applications of hardware hacking. It starts off with simple hacks: installing a blue LED, building a USB adapter for the device’s controller ports, and replacing the power supply. The rest of the book goes over how the security on the device was compromised, and the legal implications of pulling off the hack.
[Bunnie]’s open letter is worth a read, it explains the legal bullying that hackers deal with from a first hand prospective. The book itself is a fantastic primer on hardware hacking, and with this release anyone who hasn’t read it should grab the free PDF.
NXP holds a lot of market share for their ARM based solutions as it is. That’s why we were a little surprised when we found a link on their website announcing that they were giving away free LPCXpresso development boards, based on their Cortex-M0 line.
Catches? Unfortunately there are a few to get the board shipped and running. In order to do so, you must…
- register with a corporate email address
…the promo is targeted at engineers
- use the crippled IDE supplied with the board
…due to hard to find (non-existent?) documentation for the integrated LPC-Link
- upload an original video of the physical destruction of a competing board to the NXP website
While killing your Arduino may not sound like the most fun, some qualified readers may be interested in moving up to 32-bits for a price that is hard to beat.
It looks like the dust has finally settled with sparkfun’s free day. They managed to give away $150,541 to users and $22,988 to charity. The general idea is you could ether take $10/year you’ve been a sparkfun customer, or take a 10 question quiz and earn $10/correct answer plus some money for charity. It looks like some technical difficulties prevented people from taking the quiz until free day had been under way for a couple of hours. Once they managed to fix the problem the money went pretty fast, eating up the last $40,000 in about 5 minutes. So did anyone manage to get anything good? Be sure to checkout sparkfun’s recap video after the break for more details.
Continue reading “Sparkfun free day recap”
Here is the 32nd amateur fusion reactor built in a basement. [Mark Suppes] is right behind [Will Jack], the (then) 17 year old [Thiago Olson], and [Mileiux] in engineering a homemade nuclear reactor. By taking two light elements and colliding them under extreme speed and pressure, a heavier element and energy are produced.
[Mark’s] goal is to lasso in investors to earn enough money to build a larger Bussard Reactor, which will hopefully produce as much energy as it consumes. Free energy at only a couple million dollars; who wouldn’t pass up this opportunity?
SparkFun’s free day came and went as entertainment for some and an infuriating event for others. They filmed some video in their office during the madness to give us a look at how it went on their end. We find it amusing that Solarbotics, one of their competitors, sent them flowers with a card reading “Rest in Peace SparkFun”.
According to [Nate’s] original post, the concept of free day was inspired by reading [Chris Anderson’s] book “Free: The Future of a Radical Price”. We recently finished reading this wonderful work and we’re making it our next book recommendation. [Chris] is editor-in-chief of Wired and has had a ring-side seat as the digital world rose around us. He takes a historical look at what the price of free really means, defining cost by adding more terms like Gratis and Libre to the mix. If you have a good handle on the companies that have defined the 21st Century business model so far you wont’ be able to put this book down.
Now, we should mention something that is remotely related to hacking since we try to do that sort of thing around here. The SparkFun post also reminds those folks lucky enough to get a $100 credit to chronicle and share their projects. We’d love to see them too so get your projects written up and send us the dirty details.
Until midnight tonight, you can download a free copy of the 1/2008 issue of security magazine hackin9. It’s 84pages, 10.5MB, and requires you to provide an email address they don’t verify.
Scrawlr is the latest tool to come out of HP’s Web Security Research Group. It was built in response to the massive number of SQL injection attacks happening on the web this year. Most of these vulnerable sites are found through googling, so Scrawlr works the same way. Point it at your web server and it will crawl all of the pages and evaluate the URL parameters to see if they’re vulnerable to verbose injection. It reports the SQL server and table names if it comes across anything.
It only supports 1500 pages right now and can’t do authentication or blind injection. It’s still a free tool and a great way to identify if your site is vulnerable to automated tools finding you website via search engines.