We love all of the projects that are coming out for the 555 design contest, so we thought we would share a couple more that have caught our collective eye.  Have a 555 project of your own? Be sure to share it with us, and keep an eye out for the contest submission dates. Read on for a few of our project picks.

A wonderful combination of a number of commonly used ICs, this amplifier with built in visualizations features the LM3915 as a circular VU meter, a TDA2003 audio amp chip, as well as a 555 to control an LED “breathing” light. Sure the role of the 555 is limited as of now, but there is plenty of time to beef up any designs before the contest is over.

A follow up to a previous project we covered, this revamped low cost fuel injection tester, this build by [Dino] has taken in to account some of the suggestions by Hackaday commentors to step up the submission. Be sure to check out the explanation video, as well as a video in action.

This odd looking perforated disk acts similarly to a record, however it uses optical sensors in place of a needle to sense notes of a “song”. Using 555 timers to generate the audio signals, this project definitely has a distinctive sound to it. Right now it is hand turned, and the resolution seems a bit low, but a quick servo or stepper add on and some more fine tuning could yield a very unique music box build.

Whenever someone manages to expose vulnerabilities in everyday devices, we love to root for them. [Adrian] over at Irongeek has been inspired to exploit barcodes as a means to attack a POS database. Based on an idea from a Pauldotcom episode, he set out to make a rapid attack device, using an LED to spoof the signals that would be received by scanning a barcode. By exposing the POS to a set of generic database attacks, including XSS, SQL Injection, and other errors easily solved by input sanitation, he has created the first version of an automated system penetration device. In this case the hardware is simple, but the concept is impressive.

With the hardware explained and the source code provided, as well as a basic un-sanitized input cheat sheet, the would-be barcode hackers have a great place to start if they feel compelled to provide a revision two.

[Thanks Robert W.]

[_coreDump] was doing some database vulnerability testing using SQLmap to automate the process. To his dismay, the package was unable to test using the Simple Object Access Protocol. Faced with having to manually test all of the SOAP vulnerabilities he decided to work some Python magic and add support. His solution allows SQLmap 0.8 to parses XML data from the SOAP protocol by modifying three files from the package. He’s made the diff files available if you need this functionality for your own security testing.

[Kenneth Maxon] is a wizard who only does things one way, beautifully. While out of the average hacker’s production capabilities, his injection molding machine is amazing to behold. The machine has all features a commercial model would. It heats and cools the mold, produces over a ton of pressure to inject plastic with, and ejects parts automatically to name a few.

[Martin Beck] and [Erik Tews] have just released a paper covering an improved attack against WEP and a brand new attack against WPA(PDF). For the WEP half, they offer a nice overview of attacks up to this point and the optimizations they made to reduce the number of packets needed to approximately 25K. The only serious threat to WPA so far has been the coWPAtty dictionary attack. This new attack lets you decrypt the last 12 bytes of a WPA packet’s plaintext and then generate arbitrary packets to send to the client. While it doesn’t recover the WPA key, the attacker is still able to send packets directly to the machine they’re attacking and could potentially read back the response via an outbound connection to the internet.

[photo: niallkennedy]

[via SANS]