Author: Arya Voronova

499 Articles

Screenshot of the PS4 screen, showing a "Waiting to receive disc image file..." notification on the left, and a Windows commandline window with nc running on the right, sending an .iso file to some IP address - presumably the PS4

Subverting PS4 And PS5 Through The PS2 Emulator

October 3, 2022 by 7 Comments

Game console hacking remains a fascinating area, and we’re glad when someone brings the spoils of exploration for us to marvel at. This time, we’re looking at the [mast1c0re] hack story by [cturt] – an effort to find bugs in PS2 emulation toolkit present on Sony PlayStation 4 and 5 consoles, proving fruitful in the end. What’s more, this exploit seems unpatchable – not technically, but under the Sony’s security practices, this emulator falls under the category of things they refuse to patch when identified.

In this story, we’re taken on a journey through the PS2 emulator internals, going through known-exploitable PS2 games and learning about a prospective entry point. Circling around it, collecting primitives and gadgets, bypassing ASLR on the way there, the emulator is eventually escaped, with a trove of insights shared along the way. As a demonstration, [cturt] successfully loaded a different PS2 game from outside the PS2 emulator, transferring it to the PS4 over WiFi! Continue reading “Subverting PS4 And PS5 Through The PS2 Emulator”

Fermenter on the desk, with the front door opened and some tempeh disks visible inside of it

Hackaday Prize 2022: An Easy-To-Build Fermenter For Tempeh

October 3, 2022 by 18 Comments

[Maud Bausier] and [Antoine Jaunard] believe we should all know about tempeh — a traditional Indonesian food made out of legumes fermented with fungi. To simplify the process a bit: you get some soybeans, add a tempeh starter fungi culture to them, ferment them a while, and out comes the tempeh. It’s a great source of proteins that’s relatively easy to grow on your own. One catch, though — you do need a certain kind of climate to have it develop properly. This is why [Maud] and [Antoine] are bringing a tempeh fermenter design to this year’s Hackaday Prize.

Ready tempeh disks cut into long pieces, showing the cross-section of some. It looks pretty tasty!This fermenter’s controller drives a heating element, which adheres to a pre-programmed fermentation cycle. It also has a fan for airflow and keeping the heat uniform.

The fermenter itself is a small desktop machine with a laser-cut case helped by some CNC-cut and 3D-printed parts, electronics being a simple custom PCB coupling a Pi Pico with widely-available modules. This is clearly a project for someone with access to hackerspace or fab lab resources, but of course, all of the files are on GitHub.

Once built, this design allows you to grow tempeh disks in home conditions on a small scale. It seems the design is mostly finalized, but if you’d like to hear news about this project, they have a blog and a Mastodon feed with some recent updates.

We’ve covered a whole lot of fermentation-related hacks over these years. Most of them have been alcohol-related, but every now and then we see people building fermentation equipment for other food materials, like vinegar, yogurt and sourdough. Now, having seen this fermenter, we’ve learned of one more food hacking direction to explore. This project is one of 10 finalists for our latest Hackaday Prize round, Climate-Resilient Communities. It’s a well-deserved win, and we can’t wait to see where it goes!

Lithium-Ion Batteries Are Easy To Find

October 3, 2022 by 43 Comments

In the first article, I’ve given you an overview of Lithium-Ion batteries and cells as building blocks for our projects, and described how hackers should treat their Lithium-Ion cells. But what if you don’t have any LiIon cells yet? Where do you get LiIon cells for your project?

Taking laptop batteries apart,  whether the regular 18650 or the modern pouch cell-based ones, remains a good avenue – many hackers take this road and the topic is extensively covered by a number of people. However, a 18650 cell might not fit your project size-wise, and thin batteries haven’t quite flooded the market yet. Let’s see what your options are beyond laptops. Continue reading “Lithium-Ion Batteries Are Easy To Find”

Picture showing the way the cut-down piece of chip is soldered onto the mainboard - looking, indeed, like a QFN package.

Making A Handheld NES By Turning DIP Chips Into…QFN?

October 2, 2022 by 51 Comments

You can achieve a lot with a Dremel. For instance, apparently you can slim the original NES down into the hand-held form-factor. Both the CPU and the PPU (Picture Processing Unit) are 40-pin DIP chips, which makes NES minification a bit tricky. [Redherring32] wasn’t one to be stopped by this, however, and turned these DIP chips into QFN-style-mounted dies (Nitter) using little more than a Dremel cutting wheel. Why? To bring his TinyTendo handheld game console project to fruition, of course.

DIP chip contacts go out from the die using a web of metal pins called the leadframe. [Redherring32] cuts into that leadframe and leaves only the useful part of the chip on, with the leadframe pieces remaining as QFN-like contact pads. Then, the chip is mounted onto a tailored footprint on the TinyTendo PCB, connected to all the other components that are, thankfully, possible to acquire in SMD form nowadays.

This trick works consistently, and we’re no doubt going to see the TinyTendo being released as a standalone project soon. Just a year ago, we saw [Redherring32] cut into these chips, and wondered what the purpose could’ve been. Now, we know: it’s a logical continuation of his OpenTendo project, a mainboard reverse-engineering and redesign of the original NES, an effort no doubt appreciated by many a NES enthusiast out there. Usually, people don’t cut the actual chips down to a small size – instead, they cut into the mainboards in a practice called ‘trimming’, and this practice has brought us many miniature original-hardware-based game console builds over these years.

Continue reading “Making A Handheld NES By Turning DIP Chips Into…QFN?”

CRT TV screen showing a Super Mario Bros main screen with "Social Media Bros" written on the title screen instead. There's a NES console to the right of it, with a perfboard on top of it, wires going into the console port.

ConnectedNES Brings Twitter Into Super Mario Bros World

October 2, 2022 by 6 Comments

Back in 2016, artist and video game historian [Rachel Weil (HXLNT)] was hanging out with her friend and hacking on console stuff, as friends do. [Rachel] was galvanized by the idea of having an iconic game like Super Mario Bros be interrupted by push notifications, and set out to bring a Twitter feed to her NES gaming experience. What she ended up with is ConnectedNES — a charming combination of a custom Twitter modem and a hacked Super Mario Bros ROM, creating a social media experience you have to see for yourself.

The technical side is as immaculate as the visuals. Data is transferred to the NES through the controller port using a Particle Photon that’s emulating a NES controller, and everything is encased in an adorable shell made out of yarn needlework.

The Photon currently taps into the Twitter feed through a proxy server run locally, and listens for tweets with specific keywords, relaying them to the ROM through mimicking controller port inputs. The ROM, now bearing the name Social Media Bros, went through some careful assembly trimming work. In particular, [Rachel] had to sacrifice Green Mario to the bit bucket gods.

Playing this game has to be quite the experience. Thankfully, source code for everything — the proxy server, the Photon firmware and the NES ROM — is on GitHub for all of us NES enthusiasts to hack at. If simply reading the feed is not enough, you can send tweets from your NES as well.

EEG graph with activity sections highlighted, one part highlighted as "F" and other as "6"

DREEMWORK Lets You Code Morse From Inside Your Dream

October 1, 2022 by 27 Comments

Lucid dreaming fascinates hackers. Every few years for over a decade now, we’ve seen a serious project dedicated to studying or taking advantage of this phenomenon, and the interest in this topic hasn’t faded still. [Michael] has contacted us to tell about a small and unconventional breakthrough that a few lucid dream hackers have accomplished — communicating in Morse code from their dream using eye movements.

These hackers are using Dreem 2 and 3 headbands, which include clinical-grade polysomnography features like EEG measurements, which is instrumental for decoding eye movements. [Michael] tells us that one of the participants, [Sebastiii], was able to transfer the letter F by looking twice to the left, then right and left again – ..-. in Morse. With an off-the-shelf headband, this information transmission method is quite accessible to anyone willing to learn Morse, and [Michael] himself is now working on an automated decoding solution. We might forget what happens in our dreams fairly quickly, but this unexpected side channel could be a good counter.

[Michael] has tipped us off to many of the projects we’ve covered, and himself has quite a history in the field. His own research into using Morse to communicate out of lucid dreams dates back as far as 2012. If your ham exam preparations have you dream in Morse, perhaps this is the perfect project to join. A lot of projects we’ve seen focus on gaining enough awareness to achieve lucidity first, like the variety of lucid dream-invoking masks we’ve covered over the years. This part being thoroughly explored, it makes sense that communication is the next frontier to be tackled.

New controller PCB shown below the original one. The new PCB has an ESP module with an antenna, a lot of support circuitry, and all the same connectors that the original board does.

Controller For 946C Hotplate Adds Reflow Profile Upload Over BLE

September 30, 2022 by 7 Comments

Reflow hotplates are a wonderful tool for PCB assembly if you can keep your designs single-sided. The 946C hotplate in particular has been on hackers’ radar for a while – a 200x200mm working surface hotplate available for under $100 is a decent investment. As with other reflow tools, it was a matter of time until someone made a replacement controller for it. This one, you’ll want to keep in mind – it’s a replacement controller project by [Arnaud Durand] and [Elias Rodriguez Martin], called Reflow946.

Keeping to best practices, the board is a drop-in replacement for the stock controller – swap cables over and go. The host processor is an ESP32, and it lets you can program reflow profiles in using BLE, with a Python application to help. The whole design is open-source and on GitHub, of course – keeping with best 3D printing traditions, you can already order the parts and PCBs, and then assemble them using the hotplate you’re about to upgrade. As far as aftermarket controllers go, here’s no doubt this board gives you way more control in reflow and lets you compensate for any possible subpar calibration while at it. Continue reading “Controller For 946C Hotplate Adds Reflow Profile Upload Over BLE”