Two Weeks To HOPE X, And We’re Going

July 6, 2014 by Brian Benchoff 16 Comments

hopex_web_topbar_b

In a little less than two weeks, the biannual HOPE conference in NYC will be in full swing. Attendance is more than likely to put you on a list somewhere, so of course we’ll be setting up shop, enjoying the sights and sounds, and throwing swag at hundreds of attendees.

Highlights of HOPE X include a keynote from [Daniel Ellisburg], a video conference with [Edward Snowden], a Q&A with the EFF, a talk I’ll certainly be attending, and the always popular talk on social engineering headed up by [Emmanuel Goldstein].

As with all our extracurriculars, Hackaday will be giving out some swag (200+ tshirts, stickers, and THP goodies), and manning a vendor booth. Look for the eight foot Hackaday flag held up with duct tape. We’ll also be doing the usual video and blog thing from HOPE, for all of you who can’t attend thanks to your company’s security reviews, and some super secret things I can’t believe the overlords signed off on.

In other 2600 news, they ain’t doin too good, with tens of thousands of dollars of debt thanks to rather crappy legal stuff with their distributors. Buying a ticket would help the 2600 guys out, as would buying July’s issue (also on Kindle).

Stealing WiFi From LED Lightbulbs

July 6, 2014 by Eric Evenchick 13 Comments

Back in 2012, the LIFX light bulb launched on Kickstarter, and was quite successful. This wireless LED lightbulb uses a combination of WiFi and 6LoWPAN to create a network of lightbulbs within your house. Context Information Security took a look into these devices, and found some security issues.

The LIFX system has a master bulb. This is the only bulb which connects to WiFi, and it sends all commands out to the remaining bulbs over 6LoWPAN. To keep the network up, any bulb can become a master if required. This means the WiFi credentials need to be shared between all the bulbs.

Looking into the protocol, an encrypted binary blob containing WiFi credentials was found. This binary could easily be recovered using an AVR Raven evaluation kit, but was not readable since it was encrypted.

After cracking a bulb apart, they found JTAG headers on the main board. A BusBlaster and OpenOCD were used to communicate with the chip. This allowed the firmware to be dumped.

Using IDA Pro, they determined that AES was being used to encrypt the WiFi credentials. With a bit more work, the key and initialization vector was extracted. With this information, WiFi credentials sent over the air could be decrypted.

The good news is that LIFX fixed this issue. Now they generate an encryption key based on WiFi credentials, preventing a globally unique key from being used.

[via reddit]

C64 Emulator For The Arduino Due

July 6, 2014 by Brian Benchoff 17 Comments

c64

Almost a year ago, [miker00lz] started a thread on the Arduino forums telling everyone about a 6502 emulator and BASIC interpreter he wrote for an Arduino Uno. The chip inside the Uno isn’t a powerhouse by any means, and with only 2KB of RAM it’s far less capable than just about any computer from the 70s. Arduino works on a lot of different chips, though, and after a few months, [Jan] turned an Arduino Due into a Commodore 64 emulator.

[Jan]’s code isn’t limited to the DUE, and can be used with any chip with enough memory. If you’re feeling fancy, you can connect a TFT display for all the vintage goodness of PETSCII graphics, all while running a faster BASIC than the very stripped down EHBASIC.

Because the emulator is using software to talk to the outside world, it should be possible to use this project to interface with the cooler chips found in Commodore machines – SIDs for one, but also the cartridge port for some vintage Ethernet goodness. It’s not even limited to Commodore machines, either: the POKEY chips found in Atari 8-bit micros are seriously underutilized in the chiptune and demoscene, and having modern hardware to play with these chips couldn’t hurt in the slightest.

Continue reading “C64 Emulator For The Arduino Due” →

Overwriting A Protected AVR Bootloader

July 5, 2014 by Eric Evenchick 9 Comments

A bootloader is typically used to update application code on a microcontroller. It receives the new program from a host, writes it to flash, verifies the program is valid, and resets the microcontroller. Perhaps the most ubiquitous example is the Arduino bootloader which allows you to load code without an AVR programmer.

The bootloader resides in a special part of memory, which is protected. On the AVR, it isn’t possible to write to the bootloader memory from the application code. This is to prevent you from accidentally breaking the bootloader and bricking the device.

However, it can be useful to write to the bootloader memory. The best example would be when you need to update the bootloader itself. To accomplish this, [Julz] found a workaround that defeats the AVR bootloader protection.

The challenge was to find a way to execute the Store Program Memory (spm) instruction, which can only be executed by the bootloader. [Julz] managed to make use of the spm instruction in the existing bootloader by counting cycles and modifying registers at the right time.

Using this technique, which [Julz] calls BootJacker, the Fignition 8 bit computer could have its bootloader updated. However, this technique would likely allow you to modify most bootloaders on AVR devices.

Gatling Gun Styled Water Pistol Made Out Of… Sugru?

July 5, 2014 by James Hobson 31 Comments

sugru water pistol

We admit it – we’re suckers for clever advertising of a product. The company behind Sugru, everyone’s favorite self-setting-rubber-fix-it material commissioned this awesome gatling gun styled water pistol, and it’s actually quite impressive.

Designed by [Alex Bygrave], he was instructed to build the gun out of as many standard hardware store parts as possible — and as much Sugru as he could. It’s been used to make all the seals, connections, and even the pistons, and while we can’t tell if it leaks anywhere, it’s still pretty impressive.

Unlike a normal water pistol, this one is powered by compressed CO2 canisters like the ones used for welding — meaning the pressures are much higher than a typical super soaker as well!

19Stick around after the break to see it in action – tested on the staff of Sugru themselves!

Continue reading “Gatling Gun Styled Water Pistol Made Out Of… Sugru?” →

The Disintegrated Op Amp

July 5, 2014 by Brian Benchoff 31 Comments

741 By now we’ve all seen the ‘Three Fives’ kit from Evil Mad Scientist, a very large clone of the 555 timer built from individual transistors and resistors. You can do a lot more in the analog world with discrete parts, and [Shane]’s SevenFortyFun is no exception: it’s a kit with a board, transistors, and resistors making a very large clone of the classic 741 op-amp, with all the parts laid bard instead of encapsulated in a brick of plastic.

[Shane] was inspired by the analog greats – [Bob Pease], [Jim Williams], and of course [Bob Widlar], and short of mowing his lawn with goats, the easiest way to get a feel for analog design was to build some analog circuits out of individual components.

[Shane] has a few more kits in mind: a linear dropout and switching regulators are on the top of the list, as is something like the Three Fives kit, likely to be used to blink giant LEDs.

Hackaday Reader [David] Wins A Camera From Make And Nikon

July 5, 2014 by Adam Fabio 11 Comments

Make the shot fixed [David Schwarz] whipped up this moving time-lapse camera rig and won himself a sweet Nikon setup. You might remember our post about the Nikon Make:The Shot Challenge. [David] saw our post, and started thinking about what he wanted to enter. Like a true engineer, he finally came up with his idea with just 3 days left in the contest.

[David] wanted to build a moving time-lapse rig, but he didn’t have the aluminum extrusion rails typically used to build one. He did have some strong rope though, as well as a beefy DC motor with a built-in encoder. [David] mounted a very wide gear on the shaft of the motor, then looped the rope around the gear and two idler pulleys to ensure the gear would have a good bite on the rope. The motor is controlled by an Arduino, which also monitors the encoder to make sure the carriage doesn’t move too far between shots.

[ 6__pulley_system David] built and tested his rig over a weekend. On Monday morning, he gave the rig its first run. The video came out pretty good, but he knew he could get a better shot. That’s when Murphy struck. The motor and controller on his rig decided to give up the ghost. With the contest deadline less than 24 hours away, [David] burned the midnight oil and replaced his motor and controller.

Tuesday morning, [David] pulled out his trump card – a trip to Tally Lake in Montana, USA. The equipment worked perfectly, and nature was cooperating too. The trees, lake, and the shadows on the mountains in the background made for an incredible shot. Once the time-lapse photos were in the can, [David] rushed home, stitched and stabilized the resulting video. He submitted his winning entry with just 2 hours to spare.

Click past the break for more on [David’s] time-lapse rig, and to see his final video.

Continue reading “Hackaday Reader [David] Wins A Camera From Make And Nikon” →