Slowloris HTTP Denial Of Service

June 17, 2009 by Zach Banks 40 Comments

[RSnake] has developed a denial of service technique that can take down servers more effectively. Traditionally, performing a denial of service attack entailed sending thousands of requests to a server, these requests needlessly tie up resources until the server fails. This repetitive attack requires the requests to happen in quick succession, and is usually a distributed effort. However, [RSnake]’s new technique has a client open several HTTP sessions and keeps them open for as long as possible. Most servers are configured to handle only a set number of connections; the infinite sessions prevent legitimate requests from being handled, shutting down the site. This vulnerability is present on webservers that use threading, such as Apache.

A positive side effect of the hack is that the server does not crash, only the HTTP server is affected. His example perl implementation, slowloris, is able to take down an average website using only one computer. Once the attack stops, the website will come back online immediately.

Update: Reader [Motoma] sent in a python implementation of slowloris called pyloris

[photo: cutebreak]

Controllable Bristlebot

June 16, 2009 by Zach Banks 19 Comments

[sprite_tm], whose projects we have covered in the past, took the popular bristlebot to an extreme and created a controllable version. A bristlebot consists of a small vibrating motor mounted with a battery on the head of a toothbrush. These micro-robots buzz around randomly, and he attempted to tame them. He used a platform of twin bristlebots and added an optical sensor from a laser mouse and an ATtiny13. The optical sensor is used to determine the relative motion of the robot, so that the motors can be adjusted accordingly. He also has a video of the bot using the sensor to find a mark on the floor and stay within bounds. Although it isn’t as accurate, it acts like a traditional line-following robot.

Continue reading “Controllable Bristlebot” →

C64 Twitter Client

June 15, 2009 by Eliot 18 Comments

The last of the Commodore 64’s shortcomings has been addressed; it finally has a Twitter client. [Johan Van den Brande] wrote BREADBOX64 for use on the C64/128. It’s running on top of the open source Contiki operating system. The hardware is an MMC Replay cartridge with an ethernet adapter. If you don’t have the hardware available, you can run it inside an emulator like VICE. Embedded below is a C128D running the program.

(P.S. all of our posts are on @hackadaydotcom)

Continue reading “C64 Twitter Client” →

ATTiny 2313 Breakout Boards From EMSL

June 3, 2009 by Caleb Kraft 9 Comments

3592136552_e69c9190a1 (Custom)

Evil Mad Scientist Laboratories has released the 2313 target board. A business card sized development board for working with ATTiny 2313 microprocessors. We saw them at the Maker Faire, and thought they looked familiar. You may recognize them due to their similarity to the Atmegaxx8 family board. As usual, this is released as creative commons and source files are available on their site.

Ghetto Electronics Repair

May 31, 2009 by Caleb Kraft 190 Comments

oven-graphics-card-nvidia

After hearing that his video card might be repairable by heating it up to reflow it, this user did just that. He stripped it down and tossed it in his oven. It’s amazing how often this type of hackish repair works. We’ve heard of people using candles on ibooks, tossing video cards in oven,s and wrapping an xbox 360 in a towel and running it for 30 minutes to get it hot enough to reflow itself. Why even bother with controlled temperatures and exact measurements? What other crazy fixes have you had to employ? We had a Playstation that only worked upside down.

[via engadget]

Nice LCD Thermometer

May 31, 2009 by Caleb Kraft 4 Comments

LCD Thermometer LM35_pic

This digital thermometer won’t win any awards for being something innovative and new, but we really like how it looks. The bar graph style display adds something to the project that a normal character display just wouldn’t. You can download source code and schematics on the site.

[via YourITronics]

Business Cards At Maker Faire

May 30, 2009 by Eliot 9 Comments

business_card

[John Park] has managed to snag a couple interesting business cards at Maker Faire. The first is Adafruit’s laser cut Spirograph card. The other is a ATtiny2313 prototyping board from Evil Mad Science; it looks to be the same style as their well-known AVR target board. We’ve also heard rumors that [Jérôme Demers] has bunch of resistor bending cards.

For more business card nonsense, check out: [Goodspeed]’s smart card emulator, [Mayer]’s embedded gears, and our web server business card.