Reviews

264 Articles

DEF CON Badgelife: The ESP Rules All

July 19, 2017 by 8 Comments

Badgelife is the celebration of independent hardware creators, working for months at a time to bring custom electronic badges to conferences around the world. This year at DEF CON, Badgelife is huge. It’s not just because this year was supposed to feature a non-electronic badge, and it’s not because the official badge imploded last month — Badgelife is all about people spending most of the year designing, and manufacturing hardware, culminating in one very special weekend.

[Garrett] owns Hacker Warehouse, a store providing all kinds of neat hacker tools ranging from software-defined radios to lock pick sets to side channel analysis toolkits. This year, [Garrett] decided he wanted to branch out his business and get involved in a little bit of hardware creation. He’s been curious about this for some time and figured a limited edition DEF CON badge made sense. What he wound up with is a beautiful little badge with games, blinkies, graphics, and potential to cause a lot of wireless mischief.

Would you look at that. RF design on an independent badge.

The design of the Hacker Warehouse badge is surprisingly simple compared to the Bender Badges and puzzling crypto badges that are also part of this year’s Badgelife hardware celebration. On board is an ESP8266 with a custom PCB implementation that includes a larger Flash chip. The other side of the board is loaded up with four tact switches in a D-pad arrangement. On top is a 96 x 64 pixel full-color OLED display, and blinkies are provided by fourteen mini WS2812 RGB LEDs. Power is provided by two AA cells and what looks to be a nice fancy switching regulator. This is real hardware, not just a few modules thrown together with a bunch of LEDs.

Oh, what wireless fun

This badge is built around the ESP8266, a very interesting WiFi-enabled microcontroller that has more features than it should. [Garrett] is using the ESP as a WiFi scanner of sorts, allowing anyone with this badge to monitor WiFi channels, APs, packets, and — this is important — deauth packets.

Over the last year, there have been a number of projects around the Internet that take an ESP8266 and spew deauthorization frames into the spectrum. These frames cause a WiFi client to stop using an access point, and basically shuts down all the WiFi in an area. It’s well documented, and people have been doing it for years, but the ESP8266 makes deauth attacks so very, very easy. We’re going to see a lot of deauth frames this year at DEF CON, and the Hacker Warehouse badge will be able to detect them. It can also generate these frames, but that capability is locked for now.

Blinking and glowing

An electronic conference badge isn’t cool unless it has obnoxiously bright and glowy LEDs, and the Hacker Warehouse badge is very cool.

Onboard the Hacker Warehouse badge are 14 RGB LEDs, programmed with 46 different patterns that are certainly bright enough to annoy someone. This is what you need for a badge, and it’s beautiful.

This is a truly fantastic badge that’s also a great development board for the ESP8266. Everything you need for portable WiFi gaming fun is already there — you have blinky LEDs, an OLED, what seems to be a fairly nice power supply, and enough buttons to do something interesting. All you need to do to program this badge is attach a USB to serial adapter to the pre-populated header and you really have something. It’s a great badge, and we can’t wait to see the hacks for this great piece of hardware next week at DEF CON.

The Cheapest Meter On Banggood

July 17, 2017 by 61 Comments

According to [pileofstuff], he didn’t really need another digital multimeter. However, when he saw a DT-832 meter on Banggood for the princely sum for $4.99 he wondered just what kind of meter you’d get for that price. You can see his conclusions in his recent video (below). He does make it clear, by the way, that he wasn’t paid for the review or given the meter. He just decided to see what $5 would buy in a meter.

Depending on your predisposition to cheap Asian electronics, you may or may not be surprised. After all, for $5 you can’t expect a top-of-the-line lab instrument. The device measures AC and DC voltage, DC amperage, ohms, transistor beta, and has a diode tester and continuity buzzer. It also has some frequency measurement capability. You can’t be too surprised it doesn’t auto range, though. To be fair, although he mentions Banggood as the source of the meter, a quick Google search shows you can get them from all the usual sources, and the price is down to $3.73 as long as you let them ship it from Canada.

Continue reading “The Cheapest Meter On Banggood”

Books You Should Read: The Bridge

July 14, 2017 by 97 Comments

A few weeks ago, Amazon’s crack marketing AI decided to recommend a few books for me. That AI must be getting better because instead of the latest special-edition Twilight books, I was greeted with this:

“The asteroid was called the Hand of God when it hit.”

That’s the first sentence of The Bridge, a new Sci-Fi book by Leonard Petracci. If you think that line sucks you in, wait until you read the whole first chapter.

The Bridge is solidly in the generation ship trope. A voyage hundreds or even thousands of years long, with no sleep or stasis pods. The original crew knows they have no hope of seeing their destination, nor will their children and grandchildren. Heinlein delved into it with Orphans of the Sky. Even Robert Goddard himself discussed generation ships in The Last Migration.

I wouldn’t call The Bridge hard Sci-Fi — and that’s perfectly fine. Leonard isn’t going for scientific accuracy. It’s a great character driven story. If you enjoyed a book like Ready Player One, you’ll probably enjoy this.

The Bridge Is the story of Dandelion 14, a ship carrying people of Earth to a new planet. At some point during the journey, Dandelion 14 was struck by an asteroid, which split the ship in two. Only a few wires and cables keep the halves of the ship together. The crew on both sides of the ship survived, but they had no way to communicate. They do catch glimpses of each other in the windows though.

Much of the story is told in the first person by Horatius, a young man born hundreds of years after the asteroid strike. Horatius’ side of the ship has a population of one thousand, carefully measured at each census. They’ve lost knowledge of how to operate the ship’s systems, but they are surviving. Most of the population are gardeners, but there are doctors, cooks, porters, and a few historians. At four years old, Horatius is selected to become a gardener, like his father was before him. But Horatius has higher aspirations. He longs to become a historian to learn the secrets of the generations that came before him and to write his own story down for those who will come after.

Horatius sees the faces of the people on the other side of the ship as well. Gaunt, hungry, often fighting with knives or other weapons. A stark contrast to the well-fed people on his side of the vessel. The exception is one red-haired girl about his age. He often finds her staring back at him, watching him.

Horatius might have been chosen as a gardener, but he’s clever — a fact that sometimes gets him in trouble. His life takes an abrupt turn when the sleeping ship awakens with an announcement blaring “Systems Rebooting, Ship damage assessed. Reuniting the two halves of the ship and restoring airlock, approximately twenty-four hours until complete.”

The hardest part of writing a book review is not giving too much away. While I won’t tell you much more about the plot for The Bridge, I can tell a bit about how the book came about. You might call this book a hack of the publishing system. Leonard Petracci is also known as leoduhvinci on Reddit. The Bridge started life as Leonard’s response to a post on /r/writingprompts. The prompt went like this:

After almost 1,000 years the population of a generation ship has lost the ability to understand most technology and now lives at a pre-industrial level. Today the ship reaches its destination and the automated systems come back online.

Leonard ’s response to the prompt shot straight to the top, and became the first chapter of The Bridge. Chapter 2 followed soon after. In only a few months, the book was complete. Available on Reddit, and on Leonard’s website. The Bridge is also available on Amazon for Kindle, and on paper from Amazon’s CreateSpace.

The only real criticism I have about The Bridge is the ending. The book’s resolution felt a bit rushed. It would have been nice to have a few more pages telling us what happened to the characters after the major events of the book. Leonard is planning a sequel though, and he teases this in the final pages.

You can start reading The Bridge right now on Leonard’s website. He has the entire book online for free for a few more weeks. If you’ve missed the free period, the Kindle edition is currently $2.99.

Places To Visit: Electric Mountain

July 12, 2017 by 62 Comments

The experience of being a teenager leaves a host of memories, of social awkwardness in the difficult process of not quite being a child any more, of tedious school days, and of team sports seemingly enjoyed only by the few. Wherever in the world you grew up will have lent a particular flavour to your recollections of that period of your life, whether your memories are good or bad.

One surprising common theme in British teenage memories, at least those of a few decades ago, are power stations. In the 1970s and 1980s, the Central Electricity Generating Board had a PR effort that involved bringing parties of teenage school geography students in for a tour of their local electricity plant, so if you talk to a British person of a certain age you’ll probably find they’ve been up close and personal with a coal-fired power station.

The true power station marvel of the age would have been too far away to tour for most kids at the time, though our geography teachers expounded on it at length. Dinorwig pumped-storage power station in Wales was opened in the early 1980s, and is a hydroelectric plant that uses excess grid generating capacity in the middle of the night to pump water into a lake at the top of a mountain, from which it can later be released at very short notice to respond to demand surges in a matter of seconds. The oft-quoted example is that when an episode of Coronation Street draws to a close there are several million British kettles turned on simultaneously, at which point Dinorwig comes online to rapidly make up the resulting shortfall.

Continue reading “Places To Visit: Electric Mountain”

Hacking An Inspection Microscope

June 26, 2017 by 74 Comments

Sometimes I need to be able to take photographs of very small things, and the so-called macro mode on my point-and-shoot camera just won’t cut it. And it never hurts to have an inspection scope on hand for tiny soldering jobs, either, though I prefer a simple jeweler’s loupe in one eye for most tasks. So I sent just over $40 off to my close friend Alibaba, and a few weeks later was the proud owner of a halfway usable inspection scope that records stills or video to an SD card.

Unfortunately, it’s only halfway useable because of chintzy interface design and a wobbly mount. So I spent an afternoon, took the microscope apart, and got it under microcontroller control, complete with WiFi and a scripting language. Much better! Now I can make microscope time-lapses, but much more importantly I can take blur-free photos without touching the wiggly rig. It was a fun hack, so I thought I’d share. Read on!

Continue reading “Hacking An Inspection Microscope”

First Thoughts On The New UP Core

June 2, 2017 by 55 Comments

I normally stay away from talking about x86 single-board computers because I don’t have a lot to say about them. They’re too expensive, and run too hot, to be interesting. Enter the new UP Core funding now on Kickstarter.

The UP Core is just 56.5 mm × 66 mm (2.2 in × 2.6 in) and powered by a 64-bit Quad Core Intel Atom clocked at either 1.44 GHz or 1.92 GHz. It will ship with either 2 GB or 4 GB of RAM, and either 32 GB or 64 GB of eMMC. The board has a USB 3 port, HDMI, DSI/eDP, and two MIPI-CSI ports supporting either a 2 MP or 8 MP camera. It has both WiFi 802.11 b/g/n and Bluetooth LE built-in.

In other words it’s powerful enough to serve as a desktop PC running Linux, Android, or a full Windows 10 installation. The cheapest UP Core configuration—with 1 GB memory and 16 GB eMMC—is €69, or around $75. Continue reading “First Thoughts On The New UP Core”

Malduino Elite – First Impressions

May 31, 2017 by 39 Comments

A while back, I wrote an article about Malduino, an Arduino-based, open-source BadUSB device. I found the project interesting so I signed up for an Elite version and sure enough, the friendly postman dropped it off in my mail box last Friday, which means I got to play around with it over the weekend. For those who missed the article, Malduino is USB device which is able to emulate a keyboard and inject keystrokes, among other things. When in a proper casing, it will just look like a USB flash drive. It’s like those things you see in the movies where a guy plugs in a device and it auto hacks the computer. It ships in two versions, Lite and Elite, both based on the ATmega32U4.

The Lite version is really small, besides the USB connector it only contains a switch, which allows the user to choose between running and programming mode, and a LED, which indicates when the script has finished running.

Original Malduino Elite sketch and Lite prototype

The Elite version is bigger, comes with a Micro-SD card reader and four DIP switches, which allow the user to choose which script to run from the card. It also has the LED, which indicates when a script has finished to run. This allows the user to burn the firmware only once and then program the keystroke injection scripts that stored in the Micro-SD card, in contrast to the Lite version which needs to be flashed each time a user wants to run a different script.

These are the two Malduinos and because they are programmed straight from the Arduino IDE, every feature I just mentioned can be re-programmed, re-purposed or dropped all together. You can buy one and just choose to use it like a ‘normal’ Arduino, although there are not a lot of pins to play around with. This freedom was one the first things I liked about it and actually drove me to participate in the crowd-funding campaign. Read on for the full review.
Continue reading “Malduino Elite – First Impressions”